Mageia 2018-0486: phpmyadmin security update
- XSS vulnerability in navigation tree was discovered - Local file inclusion through transformation feature References: - https://bugs.mageia.org/show_bug.cgi?id=24012
Summary
- XSS vulnerability in navigation tree was discovered
- Local file inclusion through transformation feature
References
- https://bugs.mageia.org/show_bug.cgi?id=24012
- https://www.phpmyadmin.net/security/PMASA-2018-6/
- https://www.phpmyadmin.net/security/PMASA-2018-8/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19970
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19968
Resolution
MGASA-2018-0486 - Updated phpmyadmin packages fix security vulnerabilities
SRPMS
- 6/core/phpmyadmin-4.7.8-3.mga6
Severity
Publication date: 20 Dec 2018
URL: https://advisories.mageia.org/MGASA-2018-0486.html
Type: security
CVE: CVE-2018-19970,
CVE-2018-19968
