Summary: | dev-db/phpmyadmin php codes injection in version 2.5.7 | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Martin Holzer (RETIRED) <mholzer> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | amd64, me, twp |
Priority: | Highest | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.securityfocus.com/archive/1/367486/2004-06-25/2004-07-01/0 | ||
Whiteboard: | B1 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Martin Holzer (RETIRED)
2004-07-21 12:59:29 UTC
ebuild is already in cvs TODO: mark stable and send out GLSA Stable on x86 (two weeks in ~x86, minor changes since 2.5.6). Stable on sparc. We already saw this in bugs 55606 and 56048, both closed because default conf shipped with Gentoo is not vulnerable. Since users changing their configurations are vulnerable, I think it was a mistake to close them and we will issue a GLSA for this one. Waiting for alpha, amd64, ppc and hppa to mark stable. Removing mips and x86 as they are already done (x86) or have nothing to do about this (mips). Stable on alpha. Stable on hppa. amd64, ppc : please mark stable so that the GLSA can go out. 2.5.7_p1 stable on amd64 fixed on ppc GLSA 200407-22 |