Forum: >>> Magnum BBS <<<

[SECURITY] [DSA 5101-1] libphp-adodb security update

From Salvatore Bonaccorso@21:1/5 to All on Sun Mar 13 16:00:01 2022

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

- ------------------------------------------------------------------------- Debian Security Advisory DSA-5101-1 security@debian.org https://www.debian.org/security/ Salvatore Bonaccorso
March 13, 2022 https://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package : libphp-adodb
CVE ID : CVE-2021-3850
Debian Bug : 1004376

Emmet Leahy reported that libphp-adodb, a PHP database abstraction layer library, allows to inject values into a PostgreSQL connection string.
Depending on how the library is used this flaw can result in
authentication bypass, reveal a server IP address or have other
unspecified impact.

For the oldstable distribution (buster), this problem has been fixed
in version 5.20.14-1+deb10u1.

For the stable distribution (bullseye), this problem has been fixed in
version 5.20.19-1+deb11u1.

We recommend that you upgrade your libphp-adodb packages.

For the detailed security status of libphp-adodb please refer to its
security tracker page at: https://security-tracker.debian.org/tracker/libphp-adodb

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: debian-security-announce@lists.debian.org
-----BEGIN PGP SIGNATURE-----

iQKTBAEBCgB9FiEERkRAmAjBceBVMd3uBUy48xNDz0QFAmIuA5pfFIAAAAAALgAo aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldDQ2 NDQ0MDk4MDhDMTcxRTA1NTMxRERFRTA1NENCOEYzMTM0M0NGNDQACgkQBUy48xND z0TpVA//bYjd0FcCYTX2H6P0oFaaKYORpHb9YnGaXU/44hinNCzizRNOThHBWDQP yhQrFjls6MuEYDCk3nfolJH/PMU3fShTpTtxWYOjgdnu1jqRIHD4A0hXMIXSR8Ru 1LS0oMcRjbnbM5uV/v+wDKCsor2PcdUMB0EQPu3Lv6o2rxJ5HaKRNjtk3tZWI3Xn wo9i7ufVmyaOiPsgyYryAUnmi1wG9HLmKdHRNbOUH91SaZvV4Iu+6JExVm+NUn1W tP5I+BC2VDcGVkFUKNUXAG0Ly35mytXNLlIGZ+ciJVJhJPEGBJQy1917FvhPkZdk CR30PcIyJtKQ5ykrvBRuSMai0gCzy2R21JpgPTXOzQYTPO1KIjQgmXPZucsaVMbJ XWBxV0mb+yi7He/qCkgqXFMJ8wSz4Wu2q+k+yeNmJdZryD0624uQCsykDi8tCMh3 IuA2nHJelpUOyei7M6sWa8MEbboBTMgvnyjcPEwGsC65OnmqOAFw3mG26YmLWLXM Z4oKTGs1nQO1XP3tyOoKDDuY30Q8uq1k+6qOEKd/OIQNSAm+y7tEzRahIAbr7RyW WoqtZE7JuOop+FxOVxFVuxK+/f4ItinN1swPYu4AMvxlaxauAzdsDdTYhk9vKkW0 RA3yGG/b8L4wYeekLwVTtaSLHpQnE1Oh6S9vMNqPX5VpFGHb5uA=
=/KVi
-----END PGP SIGNATURE-----

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Who's Online
Recent Visitors
- Gretchiie
  Mon Dec 30 17:08:49 2024
  from Derry, Nh via Telnet
- Bob Worm
  Mon Dec 30 14:27:01 2024
  from Wales, Uk via Telnet
- Guest
  Mon Dec 30 07:42:32 2024
  from /bin/busybox Cat /proc/self/ex via Raw
- Mxofxn
  Mon Dec 30 02:37:35 2024
  from Little Rock via Telnet
- Keyop
  Mon Dec 30 01:56:05 2024
  from Huddersfield, West Yorkshire via SSH
- Gwylbert
  Mon Dec 30 00:37:24 2024
  from Sydney, Nsw via Telnet
- Bob Worm
  Sun Dec 29 22:17:42 2024
  from Wales, Uk via Telnet
- Keyop
  Sun Dec 29 16:09:13 2024
  from Huddersfield, West Yorkshire via SSH

System Info

Sysop:	Keyop
Location:	Huddersfield, West Yorkshire, UK
Users:	384
Nodes:	16 (2 / 14)
Uptime:	62:49:43
Calls:	8,174
Calls today:	6
Files:	13,113
Messages:	5,864,574

[SECURITY] [DSA 5101-1] libphp-adodb security update

Who's Online

Recent Visitors

System Info