stable

mediawiki-1.41.1-1.fc40, php-oojs-oojs-ui-0.48.1-1.fc40, & 2 more

FEDORA-2024-2c564b942d created by mooninite a year ago for Fedora 40

https://www.mediawiki.org/wiki/Release_notes/1.41

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2024-2c564b942d

This update has been submitted for testing by mooninite.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

mooninite edited this update.

a year ago
User Icon ryanlerch provided feedback a year ago
karma
User Icon kevin provided feedback a year ago
karma

This update can be pushed to stable now if the maintainer wishes

a year ago

This update has been submitted for stable by mooninite.

a year ago

This update has been pushed to stable.

a year ago

Please log in to add feedback.

Metadata
Type
security
Severity
medium
Karma
2
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
a year ago
in testing
a year ago
in stable
a year ago
modified
a year ago
Builds
4
mediawiki-1.41.1-1.fc40
php-oojs-oojs-ui-0.48.1-1.fc40
php-wikimedia-cdb-3.0.0-1.fc40
php-wikimedia-utfnormal-4.0.0-1.fc40
BZ#2240808 CVE-2023-3550 mediawiki: stored XSS leads to privilege escalation [fedora-all]
0
0
BZ#2241397 mediawiki-1.41.1 is available
0
0
BZ#2247804 CVE-2023-45360 mediawiki: XSS in youhavenewmessagesmanyusers and youhavenewmessages i18n messages [fedora-all]
0
0
BZ#2247806 CVE-2023-45362 mediawiki: diff-multi-sameuser ("X intermediate revisions by the same user not shown") ignores username suppression [fedora-all]
0
0
BZ#2255583 CVE-2023-51704 mediawiki: group-.*-member messages are not properly escaped on Special:log/rights [fedora-all]
0
0
BZ#2261492 php-oojs-oojs-ui: FTBFS in Fedora rawhide/f40
0
0
BZ#2278773 mediawiki: XSS in edit summary parser [fedora-all]
0
0
BZ#2278774 mediawiki: denial of service via GET request to Special:MovePage [fedora-all]
0
0
BZ#2279230 CVE-2024-34507 mediawiki: cross-site scripting [fedora-all]
0
0
BZ#2279232 CVE-2024-34506 mediawiki: denial of service [fedora-all]
0
0
BZ#2279234 CVE-2024-34500 mediawiki: XSS through interface message in UnlinkedWikibase [fedora-all]
0
0
BZ#2279239 CVE-2024-34502 mediawiki: MergeLexemes makes edits on GET requests without edit tokens [fedora-all]
0
0
mediawiki-1.41.1-1.fc40
php-oojs-oojs-ui-0.48.1-1.fc40
php-wikimedia-cdb-3.0.0-1.fc40
php-wikimedia-utfnormal-4.0.0-1.fc40

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 25.5.1 on bodhi-web-2-wrb5f.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy