[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted phpmyadmin 4:2.9.1.1-8 (source all)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Sat, 20 Sep 2008 14:17:52 +0200
Source: phpmyadmin
Binary: phpmyadmin
Architecture: source all
Version: 4:2.9.1.1-8
Distribution: stable-security
Urgency: high
Maintainer: Thijs Kinkhorst <thijs@debian.org>
Changed-By: Thijs Kinkhorst <thijs@debian.org>
Description: 
 phpmyadmin - Administrate MySQL over the WWW
Changes: 
 phpmyadmin (4:2.9.1.1-8) stable-security; urgency=high
 .
   * Update for etch to address security issues.
   * Remote code execution by authenticated users.
     [PMASA-2008-7, CVE-2008-4096]
   * Prohibit phpMyAdmin to be framed by a remote site
     [PMASA-2008-6, CVE-2008-3456, CVE-2008-3457]
   * Cross site request forgery to create a database or change the
     character set (mostly annoyance).
     [PMASA-2008-5, CVE-2008-3197]
Files: 
 37114453aaf82b81dce82755e64ec033 1011 web extra phpmyadmin_2.9.1.1-8.dsc
 a5b37a0f2d161337cc2acd5653c42312 54521 web extra phpmyadmin_2.9.1.1-8.diff.gz
 01749fe13d966bba1c6394ff2c185204 3607794 web extra phpmyadmin_2.9.1.1-8_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iQEVAwUBSNTxdmz0hbPcukPfAQIhTggAuSYa9xi9r+afdgBBCvq09StXFz9tDgfY
CyjYGrNchQF0P7ShH90Z7q1GtTlcF9DVyjVbNh19Mq8o588OkwZJ12Sf4f+1PNRH
Nm48m7aG28fvJyHDZYTtWbKoH3sRBjWeu1J6KHMDiURg9uh3dDxp9ZmopCT57DWI
9F2yft703kp8PjYqAPB/ujED/MXDugHWy6SskFlpwfPOHX0xyuMOHAmUItk/0nik
nx/aHfWZTK2CTgK4OvSauYnn9zJoeiLNfeSpMM+9SPuUTcBbwb5GpMo7lwFY8yaU
ILc5DBmVfoJOJb3xrEHTZE+hv/04L3OVs9feuZQ6VNBOx1kFQjtj5g==
=xdHN
-----END PGP SIGNATURE-----


Accepted:
phpmyadmin_2.9.1.1-8.diff.gz
  to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-8.diff.gz
phpmyadmin_2.9.1.1-8.dsc
  to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-8.dsc
phpmyadmin_2.9.1.1-8_all.deb
  to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-8_all.deb
Reply to: