Ubuntu
phpmyadmin package

Please sync phpmyadmin with debian unstable (3.2.2-1)

Bug #450505 reported by Micah Gersten
262
This bug affects 1 person
Affects Status Importance Assigned to Milestone
phpmyadmin (Ubuntu)
Fix Released
Medium
Unassigned

Bug Description

Binary package hint: phppgadmin

We currently have 3.2.1-1.

 phpmyadmin (4:3.2.2-1) unstable; urgency=low

   * New upstream version.
   * Bump policy to 3.8.3.

 -- Michal Čihař <email address hidden> Mon, 21 Sep 2009 10:26:22 +0200

See original description
Revision history for this message
Micah Gersten (micahg) wrote :

Oops...wrong package.

visibility: private → public
affects: phppgadmin (Ubuntu) → phpmyadmin (Ubuntu)
Micah Gersten (micahg)
description: updated
Revision history for this message
Marc Deslauriers (mdeslaur) wrote :

This is CVE-2009-3696 and CVE-2009-3697. I can't properly tag the bug at this time.

Changed in phpmyadmin (Ubuntu):
status: New → Confirmed
importance: Undecided → Medium
Revision history for this message
Iulian Udrea (iulian) wrote :

Ack.

Changed in phpmyadmin (Ubuntu):
status: Confirmed → New
Revision history for this message
Nathan Handler (nhandler) wrote :

+1 from me as well. It looks mostly like a bug fix update:

3.2.2.1 (2009-10-12)
- [security] XSS and SQL injection, thanks to Herman van Rink

3.2.2.0 (2009-09-13)
- bug #2825293 [structure] Default value for a BIT column
- bug [display] Red arrows were reversed in the list of tables
- bug #2813879 [export] Duplicate empty lines when exporting without comments
- bug #2825919 [export] Trigger export with database name
- bug #2823996 [data] Cannot edit row with no PK and a BIT field
- bug [export] Exporting results of a query which contains a LIMIT clause
  inside a subquery
- bug #2837722 [export] Run complex SQL then export does not work
- bug #2839548 [export] Triggers order on export
- bug #2826986 [display] Order by BLOB and range display
- bug [display] After clicking on Show Function or Function, the UPDATE query
  is not shown after execution
- bug [structure] Missing validation for BINARY and VARBINARY

I'll also ACK the sync.

Changed in phpmyadmin (Ubuntu):
status: New → Confirmed
Revision history for this message
James Westby (james-w) wrote :

[Updating] phpmyadmin (4:3.2.1-1 [Ubuntu] < 4:3.2.2.1-1 [Debian])
 * Trying to add phpmyadmin...
  - <phpmyadmin_3.2.2.1-1.diff.gz: downloading from http://ftp.debian.org/debian/>
  - <phpmyadmin_3.2.2.1.orig.tar.gz: downloading from http://ftp.debian.org/debian/>
  - <phpmyadmin_3.2.2.1-1.dsc: downloading from http://ftp.debian.org/debian/>
I: phpmyadmin [universe] -> phpmyadmin_4:3.2.1-1 [universe].

Changed in phpmyadmin (Ubuntu):
status: Confirmed → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.