Oval Definition:
oval:com.ubuntu.cosmic:def:201529400000000
Revision Date
:
2015-04-13
Version
:
1
Title
:
CVE-2015-2940 on Ubuntu 18.10 (cosmic) - medium.
Description
:
Cross-site request forgery (CSRF) vulnerability in the CheckUser extension for MediaWiki allows remote attackers to hijack the authentication of certain users for requests that retrieve sensitive user information via unspecified vectors.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2015-2940
Platform(s)
:
Ubuntu 18.10
Product(s)
:
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed.
AND
mediawiki package in cosmic, is related to the CVE in some way and has been fixed (note: '1:1.27.4-3').
BACK