> Multiple XSS vulnerabilities have been reported in phpPgAdmin: > https://secunia.com/advisories/46248/ > > Please ensure that unstable is fixed on short notice and give the upload > an elevated urgency tag.
Hi, unstable was fixed a few days ago, unfortunately without a bumped urgency. > Can you also assess whether (old)stable are affected, and if so, provide > packages? If not (affected or able), do let us know aswell. > > In any case, please mention CVE-2011-3598 in your changelogs. https://secunia.com/advisories/46248/ says "prior versions" are affected, so yes. The relevant diff parts are: diff -Nru phppgadmin-5.0.2/classes/Misc.php phppgadmin-5.0.3/classes/Misc.php --- phppgadmin-5.0.2/classes/Misc.php 2011-01-03 20:22:26.000000000 +0100 +++ phppgadmin-5.0.3/classes/Misc.php 2011-10-03 09:37:22.000000000 +0200 @@ -398,7 +398,7 @@ echo "<link rel=\"shortcut icon\" href=\"images/themes/{$conf['theme']}/Favicon.ico\" type=\"image/vnd.microsoft.icon\" />\n"; echo "<link rel=\"icon\" type=\"image/png\" href=\"images/themes/{$conf['theme']}/Introduction.png\" />\n"; echo "<title>", htmlspecialchars($appName); - if ($title != '') echo " - {$title}"; + if ($title != '') echo htmlspecialchars(" - {$title}"); echo "</title>\n"; if ($script) echo "{$script}\n"; diff -Nru phppgadmin-5.0.2/display.php phppgadmin-5.0.3/display.php --- phppgadmin-5.0.2/display.php 2011-01-03 20:22:26.000000000 +0100 +++ phppgadmin-5.0.3/display.php 2011-10-03 09:37:22.000000000 +0200 @@ -572,7 +578,7 @@ // Return if (isset($_REQUEST['return_url']) && isset($_REQUEST['return_desc'])) - echo "\t<li><a href=\"{$_REQUEST['return_url']}\">{$_REQUEST['return_desc']}</a></li>\n"; + echo "\t<li><a href=\"". htmlspecialchars($_REQUEST['return_url']) ."\">". htmlspecialchars($_REQUEST['return_desc']) ."</a></li>\n"; // Edit SQL link if (isset($_REQUEST['query'])) Updated packages attached. Christoph -- c...@df7cb.de | http://www.df7cb.de/
phppgadmin_4.2.2-1lenny1.diff.gz
Description: Binary data
Format: 1.0 Source: phppgadmin Binary: phppgadmin Architecture: all Version: 4.2.2-1lenny1 Maintainer: Isaac Clerencia <is...@debian.org> Uploaders: Peter Eisentraut <pet...@debian.org> Homepage: http://phppgadmin.sourceforge.net/ Standards-Version: 3.8.0 Vcs-Browser: http://svn.debian.org/wsvn/pkg-postgresql/trunk/phppgadmin/ Vcs-Svn: svn://svn.debian.org/pkg-postgresql/trunk/phppgadmin/ Build-Depends: debhelper (>= 5), quilt Checksums-Sha1: a30ff18101982f138bd1a3c9690781bcdfe3ca22 904262 phppgadmin_4.2.2.orig.tar.gz 3ec0d5dfd4e4f31f2d097a29017989e8971d7ed9 8137 phppgadmin_4.2.2-1lenny1.diff.gz Checksums-Sha256: 253503a3c8110eb3e08236c961ca3801879ef2973ab169a400cf0ccdb6a2db05 904262 phppgadmin_4.2.2.orig.tar.gz 2a429c6dade58fd4aff5d75a1536db036c0defb29f81b37796698c43e53c76bf 8137 phppgadmin_4.2.2-1lenny1.diff.gz Files: 68280bb47d6420f423578a0a8d731051 904262 phppgadmin_4.2.2.orig.tar.gz c518a7c8a783ccd95c189ad2c3d18783 8137 phppgadmin_4.2.2-1lenny1.diff.gz
phppgadmin_4.2.3-1.1squeeze1.debian.tar.gz
Description: Binary data
Format: 3.0 (quilt) Source: phppgadmin Binary: phppgadmin Architecture: all Version: 4.2.3-1.1squeeze1 Maintainer: Isaac Clerencia <is...@debian.org> Uploaders: Peter Eisentraut <pet...@debian.org> Homepage: http://phppgadmin.sourceforge.net/ Standards-Version: 3.8.4 Vcs-Browser: http://svn.debian.org/wsvn/pkg-postgresql/trunk/phppgadmin/ Vcs-Svn: svn://svn.debian.org/pkg-postgresql/trunk/phppgadmin/ Build-Depends: debhelper (>= 5) Checksums-Sha1: 163cccde95f616fa876b6bdd78457046cd3c6b3d 892430 phppgadmin_4.2.3.orig.tar.gz 9b1561f97800f46b50057b0bee4986ed1661e6c0 9108 phppgadmin_4.2.3-1.1squeeze1.debian.tar.gz Checksums-Sha256: e03a4ba116bc5d78e815a045ff468ff00d81bd76476c963b30873bd9630f2d9c 892430 phppgadmin_4.2.3.orig.tar.gz f3f73b2182b60d17f445b6b63efbcd7afec7fc0f07f0099f254cbbc7d7af9c0f 9108 phppgadmin_4.2.3-1.1squeeze1.debian.tar.gz Files: b273b7df5a6ddc4a8032b5ceaa838158 892430 phppgadmin_4.2.3.orig.tar.gz 06876576c20b1d5dacfbadad08c466bf 9108 phppgadmin_4.2.3-1.1squeeze1.debian.tar.gz
signature.asc
Description: Digital signature
