Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Debian: DSA 1389-2 Critical: Zoph SQL Injection Risk Mitigated

debian
Calendar Grey October 24, 2007
Debian Logo
Zoph software has received critical updates to address vulnerabilities from SQL injection in Debian systems. It's essential to secure your environments. Perform the upgrade right away!
It was discovered that zoph, a web based photo management system, performs insufficient input sanitising, which allows SQL injection. This is an updated advisory to make the upd...

Summary


For the oldstable distribution (sarge) this problem has been fixed in
version 0.3.3-12sarge3.

For the stable distribution (etch) this problem has been fixed in
version 0.6-2.1etch1.

For the unstable distribution (sid) this problem has been fixed in
version 0.7.0.2-1.

We recommend that you upgrade your zoph package.


Upgrade Instructions
- --------------------wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
will update the internal database
apt-get upgrade
will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.

Debian GNU/Linux 3.1 alias sarge

Size/MD5 checksum: 862 a18d228cf9a669a12b9abaa5a5b259d3
Size/MD5 checksum: 54166 645da5f7fd9a8f43a85e516967f063b8
Size/MD5 checksum: 153902 5ff...

Read the Full Advisory

Severity
critical
Lowest
Low
Medium
High
Critical

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here