Summary: | dev-db/phpmyadmin: path disclosure (CVE-2007-0095) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Executioner <keith> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | keith, web-apps |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://xforce.iss.net/xforce/xfdb/31223 | ||
Whiteboard: | B4 [noglsa] jaervosz | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 175847 | ||
Bug Blocks: |
Description
Executioner
2007-01-05 16:36:01 UTC
web-apps please advise. another issue is already being handled: bug 161460. Do we know what version fixes this path disclosure? since the mentioned file has not been modified in svn <http://phpmyadmin.svn.sourceforge.net/viewvc/phpmyadmin/trunk/phpMyAdmin/themes/darkblue_orange/> for months, I guess the latest version is still affected Doesn't look like 2.9.2 fixed this. http://www.redhat.com/archives/fedora-security-list/2007-January/msg00031.html anybody knows if 2.10.0.2 fixes this? According to: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=221694 this is not fixed in 2.10.0.2. upstream released 2.10.1, seems that it fixes it. 2.10.1 is in the tree Thx Renat. Handling stable marking on bug #175847. Closing with bug 175847. Feel free to reopen if you disagree. |