[SECURITY] [DSA 6208-1] mediawiki security update

Sun, 12 Apr 2026 02:40:44 -0700 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- -------------------------------------------------------------------------
Debian Security Advisory DSA-6208-1                   [email protected]
https://www.debian.org/security/                       Moritz Muehlenhoff
April 12, 2026                        https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : mediawiki
CVE ID         : CVE-2026-34086 CVE-2026-34087 CVE-2026-34088
                 CVE-2026-34091 CVE-2026-34092 CVE-2026-34093 
                 CVE-2026-34094 CVE-2026-34095 CVE-2026-5266

Multiple security issues were discovered in MediaWiki, a website engine
for collaborative work, which could result in information disclosure or
incomplete permission checks.

For the oldstable distribution (bookworm), these problems have been fixed
in version 1:1.39.17-1+deb12u2.

For the stable distribution (trixie), these problems have been fixed in
version 1:1.43.8+dfsg-1~deb13u1.

We recommend that you upgrade your mediawiki packages.

For the detailed security status of mediawiki please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/mediawiki

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]
-----BEGIN PGP SIGNATURE-----
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=sYi7
-----END PGP SIGNATURE-----

Reply via email to