Security update to version 3.4.3.1 Announce message: "Welcome to phpMyAdmin 3.4.3.1 and to phpMyAdmin 3.3.10.2, which are security releases. Please refer to the upcoming PMASA-2011-5 to PMASA-2011-8 announcements on http://www.phpmyadmin.net/home_page/security/. Details will appear on http://phpmyadmin.net. In a hurry? you can visit http://sourceforge.net/projects/phpmyadmin to download. Marc Delisle, for the team" Security advisories: PMSA-2011-5 -- PMSA-2011-8 should appear at http://www.phpmyadmin.net/home_page/security/, but have not yet been published. ChangeLog: 3.4.3.1 (2011-07-02) - [security] Fixed possible session manipulation in swekey authentication, see PMASA-2011-5 - [security] Fixed possible code injection incase session variables are compromised, see PMASA-2011-6 - [security] Fixed regexp quoting issue in Synchronize code, see PMASA-2011-7 - [security] Fixed filtering of a file path, which allowed for directory traversal, see PMASA-2011-8
Responsible Changed From-To: freebsd-ports-bugs->jlaffaye I'll take it.
jlaffaye 2011-07-03 11:59:52 UTC FreeBSD ports repository Modified files: databases/phpmyadmin Makefile distinfo Log: Update to 3.4.3.1 PR: ports/158603 Submitted by: Matthew Seaman <m.seaman@infracaninophile.co.uk> (maintainer) Approved by: bapt (mentor, implicit) Revision Changes Path 1.138 +1 -1 ports/databases/phpmyadmin/Makefile 1.115 +2 -2 ports/databases/phpmyadmin/distinfo _______________________________________________ cvs-all@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
State Changed From-To: open->closed Committed. Thanks!