Skip to content

Commit 5ebc4da

Browse files
committed
bug #4900 [security] Vulnerability allowing man-in-the-middle attack
Signed-off-by: Madhura Jayaratne <madhura.cj@gmail.com>
1 parent ee92eb9 commit 5ebc4da

File tree

2 files changed

+1
-2
lines changed

2 files changed

+1
-2
lines changed

Diff for: ChangeLog

+1
Original file line numberDiff line numberDiff line change
@@ -3,6 +3,7 @@ phpMyAdmin - ChangeLog
33

44
4.4.6.1 (Not yet released)
55
- bug #4899 [security] CSRF vulnerability in setup
6+
- bug #4900 [security] Vulnerability allowing man-in-the-middle attack
67

78
4.4.6.0 (2015-05-07)
89
- bug #4890 webkitStorageInfo and webkitIndexedDB is deprecated

Diff for: libraries/Config.class.php

-2
Original file line numberDiff line numberDiff line change
@@ -755,8 +755,6 @@ function checkHTTP($link, $get_body = false)
755755
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, 0);
756756
curl_setopt($ch, CURLOPT_HEADER, 1);
757757
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
758-
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
759-
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
760758
curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
761759
curl_setopt($ch, CURLOPT_USERAGENT, 'phpMyAdmin/' . PMA_VERSION);
762760
curl_setopt($ch, CURLOPT_TIMEOUT, 5);

0 commit comments

Comments
 (0)