SUSE Package Hub - openSUSE-2019-643

Update Info

openSUSE-2019-643

Security update for phpMyAdmin

Type: security

Severity: moderate

Issued: 2019-03-23

Description:

This update for phpMyAdmin to version 4.8.3 addresses multiple issues.

Security issues fixed:

- CVE-2018-15605: vulnerability in the file import feature allowed cross-site scripting via importing a
  specially-crafted file (PMASA-2018-5, boo#1105726)

This update also contains a number of upstream bug fixes in the UI and behavior.

References

CVE: CVE-2018-15605
Bugzilla: 1105726 VUL-0: CVE-2018-15605: phpMyAdmin: XSS in the import dialog

Packages

phpMyAdmin-4.8.3-bp150.3.3.1