TITLE: Debian update for libphp-adodb SECUNIA ADVISORY ID: SA19555 VERIFY ADVISORY: http://secunia.com/advisories/19555/ CRITICAL: Moderately critical IMPACT: Security Bypass, Cross Site Scripting, Manipulation of data, Exposure of system information, System access WHERE: >From remote OPERATING SYSTEM: Debian GNU/Linux 3.0 http://secunia.com/product/143/ Debian GNU/Linux 3.1 http://secunia.com/product/5307/ Debian GNU/Linux unstable alias sid http://secunia.com/product/530/ DESCRIPTION: Debian has issued an update for libphp-adodb. This fixes two security issues and a vulnerability, which can be exploited by malicious people to disclose system information, conduct cross-site scripting attacks, execute arbitrary SQL code, and potentially compromise a vulnerable system. For more information: SA17418 SA18575 SA18928 SOLUTION: Apply updated packages. -- Debian GNU/Linux 3.0 alias woody -- Source archives: http://security.debian.org/pool/updates/main/libp/libphp-adodb/libphp-adodb_1.51-1.2.dsc Size/MD5 checksum: 548 3d374bc44425b7ba258eb8129d02349c http://security.debian.org/pool/updates/main/libp/libphp-adodb/libphp-adodb_1.51-1.2.diff.gz Size/MD5 checksum: 2404 9e579561939b10fda54f313294407007 http://security.debian.org/pool/updates/main/libp/libphp-adodb/libphp-adodb_1.51.orig.tar.gz Size/MD5 checksum: 104759 37c041d0c73b3aa4aa7e1800f9fcd4ff Architecture independent components: http://security.debian.org/pool/updates/main/libp/libphp-adodb/libphp-adodb_1.51-1.2_all.deb Size/MD5 checksum: 104364 e241aeaab484de2b786ac639252f71ca -- Debian GNU/Linux 3.1 alias sarge -- Source archives: http://security.debian.org/pool/updates/main/libp/libphp-adodb/libphp-adodb_4.52-1sarge1.dsc Size/MD5 checksum: 608 d4cc684374fcd789138f695142ef6042 http://security.debian.org/pool/updates/main/libp/libphp-adodb/libphp-adodb_4.52-1sarge1.diff.gz Size/MD5 checksum: 7746 a8e033f1770717a8990ed498f477dc21 http://security.debian.org/pool/updates/main/libp/libphp-adodb/libphp-adodb_4.52.orig.tar.gz Size/MD5 checksum: 375443 427ff438939924b32d538eeca4b73743 Architecture independent components: http://security.debian.org/pool/updates/main/libp/libphp-adodb/libphp-adodb_4.52-1sarge1_all.deb Size/MD5 checksum: 349856 0ad35b7081f80aa31e44ff6f1473d960 -- Debian GNU/Linux unstable alias sid -- Fixed in version 4.72-0.1. ORIGINAL ADVISORY: http://www.us.debian.org/security/2006/dsa-1029 OTHER REFERENCES: SA17418 http://secunia.com/advisories/17418/ SA18575 http://secunia.com/advisories/18575/ SA18928: http://secunia.com/advisories/18928/ ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------