MediaWiki: Multiple vulnerabilities

MediaWiki: Multiple vulnerabilities Multiple vulnerabilities have been found in MediaWiki, the worst of which could lead to Denial of Service. mediawiki 2013-10-28 2013-10-28 460352 466124 468110 471140 483594 remote 1.21.2 1.20.7 1.19.8 1.21.2

The MediaWiki wiki web application as used on wikipedia.org.

Multiple vulnerabilities have been discovered in MediaWiki. Please review the CVE identifiers referenced below for details.

A remote attacker may be able to execute arbitrary code, perform man-in-the-middle attacks, obtain sensitive information or perform cross-site scripting attacks.

There is no known workaround at this time.

All MediaWiki 1.21.x users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=www-apps/mediawiki-1.21.2"

All MediaWiki 1.20.x users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=www-apps/mediawiki-1.20.7"

All MediaWiki 1.19.x users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=www-apps/mediawiki-1.19.8"

CVE-2013-1816 CVE-2013-1817 CVE-2013-1818 CVE-2013-1951 CVE-2013-2031 CVE-2013-2032 CVE-2013-2114 CVE-2013-4301 CVE-2013-4302 CVE-2013-4303 CVE-2013-4304 CVE-2013-4305 CVE-2013-4306 CVE-2013-4307 CVE-2013-4308 keytoaster ackle