new mediawiki issues

author: Moritz Muehlenhoff <jmm@debian.org> 2022-07-04 11:10:15 +0200
committer: Moritz Muehlenhoff <jmm@debian.org> 2022-07-04 11:10:15 +0200
commit: 6f120f4025949abb0e3a4867be88aca13ed96b52 (patch)
tree: 3bf0fbdead101526b6bf9aa5e0d6c2c51ca5c5fa
parent: ebca431c2a12a86e255d31a18a3eccb503b4daef (diff)
1 files changed, 10 insertions, 2 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 0f53207d00..98a5f21fba 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -21,9 +21,17 @@ CVE-2022-34914
 CVE-2022-34913 (** DISPUTED ** md2roff 1.7 has a stack-based buffer overflow via a Mar ...)
 	TODO: check
 CVE-2022-34912 (An issue was discovered in MediaWiki before 1.37.3 and 1.38.x before 1 ...)
-	TODO: check
+	- mediawiki <unfixed>
+	[bullseye] - mediawiki <postponed> (Minor issue, fix along with next security release)
+	[buster] - mediawiki <postponed> (Minor issue, fix along with next security release)
+	NOTE: https://phabricator.wikimedia.org/T308473
+	NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/807225/
 CVE-2022-34911 (An issue was discovered in MediaWiki before 1.35.7, 1.36.x and 1.37.x  ...)
-	TODO: check
+	- mediawiki <unfixed>
+	[bullseye] - mediawiki <postponed> (Minor issue, fix along with next security release)
+	[buster] - mediawiki <postponed> (Minor issue, fix along with next security release)
+	NOTE: https://phabricator.wikimedia.org/T308471
+	NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/805208
 CVE-2022-2290 (Cross-site Scripting (XSS) - Reflected in GitHub repository zadam/tril ...)
 	TODO: check
 CVE-2022-2289 (Use After Free in GitHub repository vim/vim prior to 9.0. ...)
author	Moritz Muehlenhoff <jmm@debian.org>	2022-07-04 11:10:15 +0200
committer	Moritz Muehlenhoff <jmm@debian.org>	2022-07-04 11:10:15 +0200
commit	6f120f4025949abb0e3a4867be88aca13ed96b52 (patch)
tree	3bf0fbdead101526b6bf9aa5e0d6c2c51ca5c5fa
parent	ebca431c2a12a86e255d31a18a3eccb503b4daef (diff)