[Secure-testing-team] Re: phpbb, CVE-2005-3799: not vulnerable
Martin Schulze
joey at infodrom.org
Wed Nov 30 19:11:25 UTC 2005
Thijs Kinkhorst wrote:
> Hey people,
>
> This is just a quick note that Debian is not vulnerable to
> CVE-2005-3799, "phpBB 2.0.18 allows remote attackers to obtain sensitive
> information via a large SQL query", since this is a path disclosure
> vulnerability.
>
> We're working on fixing phpbb for sarge for the other issues at the
> moment.
Thanks.
Regards,
Joey
--
Have you ever noticed that "General Public Licence" contains the word "Pub"?
More information about the Secure-testing-team
mailing list