[prev in list] [next in list] [prev in thread] [next in thread] 

List:       oss-security
Subject:    [oss-security] Re: [Phpmyadmin-security] [oss-security] Re: CVE Request -- phpMyAdmin 3.5.8.2 and 4.
From:       Dieter Adriaenssens <dieter.adriaenssens () gmail ! com>
Date:       2013-07-30 15:39:31
Message-ID: 51F7DE33.4070408 () gmail ! com
[Download RAW message or body]


Hi,

Thanks for the CVE IDs.

On 2013-07-30 11:39, Jan Lieskovsky wrote:
>>>> * http://www.phpmyadmin.net/home_page/security/PMASA-2013-8.php
> 
> Use CVE-2013-4995.
> 
> As far as we can tell, this should be the only CVE needed for
> PMASA-2013-8; however, this link gives us a 404 error:
> 
>   "The following commits have been made on the 3.5 branch to
>   fix this issue: 51f343b91908d1b1bacaebe6db87c3d7aa522581"
> 
>> The proper link wrt to PMASA-2013-8 fix in phpMyAdmin v3.5.x seems to be
>> the following:
>>   https://github.com/phpmyadmin/phpmyadmin/commit/01d35b3558e47fba947719857bd71f6fd9e5dce8

The link to the fix for phpMyAdmin 3.5.x was updated in PMASA-2013-8.

Thanks for noticing.

Kind regards,

Dieter Adriaenssens
for the phpMyAdmin security team


["signature.asc" (application/pgp-signature)]

[prev in list] [next in list] [prev in thread] [next in thread]