phpMyAdmin 4.6.2 (2016-05-25)

[security] User SQL queries can be revealed through URL GET parameters, see PMASA-2016-14
[security] Self XSS vulneratbility, see PMASA-2016-16
Use https for documentation links
Fix schema export with too many tables
Avoid parsing non JSON responses as JSON
Avoid using too log URLs when getting javascripts
Fixed setting mixed case languages
Avoid storing objects in session when debugging SQL
Fix cookie path on IIS
Fix occassional 200 errors on Windows
Fix locking issues when importing SQL
Avoid confusing warning when mysql extension is missing
Improve handling of logout
Safer handling of sessions during authentication
Fix server selection on main page
Avoid storing full error data in session
Fixed export of ARCHIVE tables with keys
Add session reload for config authentication
Do not fail on errors stored in session
Fix loading of APC based upload progress bar

How to install

sudo dnf upgrade --advisory=FEDORA-2016-55261b6815

This update has been submitted for testing by robert.

4 years ago

This update has been pushed to testing.

3 years ago

This update has been submitted for stable by bodhi.

3 years ago

bradw commented & provided feedback 3 years ago

karma

Personal LAMP and mail server running GNOME. All OK.

This update has been pushed to stable.

3 years ago

Please login to add feedback.

Metadata

Type

security

Severity

medium

Karma

Signed

Content Type

RPM

Test Gating

Builds

phpMyAdmin-4.6.2-1.fc23

Settings

Unstable by Karma

-3

Stable by Karma

Dates

submitted

4 years ago

in testing

3 years ago

in stable

3 years ago

BZ#1339852 phpMyAdmin-4.6.2 is available

BZ#1340066 CVE-2016-5097 CVE-2016-5098 CVE-2016-5099 phpMyAdmin: Multiple issues fixed in 4.6.2 and 4.4.15.6 (PMASA-2016-16,PMASA-2016-15,PMASA-2016-14) [fedora-all]

phpMyAdmin-4.6.2-1.fc23

phpMyAdmin 4.6.2 (2016-05-25)

How to install

Automated Test Results