This bug was fixed in the package mediawiki - 1:1.15.1-1ubuntu3
--------------- mediawiki (1:1.15.1-1ubuntu3) maverick; urgency=low
* SECURITY UPDATE: A CSRF vulnerability was discovered in our login interface. Although regular logins are protected as of 1.15.3, it was discovered that the account creation and password reset features were not protected from CSRF. This could lead to unauthorised access to private wikis. (LP: #586773) - debian/patches/CSRF-Special-Userlogin-no-CVE_rev-66991.patch - patch from upstream SVN rev. 66991 - http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-May/000091.html - https://bugzilla.wikimedia.org/show_bug.cgi?id=23371 * SECURITY UPDATE: Noncompliant CSS parsing behaviour in Internet Explorer allows attackers to construct CSS strings which are treated as safe by previous versions of MediaWiki, but are decoded to unsafe strings by Internet Explorer. (LP: #586773) - debian/patches/XSS-IE-no-CVE_rev-66992.patch - patch from upstream SVN rev. 66992 - http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-May/000091.html - https://bugzilla.wikimedia.org/show_bug.cgi?id=23687 -- Andreas Wenning <email address hidden> Mon, 31 May 2010 00:49:46 +0200
This bug was fixed in the package mediawiki - 1:1.15.1-1ubuntu3
---------------
mediawiki (1:1.15.1-1ubuntu3) maverick; urgency=low
* SECURITY UPDATE: A CSRF vulnerability was discovered in our login patches/ CSRF-Special- Userlogin- no-CVE_ rev-66991. patch lists.wikimedia .org/pipermail/ mediawiki- announce/ 2010-May/ 000091. html /bugzilla. wikimedia. org/show_ bug.cgi? id=23371 patches/ XSS-IE- no-CVE_ rev-66992. patch lists.wikimedia .org/pipermail/ mediawiki- announce/ 2010-May/ 000091. html /bugzilla. wikimedia. org/show_ bug.cgi? id=23687
interface. Although regular logins are protected as of 1.15.3, it was
discovered that the account creation and password reset features were not
protected from CSRF. This could lead to unauthorised access to private
wikis. (LP: #586773)
- debian/
- patch from upstream SVN rev. 66991
- http://
- https:/
* SECURITY UPDATE: Noncompliant CSS parsing behaviour in Internet Explorer
allows attackers to construct CSS strings which are treated as safe by
previous versions of MediaWiki, but are decoded to unsafe strings by
Internet Explorer. (LP: #586773)
- debian/
- patch from upstream SVN rev. 66992
- http://
- https:/
-- Andreas Wenning <email address hidden> Mon, 31 May 2010 00:49:46 +0200