FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-24 21:00:48 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
5ab54ea0-fa94-11ec-996c-080027b24e86	mediawiki -- multiple vulnerabilities Mediawiki reports: (T308471) Username is not escaped in the "welcomeuser" message. (T308473) Username not escaped in the contributions-title message. (T309377, CVE-2022-29248) Update "guzzlehttp/guzzle" to version 6.5.6. (T311384, CVE-2022-27776) Update "guzzlehttp/guzzle" to 6.5.8/7.4.5. Discovery 2022-05-16 Entry 2022-07-03 mediawiki135 < 1.35.7 mediawiki137 < 1.37.3 mediawiki138 < 1.38.2 CVE-2022-29248 CVE-2022-27776 https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/PIPYDRSHXOYW5DB7X755QDNUV5EZWPWB/

VuXML ID

Description

5ab54ea0-fa94-11ec-996c-080027b24e86

mediawiki -- multiple vulnerabilities

Mediawiki reports:

(T308471) Username is not escaped in the "welcomeuser" message.

(T308473) Username not escaped in the contributions-title message.

(T309377, CVE-2022-29248) Update "guzzlehttp/guzzle" to version 6.5.6.

(T311384, CVE-2022-27776) Update "guzzlehttp/guzzle" to 6.5.8/7.4.5.

Discovery 2022-05-16
Entry 2022-07-03
mediawiki135

< 1.35.7

mediawiki137

< 1.37.3

mediawiki138

< 1.38.2

CVE-2022-29248
CVE-2022-27776
https://lists.wikimedia.org/hyperkitty/list/mediawiki-announce@lists.wikimedia.org/message/PIPYDRSHXOYW5DB7X755QDNUV5EZWPWB/