SB2016082802 - Fedora 24 update for mediawiki

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2016082802

SB2016082802 - Fedora 24 update for mediawiki

Published: August 28, 2016 Updated: April 24, 2025

Security Bulletin ID SB2016082802
Severity
Medium
Patch available
YES
Number of vulnerabilities 6
Exploitation vector Remote access
Highest impact Information disclosure

Breakdown by Severity

Medium 67% Low 33%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 6 secuirty vulnerabilities.


1) Improper access control (CVE-ID: CVE-2016-6331)

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

ApiParse in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote attackers to bypass intended per-title read restrictions via a parse action to api.php.


2) Information disclosure (CVE-ID: CVE-2016-6332)

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1, when $wgBlockDisablesLogin is true, might allow remote attackers to obtain sensitive information by leveraging failure to terminate sessions when a user account is blocked.


3) Cross-site scripting (CVE-ID: CVE-2016-6333)

Vulnerability allows a remote attacker to perform Cross-site scripting attacks.

An input validation error exists in the CSS user subpage preview feature in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 when processing edit box in Special:MyPage/common.css. A remote attacker can trick the victim to follow a specially specially crafted link and execute arbitrary HTML and script code in victim's browser in security context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.


4) Cross-site scripting (CVE-ID: CVE-2016-6334)

Vulnerability allows a remote attacker to perform Cross-site scripting attacks.

An input validation error exists in the Parser::replaceInternalLinks2 method in MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1. A remote authenticated attacker can trick the victim to follow a specially specially crafted link and execute arbitrary HTML and script code in victim's browser in security context of vulnerable website.

Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.


5) Information disclosure (CVE-ID: CVE-2016-6335)

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 does not generate head items in the context of a given title, which allows remote attackers to obtain sensitive information via a parse action to api.php.


6) Improper access control (CVE-ID: CVE-2016-6336)

The vulnerability allows a remote authenticated user to manipulate data.

MediaWiki before 1.23.15, 1.26.x before 1.26.4, and 1.27.x before 1.27.1 allows remote authenticated users with undelete permissions to bypass intended suppressrevision and deleterevision restrictions and remove the revision deletion status of arbitrary file revisions by using Special:Undelete.


Remediation

Install update from vendor's website.

References