From owner-svn-ports-head@FreeBSD.ORG Tue Jun 24 06:48:55 2014 Return-Path: Delivered-To: svn-ports-head@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 60821C93; Tue, 24 Jun 2014 06:48:55 +0000 (UTC) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:1900:2254:2068::e6a:0]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 33DBB24AF; Tue, 24 Jun 2014 06:48:55 +0000 (UTC) Received: from svn.freebsd.org ([127.0.1.70]) by svn.freebsd.org (8.14.8/8.14.8) with ESMTP id s5O6mtVK030473; Tue, 24 Jun 2014 06:48:55 GMT (envelope-from matthew@svn.freebsd.org) Received: (from matthew@localhost) by svn.freebsd.org (8.14.8/8.14.8/Submit) id s5O6mskc030471; Tue, 24 Jun 2014 06:48:54 GMT (envelope-from matthew@svn.freebsd.org) Message-Id: <201406240648.s5O6mskc030471@svn.freebsd.org> From: Matthew Seaman Date: Tue, 24 Jun 2014 06:48:54 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r359044 - head/security/vuxml X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.18 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Jun 2014 06:48:55 -0000 Author: matthew Date: Tue Jun 24 06:48:54 2014 New Revision: 359044 URL: http://svnweb.freebsd.org/changeset/ports/359044 QAT: https://qat.redports.org/buildarchive/r359044/ Log: Update vuln.xml now that advisories have been published. Modified: head/security/vuxml/vuln.xml Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Tue Jun 24 06:45:22 2014 (r359043) +++ head/security/vuxml/vuln.xml Tue Jun 24 06:48:54 2014 (r359044) @@ -125,33 +125,55 @@ Notes: - phpMyAdmin -- two XSS vulnerabilities due to unescaped table names + phpMyAdmin -- two XSS vulnerabilities due to unescaped db/table names phpMyAdmin - 4.2.4 + 4.1.04.2.4

The phpMyAdmin development team reports:

-
XSS injection due to unescaped db/table name in - navigation hiding.
+
Self-XSS due to unescaped HTML output in recent/favorite + tables navigation.
+ +
When marking a crafted database or table name as + favorite or having it in recent tables, it is possible to + trigger an XSS.
+ + +
This vulnerability can be triggered only by someone who + logged in to phpMyAdmin, as the usual token protection + prevents non-logged-in users from accessing the required + form.
+

-
XSS injection due to unescaped db/table name in - recent/favorite tables.
+
Self-XSS due to unescaped HTML output in navigation items + hiding feature.
+ +
When hiding or unhiding a crafted table name in the + navigation, it is possible to trigger an XSS.
+ +
This vulnerability can be triggered only by someone who + logged in to phpMyAdmin, as the usual token protection + prevents non-logged-in users from accessing the required + form.

+ CVE-2014-4348 + CVE-2014-4349 http://www.phpmyadmin.net/home_page/security/PMASA-2014-2.php http://www.phpmyadmin.net/home_page/security/PMASA-2014-3.php 2014-06-20 2014-06-20 + 2014-06-24