An issue was discovered in the Oauth extension for MediaWiki through 1.35.2. MWOAuthConsumerSubmitControl.php does not ensure that the length of an RSA key will fit in a MySQL blob.
References
Configurations
History
07 Nov 2023, 03:34
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
08 Aug 2023, 14:22
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-1284 |
28 Nov 2021, 23:15
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* |
|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MDBPECBWN6LWNSWIQMVXK6PP4YFEUYHA/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QNEAI2T3Y65I55ZB6UE6RMC662RZTGRX/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CJDYJQWT43GBD6GNQ4OW7JOZ6WQ6DZTN/ - Mailing List, Third Party Advisory |
17 Nov 2021, 22:18
Type | Values Removed | Values Added |
---|---|---|
References |
|
10 Nov 2021, 01:17
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 Oct 2021, 02:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
13 Oct 2021, 02:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
23 Aug 2021, 15:13
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:mediawiki:mediawiki:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
CWE | CWE-327 | |
References | (MISC) https://gerrit.wikimedia.org/r/q/I13ff0350a9a0a3cd5ab3e1f82dd0d8d9c13cf9e9 - Patch, Vendor Advisory | |
References | (MISC) https://phabricator.wikimedia.org/T277380 - Permissions Required, Vendor Advisory |
12 Aug 2021, 23:06
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-08-12 22:15
Updated : 2023-12-10 13:55
NVD link : CVE-2021-31556
Mitre link : CVE-2021-31556
CVE.ORG link : CVE-2021-31556
JSON object : View
Products Affected
fedoraproject
- fedora
mediawiki
- mediawiki
CWE
CWE-1284
Improper Validation of Specified Quantity in Input