stable
FEDORA-2014-15588 created by robert 8 years ago for Fedora 21

phpMyAdmin 4.2.12.0 (2014-11-20)

  • Blank/white page when JavaScript disabled
  • Multi row actions cause full page reloads
  • ReferenceError: targeurl is not defined
  • Incorrect text/icon display in Tracking report
  • Recordset return from procedure display nothing
  • Edit dialog for routines is too long for smaller displays
  • JavaScript error after moving a column
  • Issue with long comments on table columns
  • Input field unnecessarily selected on focus
  • Exporting selected rows exports all rows of the query
  • No insert statement produced in SQL export for queries with alias
  • Field disabled when internal relations used
  • [security] XSS through exception stack
  • [security] Path traversal can lead to leakage of line count
  • [security] XSS vulnerability in table print view
  • [security] XSS vulnerability in zoom search page
  • [security] Path traversal in file inclusion of GIS factory
  • [security] XSS in multi submit
  • [security] XSS through pma_fontsize cookie

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2014-15588

This update has been submitted for testing by robert.

8 years ago

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/14645/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/14645/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/15032/steps/runtask/logs/stdio (results are informative only)

Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/15032/steps/runtask/logs/stdio (results are informative only)

This update is currently being pushed to the Fedora 21 testing updates repository.

8 years ago

This update has been pushed to testing

8 years ago

This update has been submitted for stable by robert.

8 years ago

Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/16860/steps/runtask/logs/stdio (results are informative only)

Taskotron: upgradepath test FAILED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/17984/steps/runtask/logs/stdio (results are informative only)

Automatic push to stable based on karma has been disabled for this update due to failure of an AutoQA test. Update submitter, please check the AutoQA test result and see if there is a valid problem to be fixed here, and fix it if so. If the failure is a mistake on AutoQA's part, you can re-enable the automatic push feature for this update if you like, or push it stable manually once it reaches the requirements under the Updates Policy.

8 years ago

This update is currently being pushed to the Fedora 21 stable updates repository.

8 years ago

This update is currently being pushed to the Fedora 21 stable updates repository.

8 years ago

This update has been pushed to stable

8 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
8 years ago
in testing
8 years ago
in stable
8 years ago
modified
8 years ago
BZ#1166397 phpMyAdmin-4.2.12 is available
0
0
BZ#1166619 CVE-2014-8958 phpMyAdmin: Multiple XSS vulnerabilities (PMASA-2014-13)
0
0
BZ#1166621 CVE-2014-8958 phpMyAdmin: Multiple XSS vulnerabilities (PMASA-2014-13) [fedora-all]
0
0
BZ#1166626 CVE-2014-8959 phpMyAdmin: Local file inclusion vulnerability (PMASA-2014-14)
0
0
BZ#1166627 CVE-2014-8959 phpMyAdmin: Local file inclusion vulnerability (PMASA-2014-14) [fedora-all]
0
0
BZ#1166634 CVE-2014-8960 phpMyAdmin: XSS vulnerability in error reporting functionality (PMASA-2014-15)
0
0
BZ#1166635 CVE-2014-8960 phpMyAdmin: XSS vulnerability in error reporting functionality (PMASA-2014-15) [fedora-all]
0
0
BZ#1166637 CVE-2014-8961 phpMyAdmin: leakage of line count of an arbitrary file (PMASA-2014-16)
0
0
BZ#1166638 CVE-2014-8961 phpMyAdmin: leakage of line count of an arbitrary file (PMASA-2014-16) [fedora-all]
0
0

Automated Test Results