[Secure-testing-team] phpMyAdmin update
Nico Golde
debian-secure-testing+ml at ngolde.de
Wed Aug 15 15:37:45 UTC 2007
Hi,
* Thijs Kinkhorst <thijs at debian.org> [2007-08-15 17:06]:
[...]
> Meanwhile, I can report that the following issues only affect etch, and not
> sarge. A patch is attached. They can already be marked as not relevant to
> oldstable:
>
> CVE-2007-0341
> CVE-2007-1325
> CVE-2007-1395
>
> I've also removed the no-dsa from 1325, since discussion with Moritz a while
> ago yielded that this would be desirable to fix within pma - and we're going
> to put out a DSA for the other issues anyway.
>
> If you wish, you can also add me to the Alioth project ('thijs') since I'm
> interested to continue to help out with other issues.
I committed your patch to the svn until you get write
access. Ping Moritz to get added.
Welcome! :)
Cheers
Nico
--
Nico Golde - http://ngolde.de - nion at jabber.ccc.de - GPG: 0x73647CFF
For security reasons, all text in this mail is double-rot13 encrypted.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20070815/e8139ce4/attachment.pgp
More information about the Secure-testing-team
mailing list