Bug 5153 - phpmyadmin new security issues CVE-2012-1902 and CVE-2012-1190
Summary: phpmyadmin new security issues CVE-2012-1902 and CVE-2012-1190
Status: RESOLVED FIXED
Alias: None
Product: Mageia
Classification: Unclassified
Component: Security (show other bugs)
Version: 1
Hardware: i586 Linux
Priority: Normal normal
Target Milestone: ---
Assignee: José Jorge
QA Contact:
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2012-03-29 03:45 CEST by David Walser
Modified: 2012-05-05 09:43 CEST (History)
0 users

See Also:
Source RPM: phpmyadmin-3.4.9-1.mga1.src.rpm
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2012-03-29 03:45:44 CEST 
Both of these are described as non-critical upstream, so I'll let you decide whether you want to issue an update for Mageia 1 or not.  At the very least, Cauldron should be updated to 3.4.10.2 to fix CVE-2012-1902.

References:
http://www.phpmyadmin.net/home_page/security/PMASA-2012-1.php
http://www.phpmyadmin.net/home_page/security/PMASA-2012-2.php
David Walser 2012-03-29 03:46:38 CEST

Blocks: (none) => 5046

Comment 1 José Jorge 2012-03-29 22:25:21 CEST 
done for Cauldron, thanks for the report.

For 1 I feel it is too minor.

Status: NEW => RESOLVED
Resolution: (none) => FIXED

Anne Nicolas 2012-05-05 09:43:30 CEST

Blocks: 5046 => (none)
Note You need to log in before you can comment on or make changes to this bug.