Comment 4 for bug 657473
Revision history for this message
| Giuseppe Iuculano (giuseppe-iuculano) wrote Re: [Bug 657473] Re: It looks like you could make SQL injection with $_POST['host'] or some other variables. | #4 |
Hi,
On 02/05/2011 12:30 AM, Kees Cook wrote:
> Since the package referred to in this bug is in universe or
> multiverse, it is community maintained. If you are able, I suggest
> posting a debdiff for this issue. When a debdiff is available, members
> of the security team will review it and publish the package. See the
> following link for more information:
> https:/
>
> ** Changed in: smbind (Ubuntu)
> Status: New => Confirmed
>
> ** Changed in: smbind (Ubuntu)
> Importance: Undecided => Medium
>
> ** Visibility changed to: Public
>
Before making it public, an email to the Debian maintainer or better to
the Debian Security team would be appreciated.
Cheers,
Giuseppe.