oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE request: Mediawiki

From: Kurt Seifried <kseifried () redhat com>
Date: Thu, 12 Jan 2012 14:32:05 -0700
On 01/12/2012 01:31 AM, Moritz Muehlenhoff wrote:

Hi,
please assign a CVE ID for a new security issue fixed in Mediawiki
1.17.2:

=== Security changes ===
* (bug 33117) prop=revisions allows deleted text to be exposed through
cache pollution.

http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_17_2/phase3/RELEASE-NOTES
https://bugzilla.wikimedia.org/show_bug.cgi?id=33117
https://www.mediawiki.org/wiki/Special:Code/MediaWiki/108686
https://www.mediawiki.org/wiki/Special:Code/MediaWiki/108687

Cheers,
        Moritz


=== Security changes ===
* (bug 33117) prop=revisions allows deleted text to be exposed through cache pollution.


Please use CVE-2012-0046 for this issue.

-- 

-- Kurt Seifried / Red Hat Security Response Team
Previous By Date Next
Previous By Thread Next

Current thread: