rssLink RSS for all categories
 
icon_red
icon_green
icon_red
icon_red
icon_blue
icon_green
icon_green
icon_red
icon_red
icon_red
icon_orange
icon_green
icon_green
icon_green
icon_green
icon_blue
icon_green
icon_orange
icon_red
icon_green
icon_red
icon_red
icon_green
icon_red
icon_red
icon_red
icon_red
icon_orange
icon_green
 

FS#377 — FS#4452 — phpMyAdmin vulnerability

Attached to Project— Network
Maintenance
Whole Network
CLOSED
100%
Our advise is to update phpMyAdmin at least to the following version (preferably, migrate to the latest available version):

phpMyAdmin phpMyAdmin 3.1.1 .1
phpMyAdmin phpMyAdmin 2.11.9.5

Whatever below is vulnerable.


Date:  Monday, 06 September 2010, 13:08PM
Reason for closing:  Done
Comment by OVH - Wednesday, 11 August 2010, 02:19AM

We repaired 180 hacked servers

26 debian50
25 debian40
18 debian40_64
13 gentoo-ovh_64
10 ovh
7 debian50_64
6 ubuntu804-server_64
5 ubuntu804-server
5 gentoo-ovh

The release 1 is not impacted.
We are preparing the patch for release 2.


Comment by OVH - Wednesday, 11 August 2010, 02:22AM

The patch for release 2 is available.
The servers having the total security option are being updated.

############################################################################
# 10 August 2010 release 2.21
#
# - security update of phpMyAdmin (3.3.5)

# how to apply the patch :
# ===========================
# - automatic migration to the latest release version:
# wget ftp://ftp.ovh.net/made-in-ovh/release/patch-all.sh -O patch-all.sh; sh patch-all.sh
# - migration from 2.20 to 2.21 :
# wget ftp://ftp.ovh.net/made-in-ovh/release/patch-2.20-2.21.sh -O patch-2.20-2.21.sh; sh patch-2.20-2.21.sh