File _patchinfo of Package patchinfo.4597

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.4597

<patchinfo incident="4597">
  <issue id="964024" tracker="bnc">VUL-0: phpMyAdmin: Multiple vulnerabilities</issue>
  <issue id="CVE-2016-2039" tracker="cve" />
  <issue id="CVE-2016-2038" tracker="cve" />
  <issue id="CVE-2016-1927" tracker="cve" />
  <issue id="CVE-2016-2040" tracker="cve" />
  <issue id="CVE-2016-2041" tracker="cve" />
  <issue id="CVE-2016-2042" tracker="cve" />
  <issue id="CVE-2016-2043" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>computersalat</packager>
  <description>
This update to phpMyAdmin 4.4.15.4 fixes the following issues (boo#964024)
  * CVE-2016-2038: Multiple full path disclosure vulnerabilities
  * CVE-2016-2039: Unsafe generation of XSRF/CSRF token
  * CVE-2016-2040: Multiple XSS vulnerabilities
  * CVE-2016-1927: Insecure password generation in JavaScript
  * CVE-2016-2041: Unsafe comparison of XSRF/CSRF token
  * CVE-2016-2042: Multiple full path disclosure vulnerabilities
  * CVE-2016-2043: XSS vulnerability in normalization page
</description>
  <summary>Security update for phpMyAdmin</summary>
</patchinfo>

Places

File _patchinfo of Package patchinfo.4597

Places