-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Thu, 25 Jun 2009 22:28:24 +0200 Source: phpmyadmin Binary: phpmyadmin Architecture: source all Version: 4:2.9.1.1-11 Distribution: oldstable-security Urgency: high Maintainer: Thijs Kinkhorst <thijs@debian.org> Changed-By: Thijs Kinkhorst <thijs@debian.org> Description: phpmyadmin - Administrate MySQL over the WWW Changes: phpmyadmin (4:2.9.1.1-11) oldstable-security; urgency=high . * Upload to oldstable to fix security issues. * Cross site scripting in export page using cookies. [CVE-2009-1150, PMASA-2009-2] * Static code injection in setup.php. This file should normally be protected by Apache authentication. [CVE-2009-1151, PMASA-2009-3] Files: c1bf0fcab92a24bb1098741af970bf17 1021 web extra phpmyadmin_2.9.1.1-11.dsc 8450833432ad5375f2f2ee1e46e1f2ed 55496 web extra phpmyadmin_2.9.1.1-11.diff.gz de0e342fbad8c9ee88c7d7d146a8d570 3603256 web extra phpmyadmin_2.9.1.1-11_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iQEcBAEBAgAGBQJKQ+CUAAoJECIIoQCMVaAcm9UH/2J9J505WgNWieo5OtapNpT9 0Bjb0vDN9xYZXVCQ6VPO/uk1Vd3q3aJ/xyKOr9mn1yael+2BlfRKTyBba4nM8e7v wkY3ZCdJpxJ5dkazzYc/VS6wMruBPncVh9PKLls/N5rjfVpmkAXUT+HXxusSpgzY rWuwTe3Ivrpv5DCpxL5G/myLgTJ3331SbboFh/JM+Hzmu5HPUy3dPeBdVo7/5+zY mHekn8qrF+ey82wn59ZGjlx2vGzYhRhZ0i/SQqYu9wA19LkT0SCzqP2a6qIniLCz BxLm4X/tTMcvuoX2e4E2q/6ifOBC2ATaKlSeMKCL78edEegX2ajAo9rNnNH73sk= =loLl -----END PGP SIGNATURE----- Accepted: phpmyadmin_2.9.1.1-11.diff.gz to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-11.diff.gz phpmyadmin_2.9.1.1-11.dsc to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-11.dsc phpmyadmin_2.9.1.1-11_all.deb to pool/main/p/phpmyadmin/phpmyadmin_2.9.1.1-11_all.deb