[SECURITY] Fedora 7 Update: php-pear-MDB2-Driver-mysqli-1.4.1-3.fc7

updates at fedoraproject.org updates at fedoraproject.org
Thu Nov 15 03:41:00 UTC 2007


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-3369
2007-11-15 03:40:53.486910
--------------------------------------------------------------------------------

Name        : php-pear-MDB2-Driver-mysqli
Product     : Fedora 7
Version     : 1.4.1
Release     : 3.fc7
URL         : http://pear.php.net/package/MDB2_Driver_mysqli
Summary     : MySQL Improved MDB2 driver
Description :
This is the MySQL Improved MDB2 driver.

--------------------------------------------------------------------------------
Update Information:

This update fixes a security flaw CVE-2007-5934 with critical impact. All users of php-pear-MDB2 are strongly advised to upgrade to these updated packages.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #379091 - MDB2 Data injection and disclosure [f7]
        https://bugzilla.redhat.com/show_bug.cgi?id=379091
  [ 2 ] Bug #379081 - CVE-2007-5934 MDB2 Data injection and disclosure
        https://bugzilla.redhat.com/show_bug.cgi?id=379081
  [ 3 ] Bug #379121 - MDB2 Data injection and disclosure [f7]
        https://bugzilla.redhat.com/show_bug.cgi?id=379121
  [ 4 ] Bug #379151 - MDB2 Data injection and disclosure [f7]
        https://bugzilla.redhat.com/show_bug.cgi?id=379151
--------------------------------------------------------------------------------
Updated packages:

c6f4f2828e5dec32953ee561f43fa117de48b52d php-pear-MDB2-Driver-mysqli-1.4.1-3.fc7.noarch.rpm
4cca3a238afc9cb4fd26093fd5b0988755e8df60 php-pear-MDB2-Driver-mysqli-1.4.1-3.fc7.src.rpm

This update can be installed with the "yum" update program.  Use 
su -c 'yum update php-pear-MDB2-Driver-mysqli' 
at the command line.  For more information, refer to "Managing Software
with yum", available at http://docs.fedoraproject.org/yum/.
--------------------------------------------------------------------------------




More information about the package-announce mailing list