Upstream information
Description
phpMyAdmin before 2.11.5.1 stores the MySQL (1) username and (2) password, and the (3) Blowfish secret key, in cleartext in a Session file under /tmp, which allows local users to obtain sensitive information.NVD CVSS v2 Base Score: 2.1 (AV:L/AC:L/Au:N/C:P/I:N/A:N)
Novell/SUSE information
Novell Bugzilla entry: 375320, 410768 SUSE Security Advisories:- SUSE-SR:2008:026, published Mon, 24 Nov 2008 16:00:00 +0000
- SUSE-SR:2009:003, published Mon, 02 Feb 2009 16:30:00 +0000
List of released packages
| Product(s) | Fixed package version(s) | References |
|---|---|---|
| openSUSE 10.2 |
| |
| openSUSE 10.3 |
| |
| openSUSE 10.3 |
|
