-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Sat, 20 Sep 2008 14:17:52 +0200 Source: phpmyadmin Binary: phpmyadmin Architecture: source all Version: 4:2.9.1.1-8 Distribution: stable-security Urgency: high Maintainer: Thijs Kinkhorst <thijs@debian.org> Changed-By: Thijs Kinkhorst <thijs@debian.org> Description: phpmyadmin - Administrate MySQL over the WWW Changes: phpmyadmin (4:2.9.1.1-8) stable-security; urgency=high . * Update for etch to address security issues. * Remote code execution by authenticated users. [PMASA-2008-7, CVE-2008-4096] * Prohibit phpMyAdmin to be framed by a remote site [PMASA-2008-6, CVE-2008-3456, CVE-2008-3457] * Cross site request forgery to create a database or change the character set (mostly annoyance). [PMASA-2008-5, CVE-2008-3197] Files: 37114453aaf82b81dce82755e64ec033 1011 web extra phpmyadmin_2.9.1.1-8.dsc a5b37a0f2d161337cc2acd5653c42312 54521 web extra phpmyadmin_2.9.1.1-8.diff.gz 01749fe13d966bba1c6394ff2c185204 3607794 web extra phpmyadmin_2.9.1.1-8_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iQEVAwUBSNTxdmz0hbPcukPfAQIhTggAuSYa9xi9r+afdgBBCvq09StXFz9tDgfY CyjYGrNchQF0P7ShH90Z7q1GtTlcF9DVyjVbNh19Mq8o588OkwZJ12Sf4f+1PNRH Nm48m7aG28fvJyHDZYTtWbKoH3sRBjWeu1J6KHMDiURg9uh3dDxp9ZmopCT57DWI 9F2yft703kp8PjYqAPB/ujED/MXDugHWy6SskFlpwfPOHX0xyuMOHAmUItk/0nik nx/aHfWZTK2CTgK4OvSauYnn9zJoeiLNfeSpMM+9SPuUTcBbwb5GpMo7lwFY8yaU ILc5DBmVfoJOJb3xrEHTZE+hv/04L3OVs9feuZQ6VNBOx1kFQjtj5g== =xdHN -----END PGP SIGNATURE----- Accepted: phpmyadmin_2.9.1.1-8.diff.gz to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-8.diff.gz phpmyadmin_2.9.1.1-8.dsc to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-8.dsc phpmyadmin_2.9.1.1-8_all.deb to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-8_all.deb