← Back to team overview

registry team mailing list archive

  1. registry team
  2. Mailing list archive
  3. Message #07887

[Bug 603740] Re: [CVE-2010-1190] Data leakage vulnerability in thumb.php

  Thread PreviousDate PreviousThread Next 
This bug was fixed in the package mediawiki - 1:1.11.2-2ubuntu0.7

---------------
mediawiki (1:1.11.2-2ubuntu0.7) hardy-security; urgency=low

  * SECURITY UPDATE: Data leakage vulnerability in thumb.php affecting wikis
    which restrict access to private files using eg. img_auth.php.
    - CVE-2010-1190
    - debian/patches/DataLeakage-CVE-2010-1190.patch
    - patch based on upstream SVN rev. 63436
    - http://lists.wikimedia.org/pipermail/mediawiki-announce/2010-March/000088.html
    - LP: #603740
 -- Andreas Wenning <awen@xxxxxxx>   Fri, 09 Jul 2010 22:38:34 +0200

-- 
[CVE-2010-1190] Data leakage vulnerability in thumb.php
https://bugs.launchpad.net/bugs/603740
You received this bug notification because you are a member of Registry
Administrators, which is the registrant for Debian.
  Thread PreviousDate PreviousThread Next