Page MenuHomePhabricator
Projects Vuln-DoS

Vuln-DoSTag
ActivePublic
Watch Project

Members

  • This project does not have any members.
  • View All

Watchers (1)

Details

Description

This tag is used to group security bugs by their general classification. These bugs cover denial of service (DoS) vulnerabilities.

Parent project: Security-Team

Recent Activity
View All

Tue, Apr 23

mmartorana changed the status of T272297: User script on user subpage doesn't work after user rename from Open to In Progress.
Tue, Apr 23, 2:34 PM · SecTeam-Processed, Security-Team, Patch-For-Review, MediaWiki-extensions-CentralAuth, JavaScript, MediaWiki-User-rename, MediaWiki-General, Vuln-DoS

Mon, Apr 15

sbassett moved T272297: User script on user subpage doesn't work after user rename from Incoming to In Progress on the Security-Team board.
In T272297#9700700, @stjn wrote:

This continuously causes issues with user scripts after any rename, I am asking someone from Security-Team to take time to review the patch provided.

Mon, Apr 15, 4:29 PM · SecTeam-Processed, Security-Team, Patch-For-Review, MediaWiki-extensions-CentralAuth, JavaScript, MediaWiki-User-rename, MediaWiki-General, Vuln-DoS

Fri, Apr 12

sbassett moved T272297: User script on user subpage doesn't work after user rename from Watching to Incoming on the Security-Team board.
Fri, Apr 12, 1:19 PM · SecTeam-Processed, Security-Team, Patch-For-Review, MediaWiki-extensions-CentralAuth, JavaScript, MediaWiki-User-rename, MediaWiki-General, Vuln-DoS

Tue, Apr 9

stjn edited projects for T272297: User script on user subpage doesn't work after user rename, added: Security-Team; removed SecTeam-Processed.

This continuously causes issues with user scripts after any rename, I am asking someone from Security-Team to take time to review the patch provided.

Tue, Apr 9, 12:52 PM · SecTeam-Processed, Security-Team, Patch-For-Review, MediaWiki-extensions-CentralAuth, JavaScript, MediaWiki-User-rename, MediaWiki-General, Vuln-DoS

Sat, Apr 6

Reedy closed T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages as Resolved.
Sat, Apr 6, 3:00 AM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
ReleaseTaggerBot added projects to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages: MW-1.39-notes, MW-1.40-notes, MW-1.41-notes, MW-1.42-notes (1.42.0-wmf.26; 2024-04-09).
Sat, Apr 6, 3:00 AM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1016026 merged by jenkins-bot:

[mediawiki/core@REL1_39] Use i18n strings for truncated subpage message in SpecialMovePage

https://gerrit.wikimedia.org/r/1016026

Sat, Apr 6, 2:56 AM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1016011 merged by jenkins-bot:

[mediawiki/core@master] Use i18n strings for truncated subpage message in SpecialMovePage

https://gerrit.wikimedia.org/r/1016011

Sat, Apr 6, 2:25 AM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015685 merged by jenkins-bot:

[mediawiki/core@REL1_40] Use i18n strings for truncated subpage message in SpecialMovePage

https://gerrit.wikimedia.org/r/1015685

Sat, Apr 6, 2:19 AM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015684 merged by jenkins-bot:

[mediawiki/core@REL1_41] Use i18n strings for truncated subpage message in SpecialMovePage

https://gerrit.wikimedia.org/r/1015684

Sat, Apr 6, 2:18 AM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team

Tue, Apr 2

sbassett added a project to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages: SecTeam-Processed.
Tue, Apr 2, 4:42 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
sbassett moved T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages from Watching to Our Part Is Done on the Security-Team board.
Tue, Apr 2, 4:42 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team

Mon, Apr 1

gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1016026 had a related patch set uploaded (by Dreamy Jazz; author: Dreamy Jazz):

[mediawiki/core@REL1_39] Use i18n strings for truncated subpage message

https://gerrit.wikimedia.org/r/1016026

Mon, Apr 1, 10:10 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015685 had a related patch set uploaded (by Dreamy Jazz; author: Dreamy Jazz):

[mediawiki/core@REL1_40] Use i18n strings for truncated subpage message

https://gerrit.wikimedia.org/r/1015685

Mon, Apr 1, 10:10 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015684 had a related patch set uploaded (by Dreamy Jazz; author: Dreamy Jazz):

[mediawiki/core@REL1_41] Use i18n strings for truncated subpage message

https://gerrit.wikimedia.org/r/1015684

Mon, Apr 1, 10:10 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1016011 had a related patch set uploaded (by Dreamy Jazz; author: Dreamy Jazz):

[mediawiki/core@master] Use i18n strings for truncated subpage message

https://gerrit.wikimedia.org/r/1016011

Mon, Apr 1, 9:56 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Reedy changed the visibility for T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
Mon, Apr 1, 9:11 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Dreamy_Jazz added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
In T357760#9671830, @Reedy wrote:

@Dreamy_Jazz The patches should be landing in master pretty soon. Would you mind making the followup to move the hardcoded en strings into proper i18n messages please?

