PMASA-2005-6 when "register_globals = on"

To: Debian Security Team <team@security.debian.org>
Cc: debian-security@lists.debian.org
Subject: PMASA-2005-6 when "register_globals = on"
From: Piotr Roszatycki <Piotr_Roszatycki@netia.net.pl>
Date: Tue, 15 Nov 2005 17:54:32 +0100
Message-id: <[🔎] 200511151754.32997.Piotr_Roszatycki@netia.net.pl>

http://www.phpmyadmin.net/home_page/security.php?issue=PMASA-2005-6 reports 
that sarge's phpmyadmin package has a security flaw which is occured only if 
"register_globals = on" setting is used.

This feature is disabled in Debian package by default so I doubt if this is 
serious problem. I'd like to ask if I should prepare the new package for 
sarge or not?

-- 
 .''`.    Piotr Roszatycki, Netia SA
: :' :    mailto:Piotr_Roszatycki@netia.net.pl
`. `'     mailto:dexter@debian.org
  `-

Reply to:

Follow-Ups:
- Re: PMASA-2005-6 when "register_globals = on"
  - From: Neil McGovern <neilm@debian.org>
- Re: PMASA-2005-6 when "register_globals = on"
  - From: Steve Kemp <skx@debian.org>

Prev by Date: unsuscribe
Next by Date: Re: PMASA-2005-6 when "register_globals = on"
Previous by thread: Re: speaking about ssl problems...
Next by thread: Re: PMASA-2005-6 when "register_globals = on"
Index(es):
- Date
- Thread