Summary: | www-apps/phprojekt < 5.2.1 multiple vulnerabilities (CVE-2007-{1575|1576|1638|1639}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Pierre-Yves Rofes (RETIRED) <py> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | web-apps |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://secunia.com/advisories/24509/ | ||
Whiteboard: | B2/3 [glsa] p-y | ||
Package list: | Runtime testing required: | --- |
Description
Pierre-Yves Rofes (RETIRED)
2007-03-14 17:02:33 UTC
web-apps please advise and bump as necessary. ping web-apps web-apps, please advise. been over a month without a reaction on this one web-apps, please provide an updated ebuild, otherwise I propose to mask this in about a week maybe any news here? I started going through the open security bugs. No real excuse for the long delay except an extreme lack of manpower in webapps at the moment. Working through the bugs following severity. 5.2.2 in CVS, please wait for the mirrors to pick up the tarball Thx Renat. Arches please test and mark stable. Target keywords are: phprojekt-5.2.2.ebuild:KEYWORDS="ppc x86" x86 stable Stable on ppc. ready for GLSA decision. I vote NO. SQL injection is not nice. Voting YES. i vote yes due to the SQL injection issue and PHP execution of code, which make this bug a B2 (or C2 because of the need of a valid account), then [glsa]. GLSA 200706-07, sorry for the delay |