-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5901-1 security@debian.org https://www.debian.org/security/ Moritz Muehlenhoff April 13, 2025 https://www.debian.org/security/faq - ------------------------------------------------------------------------- Package : mediawiki CVE ID : CVE-2025-3469 CVE-2025-32696 CVE-2025-32697 CVE-2025-32698 CVE-2025-32699 CVE-2025-32700 Multiple security issues were discovered in MediaWiki, a website engine for collaborative work, which could result in information disclosure, cross-site scripting or restriction bypass. For the stable distribution (bookworm), these problems have been fixed in version 1:1.39.12-1~deb12u1. We recommend that you upgrade your mediawiki packages. For the detailed security status of mediawiki please refer to its security tracker page at: https://security-tracker.debian.org/tracker/mediawiki Further information about Debian Security Advisories, how to apply these updates to your system and frequently asked questions can be found at: https://www.debian.org/security/ Mailing list: debian-security-announce@lists.debian.org -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEtuYvPRKsOElcDakFEMKTtsN8TjYFAmf7rc4ACgkQEMKTtsN8 TjbHsxAAs4ZGN8Z3K9Yxue32mHoUOEY+RiT9EdDdgvwjVnY+VA5tk8lSl4vSk3B+ KnDYX3O5N8+cIGaMaLu20olLodfQe7dVxENOqtcPxTgodbSMjOXBCNp6sYYMW4Mi dFnrFyR6rKgESS4XPy6wKr3ozDG3tgfyzKJmtjsiZk58XRF7TG5vrZnGmbvmHKA3 4Dw+VFIGJLCvhEWUSlnMjM+m15Z8lr3f+Cnql2gR4k1/Zidnen7K6eQiLucIEdjv LlyRULXiwlYmll1YAGfwnGVmNziukN3VJ1b006AbyxnWEQUVSi++r2x5TM4UJAeZ 2/5gRadAO47AwZ+RMjOmVTnhsVtCZKcQg52pSg8GezONr6S54pKQkdORNmLoPStL mPALgEt8O88XJlo0FG+W1r2VMqeyUr60DoRP7IPdqNbpVRpLV1+sl0CsEpHhu+xj kllzm4zO91skkIR+wjmOM6scswJM3LQj7oMy/Ocwj3POMm6mJnJ2QOJsgkvvrB60 4gRzjpx8o8czquFcWccJMfblrkvx5gpRSBy/H5lPqf17q61Adwf8g8ifu4Vli1+J la2D9JBut7iMa/SMgKy29MH4dpBKT9EUJmI/A/YVa/qKALdXXjFh/g058s6SxcGn mtgr6y9CWA6vdK7gUl1fPcwcmrGw9FVxUAQ7J+A1tiArR7DC3Ro= =bvwb -----END PGP SIGNATURE-----