[Secure-testing-team] phpbb, CVE-2005-3799: not vulnerable
Thijs Kinkhorst
kink at squirrelmail.org
Wed Nov 30 11:24:30 UTC 2005
Hey people,
This is just a quick note that Debian is not vulnerable to
CVE-2005-3799, "phpBB 2.0.18 allows remote attackers to obtain sensitive
information via a large SQL query", since this is a path disclosure
vulnerability.
We're working on fixing phpbb for sarge for the other issues at the
moment.
regards,
Thijs
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20051130/b74913b4/attachment.pgp
More information about the Secure-testing-team
mailing list