FEDORA-2018-147d33439c

security update in Fedora 26 for phpMyAdmin, php-phpmyadmin-motranslator, & 1 more

Status: stable 2 years ago

From upstream announcement:

Security fix: phpMyAdmin 4.7.8 is released

Welcome to phpMyAdmin 4.7.8, a security releaes also containing regular maintenance bug fixes.

The security fix relates to a self-XSS vulnerability in the central columns feature that is reported as PMASA-2018-1 https://www.phpmyadmin.net/security/PMASA-2018-1/. Thanks to Mayur Udiniya https://www.linkedin.com/in/mayur-udiniya-09247b129/ for finding and responsibly disclosing this flaw.

We recommend all users upgrade to resolve this security problem.

A complete list of new features and bugs that have been fixed is available in the ChangeLog file or changelog.php included with this release.

Notable changes since 4.7.7:

  • Fixed error handling with PHP 7.2
  • Fixed resetting default setting values
  • Fixed fallback value for collation connection

Additionally, there have been continuous improvements to many of the translations. If you don't see your language or find a problem, you can contribute too; see https://www.phpmyadmin.net/translate/ for details.

Comments 6

This update has been submitted for testing by remi.

This update has been pushed to testing.

remi edited this update.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for stable by remi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
urgent
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago
modified 2 years ago

Related Bugs 2

00 #1547748 CVE-2018-7260 phpMyAdmin: XSS in db_central_columns.php
00 #1547750 CVE-2018-7260 phpMyAdmin: XSS in db_central_columns.php [fedora-all]

Automated Test Results