Bug ID 994313
Summary VUL-0: phpMyAdmin 4.0.10.17, 4.4.15.8, and 4.6.4 releases
Classification openSUSE
Product openSUSE Distribution
Version 13.2
Hardware Other
OS Other
Status NEW
Severity Normal
Priority P5 - None
Component Other
Assignee chris@computersalat.de
Reporter meissner@suse.com
QA Contact qa-bugs@suse.de
Found By Security Response Team
Blocker --- 

tracker bug for August release of phpMyAdmin

https://www.phpmyadmin.net/news/2016/8/16/phpmyadmin-401017-44158-and-464-are-released/


The phpMyAdmin team announces the release of versions 4.0.10.17 (security
fixes), 4.4.15.8 (security fixes), and 4.6.4 (security and bug fixes).

These release includes many security fixes of various levels of severity. We
recommend all users upgrade to this release immediately. For full information
on the vulnerabilities fixed and mitigation factors for users who are unable to
upgrade, refer to the ChangeLog file included with this release and the
security announcements at https://www.phpmyadmin.net/security/.

Aside from the security fixes, bugs have been fixed in version 4.6.4 affecting:

    Create view when no view name specified
    Changing a password
    Fix deleting of users with non-English locales
    Fixed password change on MariaDB without auth plugin
    and more

the phpMyAdmin team

You are receiving this mail because: