stable

phpMyAdmin-4.5.5.1-1.fc23 and php-udan11-sql-parser-3.4.0-1.fc23

FEDORA-2016-65da02b95c created by robert 7 years ago for Fedora 23

phpMyAdmin 4.5.5.1 (2016-02-29)

This release fixes multiple XSS vulnerabilities, please see PMASA-2016-10, PMASA-2016-11, and PMASA-2016-12 for details; additionally it fixes a vulnerability allowing man-in-the-middle attack on an API call to GitHub, see PMASA-2016-13 for details.

It also inclues fixes for the following bugs:

  • issue #11971 CREATE UNIQUE INDEX index type is not recognized by parser.
  • issue #11982 Row count wrong when grouping joined tables.
  • issue #12012 Column definition with default value and comment in CREATE TABLE exported faulty.
  • issue #12020 New statement but no delimiter and unexpected token with REPLACE.
  • issue #12029 Fixed incorrect usage of SQL parser context in SQL export
  • issue #12048 Fixed inclusion of gettext library from SQL parser

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2016-65da02b95c

This update has been submitted for testing by robert.

7 years ago

robert edited this update.

7 years ago

This update has been pushed to testing.

7 years ago

This update has been submitted for stable by bodhi.

7 years ago
User Icon bradw commented & provided feedback 7 years ago
karma

Personal LAMP and mail server running GNOME. All OK.

This update has been pushed to stable.

7 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
1
Signed
Content Type
RPM
Test Gating
Builds
2
phpMyAdmin-4.5.5.1-1.fc23
php-udan11-sql-parser-3.4.0-1.fc23
Settings
Unstable by Karma
-3
Stable by Karma
1
Stable by Time
disabled
Dates
submitted
7 years ago
in testing
7 years ago
in stable
7 years ago
modified
7 years ago
BZ#1310918 phpMyAdmin-4.5.5.1 is available
0
0
BZ#1313221 CVE-2016-2560 phpMyAdmin: multiple XSS vulnerabilities (PMASA-2016-11)
0
0
BZ#1313224 CVE-2016-2561 phpMyAdmin: multiple XSS vulnerabilities (PMASA-2016-12)
0
0
BZ#1313225 CVE-2016-2560 CVE-2016-2561 phpmyadmin: various flaws [fedora-all]
0
0
BZ#1313695 CVE-2016-2559 phpMyAdmin: XSS vulnerability in SQL parser (PMASA-2016-10)
0
0
BZ#1313696 CVE-2016-2562 phpMyAdmin: man-in-the-middle attack on API call to GitHub (PMASA-2016-13)
0
0
BZ#1313698 CVE-2016-2559 CVE-2016-2562 phpmyadmin: various flaws [fedora-all]
0
0
phpMyAdmin-4.5.5.1-1.fc23
php-udan11-sql-parser-3.4.0-1.fc23

Automated Test Results

None

Copyright © 2007-2023 Red Hat, Inc. and others.

Running bodhi-server 7.0.1 on bodhi-web-66-dxxtt.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy