SUSE Package Hub - openSUSE-2019-490

Update Info

openSUSE-2019-490

Security update for phpMyAdmin

Type: security

Severity: important

Issued: 2019-03-23

Description:

This update for phpMyAdmin fixes multiple issues.

Security issues fixed:

* CVE-2018-12613: File inclusion and remote code execution attack (boo#1098751)
* CVE-2018-12581: XSS in Designer feature (boo#1098752)

This update to version 4.8.2 also contains number of upstream bug fixes and improvements.

References

CVE: CVE-2018-12613
CVE: CVE-2018-12581
Bugzilla: 1098752 VUL-0: CVE-2018-12581: phpMyAdmin: XSS in Designer feature
Bugzilla: 1098751 VUL-0: CVE-2018-12613: phpMyAdmin: File inclusion and remote code execution attack

Packages

phpMyAdmin-4.8.2-23.1