oss-sec mailing list archives
Re: [Phpmyadmin-security] [oss-security] Re: CVE Request -- phpMyAdmin 3.5.8.2 and 4.0.4.2 are released
From: Dieter Adriaenssens <dieter.adriaenssens () gmail com>
Date: Tue, 30 Jul 2013 17:39:31 +0200
Hi, Thanks for the CVE IDs. On 2013-07-30 11:39, Jan Lieskovsky wrote:
* http://www.phpmyadmin.net/home_page/security/PMASA-2013-8.phpUse CVE-2013-4995. As far as we can tell, this should be the only CVE needed for PMASA-2013-8; however, this link gives us a 404 error: "The following commits have been made on the 3.5 branch to fix this issue: 51f343b91908d1b1bacaebe6db87c3d7aa522581"The proper link wrt to PMASA-2013-8 fix in phpMyAdmin v3.5.x seems to be the following: https://github.com/phpmyadmin/phpmyadmin/commit/01d35b3558e47fba947719857bd71f6fd9e5dce8
The link to the fix for phpMyAdmin 3.5.x was updated in PMASA-2013-8. Thanks for noticing. Kind regards, Dieter Adriaenssens for the phpMyAdmin security team
Attachment:
signature.asc
Description: OpenPGP digital signature
Current thread:
- CVE Request -- phpMyAdmin 3.5.8.2 and 4.0.4.2 are released Jan Lieskovsky (Jul 29)
- Re: CVE Request -- phpMyAdmin 3.5.8.2 and 4.0.4.2 are released cve-assign (Jul 29)
- Re: CVE Request -- phpMyAdmin 3.5.8.2 and 4.0.4.2 are released cve-assign (Jul 29)
- Re: Re: CVE Request -- phpMyAdmin 3.5.8.2 and 4.0.4.2 are released Jan Lieskovsky (Jul 30)
- Re: [Phpmyadmin-security] [oss-security] Re: CVE Request -- phpMyAdmin 3.5.8.2 and 4.0.4.2 are released Dieter Adriaenssens (Jul 30)
- Re: Re: CVE Request -- phpMyAdmin 3.5.8.2 and 4.0.4.2 are released Jan Lieskovsky (Jul 30)