•  
      request #37559 MediaWiki: 1.39.6 -> 1.39.7
    Infos
    #37559
    Thomas Gerbet (tgerbet)
    2024-04-09 11:06
    2024-04-08 12:04
    39170
    Details
    MediaWiki: 1.39.6 -> 1.39.7

    Includes two security fixes:

    • (T355538, CVE-2024-PENDING) XSS in edit summary parser.
    • (T357760, CVE-2024-PENDING) Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

    Changes:
    https://www.mediawiki.org/wiki/Release_notes/1.39#MediaWiki_1.39.7

    Mediawiki Standalone
    All
    Empty
    • [ ] enhancement
    • [ ] internal improvement
    Empty
    Stage
    Thomas Gerbet (tgerbet)
    Closed
    2024-04-09
    Attachments
    Empty
    References

    Follow-ups