mahara-packaging team mailing list archive

Thread
Date

[Bug 556369] Re: SQL injection in username field

To: mahara-packaging@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <556369@xxxxxxxxxxxxxxxxxx>
Date: Wed, 07 Apr 2010 13:03:19 -0000
Reply-to: Bug 556369 <556369@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package mahara - 1.0.9-2ubuntu0.6

---------------
mahara (1.0.9-2ubuntu0.6) jaunty-security; urgency=low

  * SECURITY UPDATE: SQL injection (LP: #556369)
    - debian/patches/CVE-2010-0400.dpatch: fix from upstream
    - CVE-2010-0400
 -- Francois Marier <francois@xxxxxxxxxx>   Tue, 06 Apr 2010 22:58:53 +1200

-- 
SQL injection in username field
https://bugs.launchpad.net/bugs/556369
You received this bug notification because you are a member of Mahara
Packaging, which is subscribed to mahara in ubuntu.

Status in Mahara ePortfolio: Fix Released
Status in “mahara” package in Ubuntu: Invalid
Status in “mahara” source package in Lucid: Invalid
Status in “mahara” source package in Jaunty: Fix Released
Status in “mahara” source package in Karmic: Fix Released

Bug description:
Binary package hint: mahara

There is an exploitable SQL injection in the code used to generate new usernames.

I will attach here debdiffs for both jaunty and karmic.

For lucid, I will file a separate sync request.

( Also see upstream bug report at https://bugs.launchpad.net/mahara/+bug/534172 and the upstream security advisory at http://mahara.org/interaction/forum/topic.php?id=1713 )