Overview

File _patchinfo of Package patchinfo.15025

<patchinfo incident="15025">
  <issue tracker="cve" id="2020-15275"/>
  <issue tracker="cve" id="2020-25074"/>
  <issue tracker="bnc" id="1178744">VUL-0: CVE-2020-25074: :moinmoin-wiki: remote code execution via cache action</issue>
  <issue tracker="bnc" id="1178745">VUL-0: CVE-2020-15275: moinmoin-wiki: malicious SVG attachment causing stored XSS vulnerability</issue>
  <packager>oreinert</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for moinmoin-wiki</summary>
  <description>This update for moinmoin-wiki fixes the following issues:

- update to version 1.9.11:
  CVE-2020-25074 (boo#1178744): fix remote code execution via cache action
  CVE-2020-15275 (boo#1178745): fix malicious SVG attachment causing stored XSS vulnerability
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places