Ubuntu
phpmyadmin package

  1. Bug #696857
  2. Comment #3

Comment 3 for bug 696857

Revision history for this message
Jamie Strandboge (jdstrand) wrote : Re: Sync phpmyadmin 4:3.3.7-3 (universe) from Debian testing (main) to maverick-security

phpmyadmin (4:3.3.7-3build0.10.10.1) maverick-security; urgency=low

  * fake sync from Debian

phpmyadmin (4:3.3.7-3) unstable; urgency=high

  * Address two security issues (Closes: #608290):
  - It was possible to display arbitrary text and link to external site
    using parameters passed to particular script
    (CVE-2010-4480, PMASA-2010-9).
  - Phpinfo could be visible to not logged in users if this feature was
    enabled (minor issue; CVE-2010-4481, PMASA-2010-10).