Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2015-6728

The ApiBase::getWatchlistUser function in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 does not perform token comparison in constant time, which allows remote attackers to guess the watchlist token and bypass CSRF protection via a timing attack.

See the

CVE page on Mitre.org for more details.

References

MLIST: [MediaWiki-announce] 2...
MLIST: [oss-security] 2015081...
MLIST: [oss-security] 2015082...
FEDORA: FEDORA-2015-13920
BID: 76334
GENTOO: GLSA-201510-05

Launchpad.net

CVE 2015-6728

Related bugs

References