-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 14 May 2015 09:02:17 +0200 Source: phpmyadmin Binary: phpmyadmin Architecture: source all Version: 4:4.4.6.1-1 Distribution: unstable Urgency: high Maintainer: Thijs Kinkhorst <thijs@debian.org> Changed-By: Michal Čihař <nijel@debian.org> Description: phpmyadmin - MySQL web administration tool Changes: phpmyadmin (4:4.4.6.1-1) unstable; urgency=high . * New upstream security release. - CVE-2015-3902 / PMASA-2015-2 - XSRF/CSRF vulnerability in phpMyAdmin setup. - CVE-2015-3903 / PMASA-2015-3 - Vulnerability allowing man-in-the-middle attack on API call to GitHub. Checksums-Sha1: e9030ad9f44d430d6c2137afbf3ffd8156221459 1932 phpmyadmin_4.4.6.1-1.dsc 66a6855b83b30e2fe92a14b7d6202994d5284ab9 5635832 phpmyadmin_4.4.6.1.orig.tar.xz d7fbfc286db9be3e1dd4bc011e14aa90f11d350a 49936 phpmyadmin_4.4.6.1-1.debian.tar.xz 4412e1f0eb021abe4db188aac378d05367f2e407 3780628 phpmyadmin_4.4.6.1-1_all.deb Checksums-Sha256: fc2b0ea6ca40f0ce0d7ab611a627b57a0f3c05dfa670cd99ebf0658404a176fb 1932 phpmyadmin_4.4.6.1-1.dsc d423a81868f01b4ce77f90113d83df96590446acdbe8f00a46aeb670c4a9ac5c 5635832 phpmyadmin_4.4.6.1.orig.tar.xz d748f3d86e802a9b0b0c30f6970395e5667fee09eadfccb6a0f895194a6ad0d0 49936 phpmyadmin_4.4.6.1-1.debian.tar.xz 85d1b1c03e92839721ec256ed25547eac30a1c787ab5bd7eadfa756223930dcf 3780628 phpmyadmin_4.4.6.1-1_all.deb Files: ddc7789c2d5cb77cf743a0a559015c49 1932 web extra phpmyadmin_4.4.6.1-1.dsc bc86caa4a7384d92b5e3aafa8cfc01fb 5635832 web extra phpmyadmin_4.4.6.1.orig.tar.xz e8136783bac374a4ece9157015e0d2cf 49936 web extra phpmyadmin_4.4.6.1-1.debian.tar.xz ab6b44911037b945b7e4bc959ccc707e 3780628 web extra phpmyadmin_4.4.6.1-1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJVVEkcAAoJEGo39bHX+xdNVGUP/jQLRQq6YGFnyg567vrxEvou A1bPvneV9hT5K4Rf0zUxwUldOkniSoURHAqfAtYTo0K2fx2/Vsrblj+FXsa3WfXA 0YPbDOz7VxRpQyNL/0PQAgiUajrw2c+AkkIoj4T5tTcHU03xbmzZ890y+Keh20xE v5aH5WNXQWbwSn0MNVZV6eCqfdghv5ATPfZr46Key+HFA8I44on3JFraAjSt+gfi PQshH8EzbuKGDr/8x0mL5UqUpRo1B6iKbFOP9UkbwI+HH0YxF2EnF7FQY9Vj7Zqz KDoRJc8/y3r82+Fqqe3dLRaSduraxuL190PaxHdwkYmJShvww6nx2dBaWcT4h0QM w3mcme+BygNFu5BtveJIh8FDbkLT7JHmtMGdzBX1wptX4J5uGARHYClQAcG86eJ2 a7T89FB5EzWAdm60ZC6MhIbd3gpeLR3VtUPfIXTWZmn88m4AhnsRrdJWthR30csC q0MiZBJIseBhaXqmAl/3svoLSdHB+KuDjK21PdJoOiu4odNG5e+urqR8ugt0xwx+ 2RvSRaK0WepUb5DOcPo1tT6VE8e8hdmB4qp0EYY7r6H4x7DNbVVasrfvtb6bH386 zwN0LW8p/fMIBXgqrjylDiJOGlQtHzWA7FLtfCQnTvjDJit8lYzLnV6hnvaPdzHW wm84kvM2I8J0djejCAwT =Uw0u -----END PGP SIGNATURE-----