Bug 10666 - phpmyadmin new security issue CVE-2013-4729
Summary: phpmyadmin new security issue CVE-2013-4729
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: Cauldron
Hardware: i586 Linux
Priority: Normal major
Target Milestone: ---
Assignee: José Jorge
QA Contact: Sec team
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-06-30 22:32 CEST by David Walser
Modified: 2013-07-02 18:44 CEST (History)
1 user (show)

See Also:
Source RPM: phpmyadmin-4.0.3-1.mga3.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2013-06-30 22:32:24 CEST 
Upstream has issued an advisory today (June 30):
http://www.phpmyadmin.net/home_page/security/PMASA-2013-7.php

The issue is fixed in 4.0.4.1.

Mageia 3 is also affected.  Mageia 2 is not (only 4.0.x is affected).

Reproducible: 

Steps to Reproduce:
David Walser 2013-06-30 22:32:40 CEST

CC: (none) => oe
Whiteboard: (none) => MGA3TOO

Comment 1 José Jorge 2013-07-02 18:44:56 CEST 
Thanks for the report, cauldron is updated.
MGA3 is not affected, as I kept 3.x versions in it.

Status: NEW => RESOLVED
Resolution: (none) => FIXED
Whiteboard: MGA3TOO => (none)
Note You need to log in before you can comment on or make changes to this bug.