Summary: | <www-apps/mediawiki-1.16.4: Multiple vulnerabilities (CVE-2011-{1578,1579,1580,1587}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Tim Sammut (RETIRED) <underling> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | alexanderyt, trapni, web-apps |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://lists.wikimedia.org/pipermail/mediawiki-announce/2011-April/000097.html | ||
Whiteboard: | B4 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Tim Sammut (RETIRED)
2011-04-16 21:38:39 UTC
Bumped to 1.16.4 in CVS. (In reply to comment #1) > Bumped to 1.16.4 in CVS. Great, thank you. Arches, please test and mark stable: =www-apps/mediawiki-1.16.4 Target keywords : "amd64 ppc sparc x86" CVE assigned for incomplete fix per http://www.openwall.com/lists/oss-security/2011/04/18/5. ----- Original Message ----- > Looks as though Mediawiki 1.16.3 did not fully fix the CVE-2011-1578 > issue (XSS), so 1.16.4 has been released: > > http://lists.wikimedia.org/pipermail/mediawiki-announce/2011-April/000097.html > > Could a CVE name get assigned to this? > Please use CVE-2011-1587. x86 stable. Thanks amd64 ok sparc stable Marked ppc stable. amd64 done. Thanks Agostino Thanks, everyone. GLSA Vote: no. Vote: NO. Closing noglsa. |