No massive rush though!

Sure. I'll do that now.

Mon, Apr 1, 7:55 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Dreamy_Jazz added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Can this be made public now?

Mon, Apr 1, 7:54 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team

Thu, Mar 28

gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015423 merged by jenkins-bot:

[mediawiki/core@master] SECURITY: Limit subpages displayed on Special:MovePage form

https://gerrit.wikimedia.org/r/1015423

Thu, Mar 28, 11:20 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Reedy added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

@Dreamy_Jazz The patches should be landing in master pretty soon. Would you mind making the followup to move the hardcoded en strings into proper i18n messages please?

Thu, Mar 28, 11:04 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015415 merged by jenkins-bot:

[mediawiki/core@REL1_40] SECURITY: Limit subpages displayed on Special:MovePage form

https://gerrit.wikimedia.org/r/1015415

Thu, Mar 28, 10:59 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015419 merged by jenkins-bot:

[mediawiki/core@REL1_41] SECURITY: Limit subpages displayed on Special:MovePage form

https://gerrit.wikimedia.org/r/1015419

Thu, Mar 28, 10:58 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015410 merged by jenkins-bot:

[mediawiki/core@REL1_39] SECURITY: Limit subpages displayed on Special:MovePage form

https://gerrit.wikimedia.org/r/1015410

Thu, Mar 28, 10:57 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015423 had a related patch set uploaded (by Reedy; author: Dreamy Jazz):

[mediawiki/core@master] SECURITY: Limit subpages displayed on Special:MovePage form

https://gerrit.wikimedia.org/r/1015423

Thu, Mar 28, 10:51 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015419 had a related patch set uploaded (by Reedy; author: Dreamy Jazz):

[mediawiki/core@REL1_41] SECURITY: Limit subpages displayed on Special:MovePage form

https://gerrit.wikimedia.org/r/1015419

Thu, Mar 28, 10:45 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015415 had a related patch set uploaded (by Reedy; author: Dreamy Jazz):

[mediawiki/core@REL1_40] SECURITY: Limit subpages displayed on Special:MovePage form

https://gerrit.wikimedia.org/r/1015415

Thu, Mar 28, 10:44 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
gerritbot added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Change #1015410 had a related patch set uploaded (by Reedy; author: Dreamy Jazz):

[mediawiki/core@REL1_39] SECURITY: Limit subpages displayed on Special:MovePage form

https://gerrit.wikimedia.org/r/1015410

Thu, Mar 28, 10:44 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team

Wed, Mar 27

Dreamy_Jazz added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
In T357760#9661968, @Reedy wrote:

Patch applies cleanly to MW-1.41-release and master.

rMWa99ec1b4fa59: Title: Use TitleArrayFromResult instead of TitleArray seems to cause the conflicts on MW-1.40-release

T357760-v2-REL1_40.patch4 KBDownload

And applying that patch with -3 works for MW-1.39-release (file rename)

T357760-v2-REL1_39.patch4 KBDownload

+2

Wed, Mar 27, 5:46 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Dreamy_Jazz added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
In T357760#9661953, @Reedy wrote:
diff --git a/includes/specials/SpecialMovePage.php b/includes/specials/SpecialMovePage.php
index d35999b190c..eed3e74a1d7 100644
--- a/includes/specials/SpecialMovePage.php
+++ b/includes/specials/SpecialMovePage.php
@@ -1030,7 +1030,7 @@ class SpecialMovePage extends UnlistedSpecialPage {
                        //  having the i18n rebuilt for all deployments due to this security patch.
                        $out->addWikiTextAsInterface(
                                "The first $maximumMovedPages {{PLURAL:$maximumMovedPages|subpage|subpages}} " .
-                               ( $noSubpageMsg ? 'for the corresponding talk page' : 'for this page' ) . ' are shown below.'
+                               ( $noSubpageMsg ? 'for this page' : 'for the corresponding talk page' ) . ' are shown below.'
                        );
                } else {
                        $out->addWikiMsg( $wikiMsg, $this->getLanguage()->formatNum( $pagecount ) );

T357760-v2.patch4 KBDownload

+2

Wed, Mar 27, 5:44 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team

Tue, Mar 26

Reedy added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Patch applies cleanly to MW-1.41-release and master.

