Updated mediawiki packages fix security vulnerability
Publication date: 21 Jul 2013Modification date: 21 Jul 2013
Type: security
Affected Mageia releases : 3
CVE: CVE-2013-2114
Description
MediaWiki user Marco discovered that security checks for file uploads were not being run when the file was uploaded in chunks through the API. This option has been available to users who can upload files since MediaWiki 1.19 (CVE-2013-2114).
References
SRPMS
3/core
- mediawiki-1.20.6-1.2.mga3