Candidate: CVE-2013-6472
PublicDate: 2014-05-12 14:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6472
 https://bugzilla.wikimedia.org/show_bug.cgi?id=58699
Description:
 MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1
 allows remote attackers to obtain information about deleted page via the
 (1) log API, (2) enhanced RecentChanges, and (3) user watchlists.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_mediawiki:
 upstream: https://bugzilla.wikimedia.org/attachment.cgi?id=14270 (1.19)
 upstream: https://bugzilla.wikimedia.org/attachment.cgi?id=14271 (1.21)
 upstream: https://bugzilla.wikimedia.org/attachment.cgi?id=14272 (1.22)
upstream_mediawiki: released (1:1.19.10+dfsg-1)
lucid_mediawiki: ignored (reached end-of-life)
precise_mediawiki: ignored (reached end-of-life)
precise/esm_mediawiki: DNE (precise was needed)
quantal_mediawiki: ignored (reached end-of-life)
saucy_mediawiki: ignored (reached end-of-life)
trusty_mediawiki: not-affected (1:1.19.11+dfsg-1)
trusty/esm_mediawiki: DNE (trusty was not-affected [1:1.19.11+dfsg-1])
utopic_mediawiki: not-affected (1:1.19.11+dfsg-1)
vivid_mediawiki: not-affected (1:1.19.11+dfsg-1)
vivid/stable-phone-overlay_mediawiki: DNE
vivid/ubuntu-core_mediawiki: DNE
wily_mediawiki: not-affected (1:1.19.11+dfsg-1)
xenial_mediawiki: DNE
yakkety_mediawiki: not-affected
zesty_mediawiki: not-affected
devel_mediawiki: not-affected