FEDORA-2017-294c23bb1d

security update in Fedora 24 for phpMyAdmin

Status: stable 2 years ago

Welcome to phpMyAdmin 4.6.6, a release containing security and bug fixes.

This release includes many security fixes of various levels of severity. We recommend all users upgrade to this release immediately. For full information on the vulnerabilities fixed and mitigation factors for users who are unable to upgrade, refer to the ChangeLog file included with this release and the security announcements at https://www.phpmyadmin.net/security/

There have been changes in the behavior of previous version:

  • Changed the suggested text in the query window for delete queries to avoid accidental data loss
  • Re-introduce a page which shows the output of phpinfo()

Aside from the changes and security improvements, many bugs have been fixed including:

  • Parsing of SQL queries with the BINARY function
  • Syntax error when adding or changing TIMESTAMP columns with default value as NULL
  • Broken "Edit" and "Export" links in the Routines tab
  • Creating a new user on older MariaDB servers
  • Format button in the SQL tab broken
  • Fixes for PHP 7.1
  • Problems with MySQL servers running with lower_case_names=2
  • Fixes for several PHP notices/warnings being shown

And many more. Please see the ChangeLog for full details of bugs fixes.

How to install

sudo dnf upgrade --advisory=FEDORA-2017-294c23bb1d

Comments 6

This update has been submitted for testing by remi.

remi edited this update.

This update has been pushed to testing.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by remi.

This update has been pushed to stable.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago
modified 2 years ago

Related Bugs 9

00 #1401735 phpMyAdmin-4.6.6 is available
00 #1412578 phpMyadmin version 4.6.5.1 is buggy, please update to 4.6.5.2
00 #1415995 phpMyAdmin: Open redirect
00 #1415996 phpMyAdmin: DOS vulnerabiltiy in table editing
00 #1415997 phpMyAdmin: CSS injection in themes
00 #1415998 phpMyAdmin: Cookie attribute injection attack
00 #1415999 phpMyAdmin: SSRF in replication
00 #1416000 phpMyAdmin: DOS in replication status
00 #1416003 phpMyAdmin: various flaws [fedora-all]

Automated Test Results