blob: ebfc6ccee07fc8a62966d0e00b543408420e4e73 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
|
<define-tag description>LTS security update</define-tag>
<define-tag moreinfo>
<p>It was discovered that there was a server-side request forgery exploit in
adminer, a web-based database administration tool.</p>
<p>Adminer allowed unauthenticated connections to be initiated to arbitrary
systems and ports which could bypass external firewalls to identify
internal hosts or perform port scanning of other servers.</p>
<p>For Debian 7 <q>Wheezy</q>, this issue has been fixed in adminer version
3.3.3-1+deb7u1.</p>
<p>We recommend that you upgrade your adminer packages.</p>
</define-tag>
# do not modify the following line
#include "$(ENGLISHDIR)/lts/security/2018/dla-1311.data"
# $Id: $
|
