[SECURITY] Fedora 9 Update: phpMyAdmin-2.11.9.2-1.fc9
updates at fedoraproject.org
updates at fedoraproject.org
Thu Sep 25 00:23:53 UTC 2008
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2008-8335
2008-09-24 12:40:17
--------------------------------------------------------------------------------
Name : phpMyAdmin
Product : Fedora 9
Version : 2.11.9.2
Release : 1.fc9
URL : http://www.phpmyadmin.net/
Summary : Web based MySQL browser written in php
Description :
phpMyAdmin is a tool written in PHP intended to handle the administration of
MySQL over the Web. Currently it can create and drop databases,
create/drop/alter tables, delete/edit/add fields, execute any SQL statement,
manage keys on fields, manage privileges,export data into various formats and
is available in 50 languages
--------------------------------------------------------------------------------
Update Information:
This update by upstream to phpMyAdmin 2.11.9.2 solves a not yet clearly
specified XSS in MSIE using NUL byte vulnerability. - [auth] Links to version
number on login screen - [core] PMA does not start if ini_set() is disabled
- [bookmarks] Saved queries greater than 1000 chars not displayed - [export]
Export type "replace" does not work - [export] DROP PROCEDURE needs IF EXISTS
- [export] Numbers in Excel export - [lang] Norwegian UTF-8 original file
remerged - [parser] Undefined variable seen_from - [security] Code execution
vulnerability - [security] XSS in MSIE using NUL byte
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 22 2008 Robert Scheck <robert at fedoraproject.org> 2.11.9.2-1
- Upstream released 2.11.9.2 (#463260)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #463260 - phpMyAdmin: (Currently unspecified) XSS in MSIE using NUL byte
https://bugzilla.redhat.com/show_bug.cgi?id=463260
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update phpMyAdmin' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
http://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the Fedora-package-announce
mailing list