Hi Sébastien,
> Salvatore is mostly away till the end of the week, but he marked those
> no-dsa on the 21st, so I guess that would go toward s-p-u instead.
Thanks! I did not spot you had done that before my ping, so apologies
for that. I've filed bugs against release.debian.org as #893803 and
#89
On Mar/22, Chris Lamb wrote:
> > Can I get an ACK from you to upload those to *-security?
>
> Gentle ping on this? :)
Salvatore is mostly away till the end of the week, but he marked those
no-dsa on the 21st, so I guess that would go toward s-p-u instead.
Cheers,
--Seb
Chris Lamb wrote:
> > I think there litte which upstream could do in addition to what was
> > done in 4.4.0 upstream do mitigate the issue, or am I missing
> > something?
>
> I agree. I filed this bug mostly to track the uploads to wheezy,
> jessie, jessie-backports and stretch :)
>
> Can I get
Hi Salvatore,
> I think there litte which upstream could do in addition to what was
> done in 4.4.0 upstream do mitigate the issue, or am I missing
> something?
I agree. I filed this bug mostly to track the uploads to wheezy,
jessie, jessie-backports and stretch :)
Can I get an ACK from you to u
Hi Chris,
On Wed, Mar 21, 2018 at 02:44:29AM +, Chris Lamb wrote:
> Package: adminer
> Version: 4.2.5-3
> X-Debbugs-CC: t...@security.debian.org
> Severity: grave
> Tags: security
>
> Hi,
>
> the following vulnerability was published for adminer.
>
> CVE-2018-7667[0]:
> | Adminer through 4.
Package: adminer
Version: 4.2.5-3
X-Debbugs-CC: t...@security.debian.org
Severity: grave
Tags: security
Hi,
the following vulnerability was published for adminer.
CVE-2018-7667[0]:
| Adminer through 4.3.1 has SSRF via the server parameter.
If you fix the vulnerability please also make sure to i
6 matches
Mail list logo
