[Bug 387215] Re: phpMyAdmin: CVE-2009-1151: Arbitrary code execution

Jamie Strandboge Thu, 15 Apr 2010 05:26:36 -0700

phpmyadmin (4:2.8.0.3-1ubuntu0.2) dapper-security; urgency=low

  * SECURITY UPDATE: Insufficient output sanitizing when generating
    configuration file (LP: #387215).
    - debian/patches/051_CVE-2009-1151.patch: Do not output unescaped
      chars to generated configuration file. Patch from upstream SVN revision
      12301.
    - References:
      + CVE-2009-1151
      + PMASA-2009-3
  * removed unused debian/patches/series file



** Changed in: phpmyadmin (Ubuntu Dapper)
       Status: Fix Committed => Fix Released

-- 
phpMyAdmin: CVE-2009-1151: Arbitrary code execution
https://bugs.launchpad.net/bugs/387215
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.

-- 
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

[Bug 387215] Re: phpMyAdmin: CVE-2009-1151: Arbitrary code execution

Reply via email to