Gentoo Archives: gentoo-commits

From: "Alex Legler (a3li)" <a3li@g.o>
To: gentoo-commits@l.g.o
Subject: [gentoo-commits] gentoo commit in xml/htdocs/security/en/glsa: glsa-200906-03.xml
Date: Mon, 29 Jun 2009 22:37:11
Message-Id: E1MLPTI-0000Xf-4A@stork.gentoo.org
1 a3li 09/06/29 22:37:08
2
3 Added: glsa-200906-03.xml
4 Log:
5 GLSA 200906-03
6
7 Revision Changes Path
8 1.1 xml/htdocs/security/en/glsa/glsa-200906-03.xml
9
10 file : http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200906-03.xml?rev=1.1&view=markup
11 plain: http://sources.gentoo.org/viewcvs.py/gentoo/xml/htdocs/security/en/glsa/glsa-200906-03.xml?rev=1.1&content-type=text/plain
12
13 Index: glsa-200906-03.xml
14 ===================================================================
15 <?xml version="1.0" encoding="utf-8"?>
16 <?xml-stylesheet href="/xsl/glsa.xsl" type="text/xsl"?>
17 <?xml-stylesheet href="/xsl/guide.xsl" type="text/xsl"?>
18 <!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
19
20 <glsa id="200906-03">
21 <title>phpMyAdmin: Multiple vulnerabilities</title>
22 <synopsis>
23 Multiple errors in phpMyAdmin might allow the remote execution of arbitrary
24 code or a Cross-Site Scripting attack.
25 </synopsis>
26 <product type="ebuild">phpmyadmin</product>
27 <announced>June 29, 2009</announced>
28 <revised>June 29, 2009: 01</revised>
29 <bug>263711</bug>
30 <access>remote</access>
31 <affected>
32 <package name="dev-db/phpmyadmin" auto="yes" arch="*">
33 <unaffected range="ge">2.11.9.5</unaffected>
34 <vulnerable range="lt">2.11.9.5</vulnerable>
35 </package>
36 </affected>
37 <background>
38 <p>
39 phpMyAdmin is a web-based management tool for MySQL databases.
40 </p>
41 </background>
42 <description>
43 <p>
44 Multiple vulnerabilities have been reported in phpMyAdmin:
45 </p>
46 <ul>
47 <li>Greg Ose discovered that the setup script does not sanitize input
48 properly, leading to the injection of arbitrary PHP code into the
49 configuration file (CVE-2009-1151).</li>
50 <li>Manuel Lopez Gallego and
51 Santiago Rodriguez Collazo reported that data from cookies used in the
52 "Export" page is not properly sanitized (CVE-2009-1150).</li>
53 </ul>
54 </description>
55 <impact type="high">
56 <p>
57 A remote unauthorized attacker could exploit the first vulnerability to
58 execute arbitrary code with the privileges of the user running
59 phpMyAdmin and conduct Cross-Site Scripting attacks using the second
60 vulnerability.
61 </p>
62 </impact>
63 <workaround>
64 <p>
65 Removing the "scripts/setup.php" file protects you from CVE-2009-1151.
66 </p>
67 </workaround>
68 <resolution>
69 <p>
70 All phpMyAdmin users should upgrade to the latest version:
71 </p>
72 <code>
73 # emerge --sync
74 # emerge --ask --oneshot --verbose &quot;&gt;=dev-db/phpmyadmin-2.11.9.5&quot;</code>
75 </resolution>
76 <references>
77 <uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1150">CVE-2009-1150</uri>
78 <uri link="http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1151">CVE-2009-1151</uri>
79 </references>
80 <metadata tag="submitter" timestamp="Sat, 27 Jun 2009 20:32:40 +0000">
81 a3li
82 </metadata>
83 <metadata tag="bugReady" timestamp="Mon, 29 Jun 2009 22:35:56 +0000">
84 a3li
85 </metadata>
86 </glsa>