Register | Log in

mediawiki

website engine for collaborative work

Choose email to subscribe with

general

source: mediawiki (main)
version: 1:1.43.8+dfsg-2
maintainer: MediaWiki packaging team (DMD)
uploaders: Kunal Mehta [DMD] – Taavi Väänänen [DMD]
arch: all
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 1:1.35.13-1+deb11u2
o-o-sec: 1:1.35.13-1+deb11u6
oldstable: 1:1.39.17-1+deb12u2
old-sec: 1:1.39.17-1+deb12u2
stable: 1:1.43.8+dfsg-1~deb13u1
stable-sec: 1:1.43.8+dfsg-1~deb13u1
testing: 1:1.43.8+dfsg-2
unstable: 1:1.43.8+dfsg-2

versioned links

1:1.35.13-1+deb11u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:1.35.13-1+deb11u6: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:1.39.17-1+deb12u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:1.43.8+dfsg-1~deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:1.43.8+dfsg-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

mediawiki (3 bugs: 0, 1, 2, 0)
mediawiki-classes

action needed

6 security issues in bullseye high

There are 6 open security issues in bullseye.

4 important issues:

CVE-2026-34087: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation OATHAuth. This issue affects OATHAuth: from * before 1.43.7, 1.44.4, 1.45.2.
CVE-2026-34088: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This issue affects MediaWiki: from * before 1.43.7, 1.44.4, 1.45.2.
CVE-2026-34093: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Specials/SpecialUserRights.Php. This issue affects MediaWiki: from * before 1.43.7, 1.44.4, 1.45.2.
CVE-2026-34095: Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Actions/ActionEntryPoint.Php, includes/Request/FauxResponse.Php. This issue affects MediaWiki: from * before 1.43.7, 1.44.4, 1.45.2.

2 ignored issues:

CVE-2025-32697: Improper Preservation of Permissions vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/editpage/IntroMessageBuilder.Php, includes/Permissions/PermissionManager.Php, includes/Permissions/RestrictionStore.Php. This issue affects MediaWiki: before 1.42.6, 1.43.1.
CVE-2026-34086: Vulnerability in Wikimedia Foundation AbuseFilter. This issue affects AbuseFilter: from * before 1.43.7, 1.44.4, 1.45.2.

Created: 2026-04-03 Last update: 2026-05-16 15:30

Multiarch hinter reports 1 issue(s) normal

There are issues with the multiarch metadata for this package.

mediawiki-classes could be marked Multi-Arch: foreign

Created: 2016-09-14 Last update: 2026-05-19 00:30

lintian reports 6 warnings normal

Lintian reports 6 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2026-04-10 Last update: 2026-04-10 00:30

No known security issue in bookworm wishlist

There are 2 open security issues in bookworm.

2 ignored issues:

CVE-2025-32697: Improper Preservation of Permissions vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/editpage/IntroMessageBuilder.Php, includes/Permissions/PermissionManager.Php, includes/Permissions/RestrictionStore.Php. This issue affects MediaWiki: before 1.42.6, 1.43.1.
CVE-2026-34086: Vulnerability in Wikimedia Foundation AbuseFilter. This issue affects AbuseFilter: from * before 1.43.7, 1.44.4, 1.45.2.

Created: 2025-07-04 Last update: 2026-05-16 15:30

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.4 instead of 4.7.2).

Created: 2025-12-23 Last update: 2026-04-09 00:00

news

[2026-04-18] Accepted mediawiki 1:1.39.17-1+deb12u2 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Taavi Väänänen)
[2026-04-18] Accepted mediawiki 1:1.43.8+dfsg-1~deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Taavi Väänänen)
[2026-04-12] Accepted mediawiki 1:1.39.17-1+deb12u2 (source) into oldstable-security (Debian FTP Masters) (signed by: Taavi Väänänen)
[2026-04-12] Accepted mediawiki 1:1.43.8+dfsg-1~deb13u1 (source) into stable-security (Debian FTP Masters) (signed by: Taavi Väänänen)
[2026-04-11] mediawiki 1:1.43.8+dfsg-2 MIGRATED to testing (Debian testing watch)
[2026-04-08] Accepted mediawiki 1:1.43.8+dfsg-2 (source) into unstable (Taavi Väänänen)
[2026-04-05] mediawiki 1:1.43.8+dfsg-1 MIGRATED to testing (Debian testing watch)
[2026-04-02] Accepted mediawiki 1:1.43.8+dfsg-1 (source) into unstable (Taavi Väänänen)
[2025-12-30] Accepted mediawiki 1:1.35.13-1+deb11u6 (source) into oldoldstable-security (Guilhem Moulin)
[2025-12-20] Accepted mediawiki 1:1.39.17-1~deb12u1 (source) into oldstable-proposed-updates (Debian FTP Masters) (signed by: Taavi Väänänen)
[2025-12-20] Accepted mediawiki 1:1.43.6+dfsg-1~deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Taavi Väänänen)
[2025-12-19] Accepted mediawiki 1:1.43.6+dfsg-1~deb13u1 (source) into stable-security (Debian FTP Masters) (signed by: Taavi Väänänen)
[2025-12-19] Accepted mediawiki 1:1.39.17-1~deb12u1 (source) into oldstable-security (Debian FTP Masters) (signed by: Taavi Väänänen)
[2025-12-14] mediawiki 1:1.43.6+dfsg-2 MIGRATED to testing (Debian testing watch)
[2025-12-11] Accepted mediawiki 1:1.43.6+dfsg-2 (source) into unstable (Taavi Väänänen)
[2025-12-11] Accepted mediawiki 1:1.43.6+dfsg-1 (source) into unstable (Taavi Väänänen)
[2025-10-31] Accepted mediawiki 1:1.35.13-1+deb11u5 (source) into oldoldstable-security (Guilhem Moulin)
[2025-10-28] mediawiki 1:1.43.5+dfsg-1 MIGRATED to testing (Debian testing watch)
[2025-10-24] Accepted mediawiki 1:1.43.5+dfsg-1 (source) into unstable (Taavi Väänänen)
[2025-07-23] Accepted mediawiki 1:1.35.13-1+deb11u4 (source) into oldstable-security (Guilhem Moulin)
[2025-07-13] mediawiki 1:1.43.3+dfsg-1 MIGRATED to testing (Debian testing watch)
[2025-07-05] Accepted mediawiki 1:1.39.13-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Taavi Väänänen)
[2025-07-03] Accepted mediawiki 1:1.39.13-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Taavi Väänänen)
[2025-07-01] Accepted mediawiki 1:1.43.3+dfsg-1 (source) into unstable (Taavi Väänänen)
[2025-04-29] mediawiki 1:1.43.1+dfsg-2 MIGRATED to testing (Debian testing watch)
[2025-04-18] Accepted mediawiki 1:1.43.1+dfsg-2 (source) into unstable (Kunal Mehta)
[2025-04-14] Accepted mediawiki 1:1.39.12-1~deb12u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Kunal Mehta)
[2025-04-13] Accepted mediawiki 1:1.39.12-1~deb12u1 (source) into stable-security (Debian FTP Masters) (signed by: Kunal Mehta)
[2025-04-13] mediawiki 1:1.43.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2025-04-10] Accepted mediawiki 1:1.43.1+dfsg-1 (source) into unstable (Taavi Väänänen)

1
2

bugs [bug history graph]

all: 5
RC: 0
I&N: 2
M&W: 3
F&P: 0
patch: 0

links

homepage
lintian (0, 6)
buildd: logs, reproducibility
popcon
browse source code
other distros
security tracker
screenshots
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1:1.43.8+dfsg-2
9 bugs

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing