Re: stable update: phppgadmin 4.2.3-1.1squeeze1 possible XSS vulerability
On Wed, 2012-04-04 at 21:19 +0200, Christoph Berg wrote:
> Re: Adam D. Barratt 2012-04-04 <[🔎] 1333566352.16478.14.camel@jacala.jungle.funky-badger.org>
> > I'd like to see a full debdiff for final confirmation but based on the
> > commit link above it looks suitable; thanks for working on fixing this
> > issue in stable.
>
> diff -Nru phppgadmin-4.2.3/debian/changelog phppgadmin-4.2.3/debian/changelog
> --- phppgadmin-4.2.3/debian/changelog 2011-10-26 21:53:31.000000000 +0200
> +++ phppgadmin-4.2.3/debian/changelog 2012-03-27 12:33:25.000000000 +0200
> @@ -1,3 +1,9 @@
> +phppgadmin (4.2.3-1.1squeeze2) stable-security; urgency=low
> +
> + * Cherry-pick from 5.0.4: Fix XSS in function.php, reported by Mateusz Goik.
Thanks; please feel free to go ahead with the upload.
Regards,
Adam
Reply to: