Oval Definition:	oval:com.ubuntu.precise:def:20152940000
Revision Date: 2015-04-13 Version: 1 Title: CVE-2015-2940 on Ubuntu 12.04 LTS (precise) - medium. Description: Cross-site request forgery (CSRF) vulnerability in the CheckUser extension for MediaWiki allows remote attackers to hijack the authentication of certain users for requests that retrieve sensitive user information via unspecified vectors. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-2940 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'mediawiki' package in precise is affected and needs fixing.
BACK