On Friday 23 of September 2005 01:29, micah wrote: > > They are all fixed in 2.6.4 release. Try to grep on XSS for ChangeLog > > available at > > http://cvs.sourceforge.net/viewcvs.py/phpmyadmin/phpMyAdmin/ChangeLog?rev > >=2.1272&view=auto > > > > I didn't describe them in changelog for unstable release, beacuse the > > upstream did not describe, too. > > > > The sarge backported package is described verbosely, beacuse the fixes > > are provided carefully in separated patches. > > It would be nice to note these in unstable (especially CAN numbers) in > the future, as those of us doing testing-security track these sorts of > things and will continue to ping you asking you about this sort of thing > because it is not obvious in the changelog.
The XSS problem resolved in 2.6.4 release don't have CAN numbers. The only one problem that can be found in mitre database is listed already in unstable package. -- .''`. Piotr Roszatycki, Netia SA : :' : mailto:[EMAIL PROTECTED] `. `' mailto:[EMAIL PROTECTED] `- -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
