Accepted phpmyadmin 4:2.9.1.1-8 (source all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Sat, 20 Sep 2008 14:17:52 +0200
Source: phpmyadmin
Binary: phpmyadmin
Architecture: source all
Version: 4:2.9.1.1-8
Distribution: stable-security
Urgency: high
Maintainer: Thijs Kinkhorst <thijs@debian.org>
Changed-By: Thijs Kinkhorst <thijs@debian.org>
Description:
phpmyadmin - Administrate MySQL over the WWW
Changes:
phpmyadmin (4:2.9.1.1-8) stable-security; urgency=high
.
* Update for etch to address security issues.
* Remote code execution by authenticated users.
[PMASA-2008-7, CVE-2008-4096]
* Prohibit phpMyAdmin to be framed by a remote site
[PMASA-2008-6, CVE-2008-3456, CVE-2008-3457]
* Cross site request forgery to create a database or change the
character set (mostly annoyance).
[PMASA-2008-5, CVE-2008-3197]
Files:
37114453aaf82b81dce82755e64ec033 1011 web extra phpmyadmin_2.9.1.1-8.dsc
a5b37a0f2d161337cc2acd5653c42312 54521 web extra phpmyadmin_2.9.1.1-8.diff.gz
01749fe13d966bba1c6394ff2c185204 3607794 web extra phpmyadmin_2.9.1.1-8_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iQEVAwUBSNTxdmz0hbPcukPfAQIhTggAuSYa9xi9r+afdgBBCvq09StXFz9tDgfY
CyjYGrNchQF0P7ShH90Z7q1GtTlcF9DVyjVbNh19Mq8o588OkwZJ12Sf4f+1PNRH
Nm48m7aG28fvJyHDZYTtWbKoH3sRBjWeu1J6KHMDiURg9uh3dDxp9ZmopCT57DWI
9F2yft703kp8PjYqAPB/ujED/MXDugHWy6SskFlpwfPOHX0xyuMOHAmUItk/0nik
nx/aHfWZTK2CTgK4OvSauYnn9zJoeiLNfeSpMM+9SPuUTcBbwb5GpMo7lwFY8yaU
ILc5DBmVfoJOJb3xrEHTZE+hv/04L3OVs9feuZQ6VNBOx1kFQjtj5g==
=xdHN
-----END PGP SIGNATURE-----
Accepted:
phpmyadmin_2.9.1.1-8.diff.gz
to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-8.diff.gz
phpmyadmin_2.9.1.1-8.dsc
to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-8.dsc
phpmyadmin_2.9.1.1-8_all.deb
to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-8_all.deb
Reply to: