Bug#644290: phppgadmin multiple XSS (CVE-2011-3598)
On Sat, 2012-01-07 at 19:38 +, Adam D. Barratt wrote: On Sat, 2012-01-07 at 19:49 +0100, Christoph Berg wrote: Found them on the notebook. I've just uploaded them to ftp-master. Release team: please consider including them in the next (old)stable update. It would have been appreciated if you could have sent debdiffs first, as per the Dev Ref etc. In any case, now that they've been uploaded they'll get processed in due course. For the record, both lenny and squeeze packages have now been accepted; thanks. Regards, Adam -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#644290: phppgadmin multiple XSS (CVE-2011-3598)
Re: Moritz Mühlenhoff 2012-01-05 20120105182845.GA3882@pisco.westfalen.local On Thu, Jan 05, 2012 at 10:00:43AM +0100, Christoph Berg wrote: Re: Moritz Muehlenhoff 2012-01-04 20120104171956.ga4...@inutil.org Can you also assess whether (old)stable are affected, and if so, provide packages? If not (affected or able), do let us know aswell. In any case, please mention CVE-2011-3598 in your changelogs. https://secunia.com/advisories/46248/ says prior versions are affected, so yes. The relevant diff parts are: Apparently this fell through the cracks. :-/ The impact of this issue is rather minor. Could you please fix this in the upcoming 6.0.4 point release for Squeeze? http://www.debian.org/doc/manuals/developers-reference/pkgs.html#upload-stable Hi, I'm not sure I still have the squeeze/lenny packages I uploaded to security-master. Could you push them to ftp-master? I don't see any trace of them on security-master, neither in the queue nor in the morgue. Maybe they got rejected because they weren't build with -sa? Annoyingly dak doesn't send the reject mail to the uploader. Found them on the notebook. I've just uploaded them to ftp-master. Release team: please consider including them in the next (old)stable update. Christoph -- c...@df7cb.de | http://www.df7cb.de/ signature.asc Description: Digital signature
Bug#644290: phppgadmin multiple XSS (CVE-2011-3598)
On Sat, 2012-01-07 at 19:49 +0100, Christoph Berg wrote: Found them on the notebook. I've just uploaded them to ftp-master. Release team: please consider including them in the next (old)stable update. It would have been appreciated if you could have sent debdiffs first, as per the Dev Ref etc. In any case, now that they've been uploaded they'll get processed in due course. Regards, Adam -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#644290: phppgadmin multiple XSS (CVE-2011-3598)
Re: Moritz Muehlenhoff 2012-01-04 20120104171956.ga4...@inutil.org Can you also assess whether (old)stable are affected, and if so, provide packages? If not (affected or able), do let us know aswell. In any case, please mention CVE-2011-3598 in your changelogs. https://secunia.com/advisories/46248/ says prior versions are affected, so yes. The relevant diff parts are: Apparently this fell through the cracks. :-/ The impact of this issue is rather minor. Could you please fix this in the upcoming 6.0.4 point release for Squeeze? http://www.debian.org/doc/manuals/developers-reference/pkgs.html#upload-stable Hi, I'm not sure I still have the squeeze/lenny packages I uploaded to security-master. Could you push them to ftp-master? Christoph -- c...@df7cb.de | http://www.df7cb.de/ signature.asc Description: Digital signature
Bug#644290: phppgadmin multiple XSS (CVE-2011-3598)
On Thu, Jan 05, 2012 at 10:00:43AM +0100, Christoph Berg wrote: Re: Moritz Muehlenhoff 2012-01-04 20120104171956.ga4...@inutil.org Can you also assess whether (old)stable are affected, and if so, provide packages? If not (affected or able), do let us know aswell. In any case, please mention CVE-2011-3598 in your changelogs. https://secunia.com/advisories/46248/ says prior versions are affected, so yes. The relevant diff parts are: Apparently this fell through the cracks. :-/ The impact of this issue is rather minor. Could you please fix this in the upcoming 6.0.4 point release for Squeeze? http://www.debian.org/doc/manuals/developers-reference/pkgs.html#upload-stable Hi, I'm not sure I still have the squeeze/lenny packages I uploaded to security-master. Could you push them to ftp-master? I don't see any trace of them on security-master, neither in the queue nor in the morgue. Maybe they got rejected because they weren't build with -sa? Annoyingly dak doesn't send the reject mail to the uploader. Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#644290: phppgadmin multiple XSS (CVE-2011-3598)
On Mon, Oct 10, 2011 at 10:27:36AM +0200, Christoph Berg wrote: Can you also assess whether (old)stable are affected, and if so, provide packages? If not (affected or able), do let us know aswell. In any case, please mention CVE-2011-3598 in your changelogs. https://secunia.com/advisories/46248/ says prior versions are affected, so yes. The relevant diff parts are: Apparently this fell through the cracks. :-/ The impact of this issue is rather minor. Could you please fix this in the upcoming 6.0.4 point release for Squeeze? http://www.debian.org/doc/manuals/developers-reference/pkgs.html#upload-stable Cheers, Moritz -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
Bug#644290: phppgadmin multiple XSS (CVE-2011-3598)
Multiple XSS vulnerabilities have been reported in phpPgAdmin:
https://secunia.com/advisories/46248/
Please ensure that unstable is fixed on short notice and give the upload
an elevated urgency tag.
Hi,
unstable was fixed a few days ago, unfortunately without a bumped
urgency.
Can you also assess whether (old)stable are affected, and if so, provide
packages? If not (affected or able), do let us know aswell.
In any case, please mention CVE-2011-3598 in your changelogs.
https://secunia.com/advisories/46248/ says prior versions are
affected, so yes.
