FEDORA-2018-147d33439c

security update in Fedora 26 for phpMyAdmin, php-phpmyadmin-motranslator, & 1 more

Status: stable a year ago

From upstream announcement:

Security fix: phpMyAdmin 4.7.8 is released

Welcome to phpMyAdmin 4.7.8, a security releaes also containing regular maintenance bug fixes.

The security fix relates to a self-XSS vulnerability in the central columns feature that is reported as PMASA-2018-1 https://www.phpmyadmin.net/security/PMASA-2018-1/. Thanks to Mayur Udiniya https://www.linkedin.com/in/mayur-udiniya-09247b129/ for finding and responsibly disclosing this flaw.

We recommend all users upgrade to resolve this security problem.

A complete list of new features and bugs that have been fixed is available in the ChangeLog file or changelog.php included with this release.

Notable changes since 4.7.7:

  • Fixed error handling with PHP 7.2
  • Fixed resetting default setting values
  • Fixed fallback value for collation connection

Additionally, there have been continuous improvements to many of the translations. If you don't see your language or find a problem, you can contribute too; see https://www.phpmyadmin.net/translate/ for details.

How to install

sudo dnf upgrade --advisory=FEDORA-2018-147d33439c

Comments 6

This update has been submitted for testing by remi.

This update has been pushed to testing.

remi edited this update.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by remi.

This update has been pushed to stable.


Add Comment & Feedback
Toggle Preview

Comment fields support Fedora-Flavored Markdown. Comments are governed under this privacy policy.

-1 0 +1 Feedback Guidelines

Is the update generally functional? (karma)

You need to be logged in to add karma!

#1547748 CVE-2018-7260 phpMyAdmin: XSS in db_central_columns.php
#1547750 CVE-2018-7260 phpMyAdmin: XSS in db_central_columns.php [fedora-all]
Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
urgent
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted a year ago
in testing a year ago
in stable a year ago
modified a year ago

Related Bugs 2

00 #1547748 CVE-2018-7260 phpMyAdmin: XSS in db_central_columns.php
00 #1547750 CVE-2018-7260 phpMyAdmin: XSS in db_central_columns.php [fedora-all]

Automated Test Results