USN-3137-1: MoinMoin vulnerabilities
23 November 2016
Several security issues were fixed in MoinMoin.
- moin - Collaborative hypertext environment
It was discovered that MoinMoin did not properly sanitize certain inputs,
resulting in cross-site scripting (XSS) vulnerabilities. With cross-site
scripting vulnerabilities, if a user were tricked into viewing server
output during a crafted server request, a remote attacker could exploit
this to modify the contents, or steal confidential data, within the same
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.