FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-28 15:43:32 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
be1aada2-be6c-11e8-8fc6-000c29434208mediawiki -- multiple vulnerabilities

Mediawiki reports:

Security fixes:

T169545: $wgRateLimits entry for 'user' overrides 'newbie'.

T194605: BotPasswords can bypass CentralAuth's account lock.

T187638: When a log event is (partially) hidden Special:Redirect/logid can link to the incorrect log and reveal hidden

T193237: Special:BotPasswords should require reauthenticate.


Discovery 2018-08-29
Entry 2018-09-22
mediawiki127
< 1.27.5

mediawiki129
le 1.29.3

mediawiki130
< 1.30.1

mediawiki131
< 1.31.1

CVE-2018-0503
CVE-2018-0505
CVE-2018-0504
https://lists.wikimedia.org/pipermail/mediawiki-announce/2018-September/000223.html