Oval Definition:oval:org.mitre.oval:def:7264
Revision Date:2015-02-23Version:22
Title:DSA-2041 mediawiki -- Cross-Site Request Forgery
Description:It was discovered that mediawiki, a website engine for collaborative work, is vulnerable to a Cross-Site Request Forgery login attack, which could be used to conduct phishing or similar attacks to users via affected mediawiki installations. Note that the fix used breaks the login API and may require clients using it to be updated.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2010-1150
DSA-2041
Platform(s):Debian GNU/Linux 5.0
Product(s):mediawiki
Definition Synopsis
  • Debian GNU/Linux 5.0 is installed
  • AND Architecture section
  • Architecture independent section
  • Installed architecture is all
  • AND mediawiki is earlier than 1:1.12.0-2lenny5
  • OR Architecture dependent section
  • Supported architectures section
  • Installed architecture is s390
  • OR Installed architecture is amd64
  • OR Installed architecture is sparc
  • OR Installed architecture is arm
  • OR Installed architecture is i386
  • OR Installed architecture is armel
  • OR Installed architecture is mips
  • OR Installed architecture is ia64
  • OR Installed architecture is alpha
  • OR Installed architecture is powerpc
  • OR Installed architecture is mipsel
  • OR Installed architecture is hppa
  • AND mediawikimath is earlier than 1:1.12.0-2lenny5
    • BACK