Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  NEWS  community  lists  Wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Password Recovery Resources on the Net
[<prev] [next>] [<thread-prev] [thread-next>] [month] [year] [list] 
Date: Wed, 14 Oct 2009 20:46:17 +0200
From: Jan Lieskovsky <jlieskov@...hat.com>
To: oss-security@...ts.openwall.com
Subject: Re: CVE Request -- phpMyAdmin

Hi Hanno,

Hanno Böck wrote:
> Am Mittwoch 14 Oktober 2009 schrieb Jan Lieskovsky:
>>    phpMyAdmin upstream has released 3.2.2.1 or 2.11.9.6 updates, fixing
>> one XSS and one SQL injection vulnerability.
>>
>> References:
>> -----------
>> http://www.phpmyadmin.net/home_page/security/PMASA-2009-6.php
> 
> Cite:
> 
>> References
>>
>> We wish to thank Quintin Russ for informing us in a responsible manner.
>>
>> Assigned CVE ids: CVE-2009-3696 CVE-2009-3697 

Right, sorry, I am blind :(.

Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team

>

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