CVE-2022-28203

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-28203

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-28203.json

Aliases

• BIT-mediawiki-2022-28203

Related

• DLA-3117-1
• DSA-5246-1

Published

2022-09-19T21:15:09Z

Modified

2023-12-06T01:02:10.984996Z

Details

A denial-of-service issue was discovered in MediaWiki before 1.35.6, 1.36.x before 1.36.4, and 1.37.x before 1.37.2. When many files exist, requesting Special:NewFiles with actor as a condition can result in a very long running query.

References

• https://phabricator.wikimedia.org/T297731
• https://www.debian.org/security/2022/dsa-5246
• https://lists.debian.org/debian-lts-announce/2022/09/msg00027.html