[Git][security-tracker-team/security-tracker][master] Update CVE-2018-10188 status

Salvatore Bonaccorso carnil at debian.org
Tue May 1 04:35:47 BST 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
aaf11064 by Salvatore Bonaccorso at 2018-05-01T05:32:10+02:00
Update CVE-2018-10188 status

The changes apply at least to the stretch version partially, and while
looking back at the issue when filled #896490, "For older versions not
all will apply, and code has partially moved files, e.g. the parts in
Operations.php were moved."

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -934,8 +934,6 @@ CVE-2018-10189 (An issue was discovered in Mautic 1.x and 2.x before 2.13.0. It 
 	NOT-FOR-US: Mautic
 CVE-2018-10188 (phpMyAdmin 4.8.0 before 4.8.0-1 has CSRF, allowing an attacker to ...)
 	- phpmyadmin <unfixed> (bug #896490)
-	[stretch] - phpmyadmin <not-affected> (Vulnerable code not present)
-	[jessie] - phpmyadmin <not-affected> (Vulnerable code not present)
 	[wheezy] - phpmyadmin <not-affected> (vulnerable code not present)
 	NOTE: https://www.phpmyadmin.net/security/PMASA-2018-2/
 	NOTE: https://github.com/phpmyadmin/phpmyadmin/commit/c6dd6b56e236a3aff953cee4135ecaa67130e641



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aaf11064fb56c1910d5c9a6e0e374ea98a80d62b

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aaf11064fb56c1910d5c9a6e0e374ea98a80d62b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180501/6ce419ec/attachment.html>


More information about the debian-security-tracker-commits mailing list