Site Navigation:
security phpMyAdmin-3.4.9-1.el6 security update
Status:stable
Release: Fedora EPEL 6
Update ID: FEDORA-EPEL-2011-5331
Builds: phpMyAdmin-3.4.9-1.el6 (logs)
Pushed: True
Date Submitted: 2011-12-22 21:56:45
Date Released: 2011-12-24 17:45:07
Date Modified: 2011-12-23 03:42:31
Submitter: robert
Karma: 0
Details

Changes 3.4.9.0 (2011-12-21):

  • [edit] Inline editing enum fields with null shows no dropdown
  • [interface] DB suggestion not correct for user with underscore
  • [core] Magic quotes removed in PHP 5.4
  • [session] No feedback when result is empty (signon auth_type)
  • [display] Problems regarding ShowTooltipAliasTB
  • [edit] Can't rename a database that contains views
  • [edit] Unable to move tables with triggers
  • [navi] Fast filter broken with table tree
  • [GUI] Firefox favicon frameset regression
  • [core] Better compatibility with mysql extension
  • [security] Self-XSS on export options (export server/database/table), see PMASA-2011-20 (http://www.phpmyadmin.net/home_page/security/PMASA-2011-20.php)
  • [security] Self-XSS in setup (host parameter), see PMASA-2011-19 (http://www.phpmyadmin.net/home_page/security/PMASA-2011-19.php)
Bugs Fixed
769818 - phpMyAdmin-3.4.9 is available
769982 - CVE-2011-4782: phpMyAdmin Crafted values entered in the setup interface can produce XSS PMASA-2011-19
769981 - CVE-2011-4780: phpMyAdmin XSS on the export panels in the server, database and table sections PMASA-2011-20
Feedback
bodhi - 2011-12-22 21:56:52
This update has been submitted for testing by robert.
bodhi - 2011-12-24 17:36:10
This update is currently being pushed to the Fedora EPEL 6 testing updates repository.
bodhi - 2011-12-24 17:57:17
This update has been pushed to testing
bodhi - 2012-01-07 22:03:46
This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes
bodhi - 2012-01-08 01:15:19
This update has been submitted for stable by robert.
bodhi - 2012-01-11 06:02:41
This update is currently being pushed to the Fedora EPEL 6 stable updates repository.
bodhi - 2012-01-11 08:02:59
This update has been pushed to stable

Add a comment

Tip: Login to impact how quickly this update gets pushed or unpushed.
obfuscated letters