[Secure-testing-team] Bug#754201: Potential SQL injection in the ORDER implementation of Zend_Db_Select (ZF2014-04)

Tue, 08 Jul 2014 09:33:40 -0700 

Package: zendframework
Version: 1.12.5-0.1
Severity: grave
Tags: security upstream patch

Affected versions: v1.12.0 up to v1.12.6 (Squeeze and Wheezy are not
affected)
Upstream security issue:
        http://framework.zend.com/security/advisory/ZF2014-04
Upstream patch:
        
https://github.com/zendframework/zf1/commit/da09186c60b9168520e994af4253fba9c19c2b3d

Regards

David

Attachment: signature.asc
Description: Digital signature

_______________________________________________
Secure-testing-team mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-team

Reply via email to