Sorry, me misreading the mediawiki bug tracker. This is not CVE-2014-2665 , but the fix for that cve broke the password recovery function is intended to protect: http://www.mediawiki.org/wiki/Thread:Project:Support_desk/Session_Hijacking_error_after_Update_1.19.14
But still, the mediawiki package is unpatched for CVE-2014-3966 , CVE-2014-5243 and CVE-2014-5241 , all of which is fixed in the utopic package.
Sorry, me misreading the mediawiki bug tracker. This is not CVE-2014-2665 , but the fix for that cve broke the password recovery function is intended to protect: www.mediawiki. org/wiki/ Thread: Project: Support_ desk/Session_ Hijacking_ error_after_ Update_ 1.19.14
http://
But still, the mediawiki package is unpatched for CVE-2014-3966 , CVE-2014-5243 and CVE-2014-5241 , all of which is fixed in the utopic package.