diff options
Diffstat (limited to 'polish/security/2004/dsa-469.wml')
-rw-r--r-- | polish/security/2004/dsa-469.wml | 21 |
1 files changed, 21 insertions, 0 deletions
diff --git a/polish/security/2004/dsa-469.wml b/polish/security/2004/dsa-469.wml new file mode 100644 index 00000000000..5f5b8d9c3ae --- /dev/null +++ b/polish/security/2004/dsa-469.wml @@ -0,0 +1,21 @@ +#use wml::debian::translation-check translation="1.2" maintainer="" +#pddp arteek + +<define-tag description>missing input sanitising</define-tag> +<define-tag moreinfo> +<p>Primoz Bratanic discovered a bug in libpam-pgsql, a PAM module to +authenticate using a PostgreSQL database. The library does not escape +all user-supplied data that are sent to the database. An attacker +could exploit this bug to insert SQL statements.</p> + +<p>For the stable distribution (woody) this problem has been fixed in +version 0.5.2-3woody2.</p> + +<p>For the unstable distribution (sid) this problem has been fixed in +version 0.5.2-7.1.</p> + +<p>We recommend that you upgrade your libpam-pgsql package.</p> +</define-tag> + +# do not modify the following line +#include "$(ENGLISHDIR)/security/2004/dsa-469.data" |