[Secure-testing-commits] r15767 - data/CVE
Thijs Kinkhorst
thijs at alioth.debian.org
Thu Dec 30 17:28:41 UTC 2010
Author: thijs
Date: 2010-12-30 17:28:40 +0000 (Thu, 30 Dec 2010)
New Revision: 15767
Modified:
data/CVE/list
Log:
pma
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2010-12-29 21:14:33 UTC (rev 15766)
+++ data/CVE/list 2010-12-30 17:28:40 UTC (rev 15767)
@@ -895,11 +895,11 @@
NOTE: unimportant, bypass the pop-up blocker
NOTE: http://trac.webkit.org/changeset/69990
CVE-2010-4481 (phpMyAdmin before 3.4.0-beta1 allows remote attackers to bypass ...)
- - phpmyadmin <unfixed> (bug #608290)
- TODO: check
+ - phpmyadmin 4:3.3.7-3 (bug #608290)
+ NOTE: enables phpinfo output; this is disabled by default and phpinfo on Debian
+ NOTE: systems is by and large full of otherwise predictable information.
CVE-2010-4480 (error.php in PhpMyAdmin 3.3.8.1, and other versions before ...)
- - phpmyadmin <unfixed> (bug #608290)
- TODO: check
+ - phpmyadmin 4:3.3.7-3 (bug #608290)
CVE-2010-4510
REJECTED
CVE-2010-4479 (Unspecified vulnerability in pdf.c in libclamav in ClamAV before ...)
More information about the Secure-testing-commits
mailing list