[Secure-testing-team] phpmyadmin update
Stefan Fritsch
sf at sfritsch.de
Tue May 15 16:31:07 UTC 2007
On Monday 14 May 2007, Moritz Muehlenhoff wrote:
> > http://www.php-security.org/MOPB/MOPB-02-2007.html
>
> This tracker data is likely wrong.
>
> If it should have really fixed in this NMU:
> "php5 (5.1.4-0.1) unstable; urgency=high"
> it most probably got lost afterwards. Stefan Esser specifically
> mentions it as present in all versions in above MOPB URL and has
> added a note: "Update: The description in CVE-2006-1549 is
> misleading. It reads as if the bugs were fixed in PHP 4.4.3 and PHP
> 5.2.0, which is not the case."
The changelog claims that it has been fixed by a new upstream version,
so it is still unfixed. So it probably should be fixed in the
applications.
Cheers,
Stefan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.alioth.debian.org/pipermail/secure-testing-team/attachments/20070515/7b6fccf6/attachment.pgp
More information about the Secure-testing-team
mailing list