[Git][security-tracker-team/security-tracker][master] Update CVE-2018-10188 status
Salvatore Bonaccorso
carnil at debian.org
Tue May 1 04:35:47 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
aaf11064 by Salvatore Bonaccorso at 2018-05-01T05:32:10+02:00
Update CVE-2018-10188 status
The changes apply at least to the stretch version partially, and while
looking back at the issue when filled #896490, "For older versions not
all will apply, and code has partially moved files, e.g. the parts in
Operations.php were moved."
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -934,8 +934,6 @@ CVE-2018-10189 (An issue was discovered in Mautic 1.x and 2.x before 2.13.0. It
NOT-FOR-US: Mautic
CVE-2018-10188 (phpMyAdmin 4.8.0 before 4.8.0-1 has CSRF, allowing an attacker to ...)
- phpmyadmin <unfixed> (bug #896490)
- [stretch] - phpmyadmin <not-affected> (Vulnerable code not present)
- [jessie] - phpmyadmin <not-affected> (Vulnerable code not present)
[wheezy] - phpmyadmin <not-affected> (vulnerable code not present)
NOTE: https://www.phpmyadmin.net/security/PMASA-2018-2/
NOTE: https://github.com/phpmyadmin/phpmyadmin/commit/c6dd6b56e236a3aff953cee4135ecaa67130e641
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aaf11064fb56c1910d5c9a6e0e374ea98a80d62b
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/aaf11064fb56c1910d5c9a6e0e374ea98a80d62b
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180501/6ce419ec/attachment.html>
More information about the debian-security-tracker-commits
mailing list