Oval Definition:
oval:com.ubuntu.disco:def:201529400000000
Revision Date
:
2015-04-13
Version
:
1
Title
:
CVE-2015-2940 on Ubuntu 19.04 (disco) - medium.
Description
:
Cross-site request forgery (CSRF) vulnerability in the CheckUser extension for MediaWiki allows remote attackers to hijack the authentication of certain users for requests that retrieve sensitive user information via unspecified vectors.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2015-2940
Platform(s)
:
Ubuntu 19.04
Product(s)
:
Definition Synopsis
Ubuntu 19.04 (disco) is installed.
AND
mediawiki package in disco, is related to the CVE in some way and has been fixed (note: '1:1.27.4-3').
BACK