oss-sec mailing list archives
Re: CVE request: Mediawiki
From: Kurt Seifried <kseifried () redhat com>
Date: Thu, 12 Jan 2012 14:32:05 -0700
On 01/12/2012 01:31 AM, Moritz Muehlenhoff wrote:
Hi, please assign a CVE ID for a new security issue fixed in Mediawiki 1.17.2: === Security changes === * (bug 33117) prop=revisions allows deleted text to be exposed through cache pollution. http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_17_2/phase3/RELEASE-NOTES https://bugzilla.wikimedia.org/show_bug.cgi?id=33117 https://www.mediawiki.org/wiki/Special:Code/MediaWiki/108686 https://www.mediawiki.org/wiki/Special:Code/MediaWiki/108687 Cheers, Moritz
=== Security changes === * (bug 33117) prop=revisions allows deleted text to be exposed through cache pollution. Please use CVE-2012-0046 for this issue. -- -- Kurt Seifried / Red Hat Security Response Team
Current thread:
- CVE request: Mediawiki Moritz Muehlenhoff (Jan 12)
- Re: CVE request: Mediawiki Kurt Seifried (Jan 12)