[Bug 91094] [Sync request] Sync mydms (1.4.4+1-5) from Debian unstable (main)
Michael Bienia
michael at vorlon.ping.de
Sat Mar 10 10:56:21 GMT 2007
Public bug reported:
Binary package hint: mydms
Please sync mydms (1.4.4+1-5) from Debian unstable (main).
The Ubuntu package has no changes.
Thanks.
Changelog:
mydms (1.4.4+1-5) unstable; urgency=high
* Security: SQL Injection could be done changing cookies content if the
userID is not checked to be numeric only (Thanks to Rolan Benavent from
Dulasoft SL)
* Security: SQL Injection could be done as result of an incorrect checking
order in sanitize function.
-- Miguel Gea Milvaques <xerakko at debian.org> Fri, 16 Feb 2007 17:21:38
+0100
** Affects: mydms (Ubuntu)
Importance: Undecided
Status: Unconfirmed
--
[Sync request] Sync mydms (1.4.4+1-5) from Debian unstable (main)
https://launchpad.net/bugs/91094
More information about the ubuntu-archive
mailing list