stable
FEDORA-EPEL-2011-4255 created by robert 11 years ago for Fedora EPEL 6

Changes for 3.4.4.0 (2011-08-24):

  • [parser] SQL parser breaks AJAX requests if query has unclosed quotes
  • [parser] Invalid escape sequence in SQL parser
  • [config] $cfg['Export']['asfile'] set to false does not select as Text option
  • [export] Working SQL query exports error page
  • [interface] "Create an index on X columns" form not validated
  • [interface] JS error in Table->Structure->Index->Edit
  • [interface] Info message has "error" class
  • [interface] TABbing through a NULL field in the inline mode resets NULL
  • [various] remove version number in /setup
  • [usability] Missing "Generate Password" button
  • [display] Missing Server Parameter on inline sql query
  • [navi] Drop field -> lost active table
  • [various] remove misleading comment on the "Rename database" interface
  • [interface] Fix footnote for inexact count while browsing
  • [interface] Fix security warning link in setup
  • [display] Backquotes in normal text on import page
  • [core] With Suhosin, urls are too long in edit links
  • [security] Missing sanitization on the table, column and index names leads to XSS vulnerabilities, see PMASA-2011-13 (http://www.phpmyadmin.net/home_page/security/PMASA-2011-13.php)

This update has been submitted for testing by robert.

11 years ago

This update has been pushed to testing

11 years ago
User Icon athmane commented & provided feedback 11 years ago
karma

Seems fine with new installation

This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes

11 years ago

This update has been submitted for stable by robert.

11 years ago

This update has been pushed to stable

11 years ago

Please login to add feedback.

Metadata
Type
security
Karma
1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
11 years ago
in testing
11 years ago
in stable
11 years ago
BZ#733475 CVE-2011-3181 phpMyAdmin XSS flaw
0
0
BZ#733477 CVE-2011-3181 phpMyAdmin XSS flaw [fedora-all]
0
0
BZ#733480 CVE-2011-3181 phpMyAdmin XSS flaw [epel-6]
0
0

Automated Test Results