Tue, Mar 26, 3:24 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Reedy added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
diff --git a/includes/specials/SpecialMovePage.php b/includes/specials/SpecialMovePage.php
index d35999b190c..eed3e74a1d7 100644
--- a/includes/specials/SpecialMovePage.php
+++ b/includes/specials/SpecialMovePage.php
@@ -1030,7 +1030,7 @@ class SpecialMovePage extends UnlistedSpecialPage {
                        //  having the i18n rebuilt for all deployments due to this security patch.
                        $out->addWikiTextAsInterface(
                                "The first $maximumMovedPages {{PLURAL:$maximumMovedPages|subpage|subpages}} " .
-                               ( $noSubpageMsg ? 'for the corresponding talk page' : 'for this page' ) . ' are shown below.'
+                               ( $noSubpageMsg ? 'for this page' : 'for the corresponding talk page' ) . ' are shown below.'
                        );
                } else {
                        $out->addWikiMsg( $wikiMsg, $this->getLanguage()->formatNum( $pagecount ) );
Tue, Mar 26, 3:15 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Reedy updated subscribers of T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
Tue, Mar 26, 3:12 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Reedy renamed T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages from Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages to CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
Tue, Mar 26, 2:53 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Reedy added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
In T357760#9598730, @Dreamy_Jazz wrote:
In T357760#9598683, @Mstyles wrote:

Deployed

Thanks. I've been able to verify that this patch works as expected and prevents the request timeout.

There is one bug I didn't find when testing. The hard-coded message is switched around (so the message for the talk pages is above the non-talk pages and vice. versa.). That isn't a major problem IMO and could be fixed once this is uploaded to gerrit.

Tue, Mar 26, 2:52 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team

Mar 5 2024

sbassett added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
In T357760#9599310, @Mstyles wrote:

@Dreamy_Jazz I'm glad that the patch works. I think adding the hard-coded message once this uploaded is fine. There was an issue with deployment which I wanted to note here: https://phabricator.wikimedia.org/T276237#9598800

Mar 5 2024, 3:44 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Mstyles added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

@Dreamy_Jazz I'm glad that the patch works. I think adding the hard-coded message once this uploaded is fine. There was an issue with deployment which I wanted to note here: https://phabricator.wikimedia.org/T276237#9598800

Mar 5 2024, 6:50 AM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team

Mar 4 2024

Dreamy_Jazz added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
In T357760#9598683, @Mstyles wrote:

Deployed

Mar 4 2024, 11:08 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Mstyles added a parent task for T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages: T353895: Tracking bug for MediaWiki 1.39.7/1.40.3/1.41.1.
Mar 4 2024, 10:51 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Mstyles moved T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages from Security Patch To Deploy to Watching on the Security-Team board.
Mar 4 2024, 10:48 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Mstyles added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
In T357760#9553901, @Dreamy_Jazz wrote:

Proposed patch:

T357760.patch4 KBDownload

Note: Due to https://wikitech.wikimedia.org/wiki/How_to_deploy_code#Guidelines_for_creating_patches, this patch has a hardcoded message which is used when the list of subpages is truncated.

Mar 4 2024, 10:48 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team

Feb 28 2024

sbassett added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
In T357760#9584799, @mmartorana wrote:

From a security perspective, there doesn't seem to be any concern with this patch.

Feb 28 2024, 6:15 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
mmartorana moved T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages from Incoming to Security Patch To Deploy on the Security-Team board.

From a security perspective, there doesn't seem to be any concern with this patch.

Feb 28 2024, 5:51 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team

Feb 26 2024

mmartorana changed the status of T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages from Open to In Progress.
Feb 26 2024, 1:14 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team

Feb 20 2024

Jdforrester-WMF closed T354423: Child processes not killed at end of test as Resolved.
Feb 20 2024, 3:33 PM · Vuln-DoS, Patch-For-Review, Abstract Wikipedia Fix-It tasks, function-evaluator, Abstract Wikipedia team
JJMC89 moved T282957: mailman3-web got stuck on lists1001, possible DoS from Backlog to Mailman v3 on the Wikimedia-Mailing-lists board.
Feb 20 2024, 8:14 AM · Upstream, SRE, SecTeam-wikimedia-project-event, SecTeam-Processed, Vuln-DoS, Wikimedia-Mailing-lists, Security

Feb 18 2024

Dreamy_Jazz attached a referenced file: F41970839: T357760.patch.
Feb 18 2024, 11:29 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Dreamy_Jazz added a comment to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.

Proposed patch:

T357760.patch4 KBDownload

Feb 18 2024, 11:27 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Dreamy_Jazz added a project to T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages: Patch-For-Review.
Feb 18 2024, 10:56 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Dreamy_Jazz updated the task description for T357760: CVE-2024-: Denial of service vector via GET request to Special:MovePage on pages with thousands of subpages.
Feb 18 2024, 10:31 PM · MW-1.42-notes (1.42.0-wmf.26; 2024-04-09), MW-1.41-notes, MW-1.40-notes, MW-1.39-notes, SecTeam-Processed, Patch-For-Review, MediaWiki-Page-rename, Vuln-DoS, Security, Security-Team
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL