Accepted: phpmyadmin, phpmyadmin, phpmyadmin_2.11.3-1ubuntu1.1_i386_translations.tar.gz 4:2.11.3-1ubuntu1.1 (source, i386, raw-translations)

Ubuntu Installer archive at ubuntu.com
Tue Sep 9 14:55:19 BST 2008 

Accepted:
 OK: phpmyadmin_2.11.3.orig.tar.gz
 OK: phpmyadmin_2.11.3-1ubuntu1.1.diff.gz
 OK: phpmyadmin_2.11.3-1ubuntu1.1.dsc
     -> Component: universe Section: web
 OK: phpmyadmin_2.11.3-1ubuntu1.1_all.deb
 OK: phpmyadmin_2.11.3-1ubuntu1.1_i386_translations.tar.gz

Format: 1.7
Date: Fri, 30 May 2008 18:43:32 +1000
Source: phpmyadmin
Binary: phpmyadmin
Architecture: all i386_translations source
Version: 4:2.11.3-1ubuntu1.1
Distribution: hardy-security
Urgency: low
Maintainer: Ubuntu MOTU Developers <ubuntu-motu at lists.ubuntu.com>
Changed-By: William Grant <william at qeuni.net>
Description:
 phpmyadmin - Administrate MySQL over the WWW
Changes:
 phpmyadmin (4:2.11.3-1ubuntu1.1) hardy-security; urgency=low
 .
   * SECURITY UPDATE: sensitive data in session files, reading of arbitrary
     files by users with the CREATE privilege. (LP: #227283)
     - debian/patches/051_CVE-2008-1567.dpatch: Add. Don't save sensitive
       information in session files. Patch from upstream SVN.
     - debian/patches/052_CVE-2008-1924.dpatch: Add. Confirm that the upload
       directory is set. Patch from upstream SVN.
     - References:
       + CVE-2008-1567
       + CVE-2008-1924
       + PMASA-2008-2
       + PMASA-2008-3
Files:
 dac56c4f962d976053a70952075cb8ec 2860312 web extra phpmyadmin_2.11.3-1ubuntu1.1_all.deb
 fd4d0ee9f1ee3f983f4a8bfcbfd82bde 11692 raw-translations - phpmyadmin_2.11.3-1ubuntu1.1_i386_translations.tar.gz
 7cc087ab4a6228d0d87251d88cb8fada 902 web extra phpmyadmin_2.11.3-1ubuntu1.1.dsc
 8a3bdd730db38c404fab1e9d4ce95948 33892 web extra phpmyadmin_2.11.3-1ubuntu1.1.diff.gz
Launchpad-Bugs-Fixed: 227283
Original-Maintainer: Thijs Kinkhorst <thijs at debian.org>

More information about the Hardy-changes mailing list