Home page logo
/

oss-sec logo oss-sec mailing list archives

Re: CVE request: Mediawiki
From: Kurt Seifried <kseifried () redhat com>
Date: Thu, 12 Jan 2012 14:32:05 -0700

On 01/12/2012 01:31 AM, Moritz Muehlenhoff wrote:
Hi,
please assign a CVE ID for a new security issue fixed in Mediawiki
1.17.2:

=== Security changes ===
* (bug 33117) prop=revisions allows deleted text to be exposed through
cache pollution.

http://svn.wikimedia.org/svnroot/mediawiki/tags/REL1_17_2/phase3/RELEASE-NOTES
https://bugzilla.wikimedia.org/show_bug.cgi?id=33117
https://www.mediawiki.org/wiki/Special:Code/MediaWiki/108686
https://www.mediawiki.org/wiki/Special:Code/MediaWiki/108687

Cheers,
        Moritz

=== Security changes ===
* (bug 33117) prop=revisions allows deleted text to be exposed through cache pollution.


Please use CVE-2012-0046 for this issue.

-- 

-- Kurt Seifried / Red Hat Security Response Team


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault