Re: Getting phpldapadmin (CVE-2018-12869) fixed

To: Brian May <bam@debian.org>
Cc: debian-lts@lists.debian.org
Subject: Re: Getting phpldapadmin (CVE-2018-12869) fixed
From: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
Date: Thu, 16 Aug 2018 22:43:29 +0000
Message-id: <[🔎] 20180816224329.Horde.0Q5ErwgC4mRogBjXKArUkVI@mail.das-netzwerkteam.de>
In-reply-to: <[🔎] 87h8jug4u8.fsf@silverfish.pri>
References: <20180731134703.Horde.jeCcSMwjwhum2jlfHkbLHgD@mail.das-netzwerkteam.de> <[🔎] 87h8jug4u8.fsf@silverfish.pri>

Hi Brian,

On  Do 16 Aug 2018 09:15:11 CEST, Brian May wrote:

Mike Gabriel <mike.gabriel@das-netzwerkteam.de> writes:

Unfortunately, I can only continue working on this when back from
vacation (13th Aug). I will remove my name from the package in
dla-needed.txt and if noone else has picked it up until then, I will
continue my work that I already started today.


Hello,

Just curious if you still intend to pick this up?

Regards

I'll sit down and draft a patch beginning of next week and send it tothis list for feedback. As phpldapadmin is not a customer-usedpackage, I am unsure how much time we want to invest withoutupstream's and exploit author's help. I will invest another paid 2hmax in this, I guess (unless vetoed by Freexian).


Mike

--

DAS-NETZWERKTEAM
mike gabriel, herweg 7, 24357 fleckeby
mobile: +49 (1520) 1976 148
landline: +49 (4354) 8390 139

GnuPG Fingerprint: 9BFB AEE8 6C0A A5FF BF22  0782 9AF4 6B30 2577 1B31
mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de

Attachment: pgpbdMLp4bY2L.pgp
Description: Digitale PGP-Signatur

Reply to:

References:
- Re: Getting phpldapadmin (CVE-2018-12869) fixed
  - From: Brian May <bam@debian.org>

Prev by Date: Re: Apache2 CVE-2016-4975
Next by Date: Re: Mosquitto / CVE-2017-7653
Previous by thread: Re: Getting phpldapadmin (CVE-2018-12869) fixed
Next by thread: Mosquitto / CVE-2017-7654
Index(es):
- Date
- Thread