Overview

File _patchinfo of Package patchinfo.2610

<patchinfo>
  <issue id="864917" tracker="bnc">VUL-0: CVE-2014-1879: phpMyAdmin: Self-XSS due to unescaped HTML output in import.</issue>
  <issue id="CVE-2014-1879" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>computersalat</packager>
  <description>
phpMyAdmin was updated to 4.1.8 to fix bugs, security issues and
also bring new features.

Fixed security issue:
  * PMASA-2014-1 ( CVE-2014-1879, CWE-661 CWE-79)

- update to 4.1.8 (2014-02-22)
  * sf#4276 Login loop on session expiry
  * sf#4249 Incorrect number of result rows for SQL with subqueries
  * sf#4275 Broken Link to php extension manual
  * sf#4053 List of procedures is not displayed after executing with Enter
  * sf#4081 Setup page content shifted to the right edge of its tabs
  * sf#4284 Reordering a column erases comments for other columns
  * sf#4286 Open "Browse" in a new tab
  * sf#4287 Printview - Always one column too much
  * sf#4288 Expand database (+ icon) after timeout doesn't do anything
  * sf#4285 Fixed CSS for setup
  * Fixed altering table to DOUBLE/FLOAT field
  * sf#4292 Success message and failure message being shown together
  * sf#4293 opening new tab (using selflink) for import.php based actions
          results in error and logout
</description>
  <summary>phpMyAdmin: update to 4.1.8</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places