The relevant diff parts are:
diff -Nru phppgadmin-5.0.2/classes/Misc.php phppgadmin-5.0.3/classes/Misc.php
--- phppgadmin-5.0.2/classes/Misc.php 2011-01-03 20:22:26.0 +0100
+++ phppgadmin-5.0.3/classes/Misc.php 2011-10-03 09:37:22.0 +0200
@@ -398,7 +398,7 @@
echo link rel=\shortcut icon\
href=\images/themes/{$conf['theme']}/Favicon.ico\
type=\image/vnd.microsoft.icon\ /\n;
echo link rel=\icon\ type=\image/png\
href=\images/themes/{$conf['theme']}/Introduction.png\ /\n;
echo title, htmlspecialchars($appName);
- if ($title != '') echo - {$title};
+ if ($title != '') echo htmlspecialchars( -
{$title});
echo /title\n;
if ($script) echo {$script}\n;
diff -Nru phppgadmin-5.0.2/display.php phppgadmin-5.0.3/display.php
--- phppgadmin-5.0.2/display.php2011-01-03 20:22:26.0 +0100
+++ phppgadmin-5.0.3/display.php2011-10-03 09:37:22.0 +0200
@@ -572,7 +578,7 @@
// Return
if (isset($_REQUEST['return_url'])
isset($_REQUEST['return_desc']))
- echo \tlia
href=\{$_REQUEST['return_url']}\{$_REQUEST['return_desc']}/a/li\n;
+ echo \tlia href=\.
htmlspecialchars($_REQUEST['return_url']) .\.
htmlspecialchars($_REQUEST['return_desc']) ./a/li\n;
// Edit SQL link
if (isset($_REQUEST['query']))
Updated packages attached.
Christoph
--
c...@df7cb.de | http://www.df7cb.de/
phppgadmin_4.2.2-1lenny1.diff.gz
Description: Binary data
Format: 1.0
Source: phppgadmin
Binary: phppgadmin
Architecture: all
Version: 4.2.2-1lenny1
Maintainer: Isaac Clerencia is...@debian.org
Uploaders: Peter Eisentraut pet...@debian.org
Homepage: http://phppgadmin.sourceforge.net/
Standards-Version: 3.8.0
Vcs-Browser: http://svn.debian.org/wsvn/pkg-postgresql/trunk/phppgadmin/
Vcs-Svn: svn://svn.debian.org/pkg-postgresql/trunk/phppgadmin/
Build-Depends: debhelper (= 5), quilt
Checksums-Sha1:
a30ff18101982f138bd1a3c9690781bcdfe3ca22 904262 phppgadmin_4.2.2.orig.tar.gz
3ec0d5dfd4e4f31f2d097a29017989e8971d7ed9 8137 phppgadmin_4.2.2-1lenny1.diff.gz
Checksums-Sha256:
253503a3c8110eb3e08236c961ca3801879ef2973ab169a400cf0ccdb6a2db05 904262
phppgadmin_4.2.2.orig.tar.gz
2a429c6dade58fd4aff5d75a1536db036c0defb29f81b37796698c43e53c76bf 8137
phppgadmin_4.2.2-1lenny1.diff.gz
Files:
68280bb47d6420f423578a0a8d731051 904262 phppgadmin_4.2.2.orig.tar.gz
c518a7c8a783ccd95c189ad2c3d18783 8137 phppgadmin_4.2.2-1lenny1.diff.gz
phppgadmin_4.2.3-1.1squeeze1.debian.tar.gz
Description: Binary data
Format: 3.0 (quilt)
Source: phppgadmin
Binary: phppgadmin
Architecture: all
Version: 4.2.3-1.1squeeze1
Maintainer: Isaac Clerencia is...@debian.org
Uploaders: Peter Eisentraut pet...@debian.org
Homepage: http://phppgadmin.sourceforge.net/
Standards-Version: 3.8.4
Vcs-Browser: http://svn.debian.org/wsvn/pkg-postgresql/trunk/phppgadmin/
Vcs-Svn: svn://svn.debian.org/pkg-postgresql/trunk/phppgadmin/
Build-Depends: debhelper (= 5)
Checksums-Sha1:
163cccde95f616fa876b6bdd78457046cd3c6b3d 892430 phppgadmin_4.2.3.orig.tar.gz
9b1561f97800f46b50057b0bee4986ed1661e6c0 9108
phppgadmin_4.2.3-1.1squeeze1.debian.tar.gz
Checksums-Sha256:
e03a4ba116bc5d78e815a045ff468ff00d81bd76476c963b30873bd9630f2d9c 892430
phppgadmin_4.2.3.orig.tar.gz
f3f73b2182b60d17f445b6b63efbcd7afec7fc0f07f0099f254cbbc7d7af9c0f 9108
phppgadmin_4.2.3-1.1squeeze1.debian.tar.gz
Files:
b273b7df5a6ddc4a8032b5ceaa838158 892430 phppgadmin_4.2.3.orig.tar.gz
06876576c20b1d5dacfbadad08c466bf 9108
phppgadmin_4.2.3-1.1squeeze1.debian.tar.gz
signature.asc
Description: Digital signature
Bug#644290: phppgadmin multiple XSS (CVE-2011-3598)
Package: phppgadmin Severity: critical Tags: security Hi, Multiple XSS vulnerabilities have been reported in phpPgAdmin: https://secunia.com/advisories/46248/ Please ensure that unstable is fixed on short notice and give the upload an elevated urgency tag. Can you also assess whether (old)stable are affected, and if so, provide packages? If not (affected or able), do let us know aswell. In any case, please mention CVE-2011-3598 in your changelogs. thanks, Thijs -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of unsubscribe. Trouble? Contact listmas...@lists.debian.org
