This bug was fixed in the package mediawiki - 1:1.35.6-1 Sponsored for Kunal Mehta (legoktm)
--------------- mediawiki (1:1.35.6-1) unstable; urgency=medium * Team upload. * New upstream version 1.35.6, fixing CVE-2022-28201, CVE-2022-28202, CVE-2022-28203. This version is not affected by CVE-2022-28204. * Update php extension recommends from composer.json -- Taavi Väänänen <h...@taavi.wtf> Fri, 01 Apr 2022 16:49:04 +0300 mediawiki (1:1.35.5-2) unstable; urgency=medium [ Lucas Werkmeister ] * Remove PHP 5 support from mediawiki.conf [ Kunal Mehta ] * Make it easier to debug autopkgtest failures * Increase PHP's max_execution_time for autopkgtests to 300s, thanks to Paul Gevers and Bryce Harrington for input and helping test. -- Kunal Mehta <lego...@debian.org> Thu, 27 Jan 2022 00:46:22 -0800 ** Changed in: mediawiki (Ubuntu) Status: In Progress => Fix Released ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-28201 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-28202 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-28203 ** CVE added: https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-28204 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1960154 Title: Sync mediawiki 1:1.35.5-2 (universe) from Debian unstable (main) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/mediawiki/+bug/1960154/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs