Debian Security Advisory 4979-1

Debian Security Advisory 4979-1: Posted Oct 28, 2021; Authored by Debian | Site debian.org; Debian Linux Security Advisory 4979-1 - Multiple security issues were found in MediaWiki, a website engine for collaborative work, which could result in cross-site scripting, denial of service and a bypass of restrictions in the "Replace Text" extension.; tags | advisory, denial of service, xss; systems | linux, debian; advisories | CVE-2021-35197, CVE-2021-41798, CVE-2021-41799, CVE-2021-41800, CVE-2021-41801; SHA-256 | 06176c981f1d58f0f9edda13490bab91be54d95bb5798e246ed35a9680a8f125; Download | Favorite | View

Debian Security Advisory 4979-1

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-4979-1                   security@debian.org
https://www.debian.org/security/                       Moritz Muehlenhoff
October 01, 2021                      https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : mediawiki
CVE ID         : CVE-2021-35197 CVE-2021-41798 CVE-2021-41799 CVE-2021-41800 
                 CVE-2021-41801

Multiple security issues were found in MediaWiki, a website engine for
collaborative work, which could result in cross-site scripting,
denial of service and a bypass of restrictions in the "Replace Text"
extension.

For the oldstable distribution (buster), these problems have been fixed
in version 1:1.31.16-1~deb10u1.

For the stable distribution (bullseye), these problems have been fixed in
version 1:1.35.4-1~deb11u1.

We recommend that you upgrade your mediawiki packages.

For the detailed security status of mediawiki please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/mediawiki

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----
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=01Oa
-----END PGP SIGNATURE-----

Top Authors In Last 30 Days

Red Hat 236 files
Ubuntu 90 files
Gentoo 31 files
Debian 23 files
tmrswrr 10 files
Sina Kheirkhah 7 files
Amit Roy 4 files
bRpsd 4 files
Rodolfo Tavares 4 files
nu11secur1ty 3 files

File Archives

Systems

AIX (429)
Apple (2,090)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,077)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,531)
HPUX (880)
iOS (376)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,339)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,263)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,651)
UNIX (9,425)
UnixWare (187)
Windows (6,666)
Other

Debian Security Advisory 4979-1

Debian Security Advisory 4979-1

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Debian Security Advisory 4979-1

Share This

Debian Security Advisory 4979-1

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems