stable

mediawiki-1.38.5-1.fc37

FEDORA-2023-30a7a812f0 created by mooninite 2 years ago for Fedora 37

https://www.mediawiki.org/wiki/Release_notes/1.38

https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/UEMW64LVEH3BEXCJV43CVS6XPYURKWU3/

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2023-30a7a812f0

This update has been submitted for testing by mooninite.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update has been pushed to testing.

2 years ago

This update has been submitted for stable by bodhi.

2 years ago

This update has been pushed to stable.

2 years ago

Please log in to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago
approved
2 years ago
Builds
1
mediawiki-1.38.5-1.fc37
BZ#2156317 CVE-2021-44854 mediawiki: Rest API incorrectly publicly caches results from private wikis [fedora-all]
0
0
BZ#2156319 CVE-2021-44855 mediawiki: Blind Stored XSS via Upload Image via URL [fedora-all]
0
0
BZ#2156327 CVE-2021-44856 mediawiki: Title blocked in AbuseFilter can be created via Special:ChangeContentModel due to the mishandling of EditFilterMergedContent hook return value [fedora-all]
0
0
BZ#2156330 CVE-2022-41765 mediawiki: HTMLUserTextField exposes existence of hidden users [fedora-all]
0
0
BZ#2156332 CVE-2022-41767 mediawiki: reassignEdits doesn't update results in an IP range check on Special:Contributions [fedora-all]
0
0
BZ#2160626 CVE-2022-47927 mediawiki: sqlite information leak [fedora-all]
0
0
BZ#2161176 CVE-2023-22945 mediawiki: GrowthExperiments growthmanagementorlist API allows blocked users to enroll as mentors [fedora-all]
0
0
BZ#2161180 CVE-2023-22911 mediawiki: XSS in widget placement [fedora-all]
0
0
BZ#2161187 CVE-2023-22909 mediawiki: Remote DoS [fedora-all]
0
0
mediawiki-1.38.5-1.fc37

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.5.1 on bodhi-web-181-hwcbz.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy