FEDORA-2019-3b5a7abe17 created by remi 5 months ago for Fedora 29
stable

Upstream announcement:

Welcome to phpMyAdmin 4.9.1, a bugfix release.

This is a regularly-schedule bugfix release that also includes some security hardening measures.

We wish to point out that this also includes a routine fix for an issue that has been reported as CVE-2019-12922. The fix for this has been in our release queue to be part of this release, however it is the opinion of the team that the reported attack vector did not justify a separate release.

This release includes fixes for many bugs, including:

  • Editing columns with CURRENT_TIMESTAMP for MySQL versions 8.0.13 and newer
  • Compatibility issues with PHP 8
  • Export of GIS visualization
  • Enhanced descriptions for several collation types
  • Creating a user with a single quote in the password string
  • Unexpected quotes during import and export on text fields
  • Improvements to adding new tables to Designer
  • Fix an issue where an authenticated user could trigger heavy traffic between the database server and web server
  • Fix a weakness where an attacker, under certain conditions, working at the same time as an administrator is using the setup script, could delete a server from the setup script

There are many, many more bug fixes thanks to the efforts of our developers, Google Summer of Code applicants, and other contributors.

The phpMyAdmin team

How to install

sudo dnf upgrade --advisory=FEDORA-2019-3b5a7abe17

This update has been submitted for testing by remi.

5 months ago

This update's test gating status has been changed to 'waiting'.

5 months ago

This update's test gating status has been changed to 'ignored'.

5 months ago

This update has been pushed to testing.

5 months ago

This update can be pushed to stable now if the maintainer wishes

4 months ago

This update has been submitted for stable by bodhi.

4 months ago

This update has been pushed to stable.

4 months ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
5 months ago
in testing
5 months ago
in stable
4 months ago
BZ#1753303 CVE-2019-12922 phpMyAdmin: a CSRF in the setup page allows deletion of server
0
0
BZ#1753305 CVE-2019-12922 phpMyAdmin: a CSRF in the setup page allows deletion of server [fedora-all]
0
0

Automated Test Results