Overview

Request 787596 accepted

* CVE-2020-10804: SQL injection vulnerability in the user
accounts page, particularly when changing a password
(boo#1167335, PMASA-2020-2)
* CVE-2020-10802: SQL injection vulnerability relating to the
search feature (boo#1167336, PMASA-2020-3)
* CVE-2020-10803: SQL injection and XSS having to do with
displaying results (boo#1167337, PMASA-2020-4)
* Removing of the "options" field for the external
transformation.

Leap Reviewbot's avatar
Leap Reviewbot (leaper) -

home:AndreasStieger:branches:OBS_Maintained:phpMyAdmin/phpMyAdmin.openSUSE_Backports_SLE-12@e93d3985727b156c0c9879dc5652a803 -> openSUSE:Backports:SLE-12/phpMyAdmin

home:AndreasStieger:branches:OBS_Maintained:phpMyAdmin/phpMyAdmin.openSUSE_Leap_15.1_Update@dd68ca271f9677a0a1bbe5a4a5007807 -> openSUSE:Leap:15.1:Update/phpMyAdmin

expected origin is 'openSUSE:Leap:15.0:Update' (changed)

Request History
Andreas Stieger's avatar

AndreasStieger created request

* CVE-2020-10804: SQL injection vulnerability in the user
accounts page, particularly when changing a password
(boo#1167335, PMASA-2020-2)
* CVE-2020-10802: SQL injection vulnerability relating to the
search feature (boo#1167336, PMASA-2020-3)
* CVE-2020-10803: SQL injection and XSS having to do with
displaying results (boo#1167337, PMASA-2020-4)
* Removing of the "options" field for the external
transformation.

Factory Auto's avatar

factory-auto accepted review

openSUSE:Backports:SLE-12/phpMyAdmin.openSUSE_Backports_SLE-12::maintenance_incident: Check
script succeeded
openSUSE:Leap:15.1:Update/phpMyAdmin.openSUSE_Leap_15.1_Update::maintenance_incident: Check
script succeeded

Saul Goodman's avatar

licensedigger accepted review

ok

Maintenance Bot's avatar

maintbot added factory-source as a reviewer

openSUSE:Leap:15.1:Update/phpMyAdmin.openSUSE_Leap_15.1_Update::maintenance_incident: null

Maintenance Bot's avatar

maintbot added phpMyAdmin as a reviewer

openSUSE:Leap:15.1:Update/phpMyAdmin.openSUSE_Leap_15.1_Update::maintenance_incident: Submission
for phpMyAdmin by someone who is not maintainer in the devel project (server:php:applications).
Please review

Maintenance Bot's avatar

maintbot accepted review

openSUSE:Backports:SLE-12/phpMyAdmin.openSUSE_Backports_SLE-12::maintenance_incident: ok
openSUSE:Leap:15.1:Update/phpMyAdmin.openSUSE_Leap_15.1_Update::maintenance_incident: ok

Source in Factory Checker's avatar

factory-source added backports-reviewers as a reviewer

openSUSE:Leap:15.1:Update/phpMyAdmin.openSUSE_Leap_15.1_Update::maintenance_incident: Automated
review failed. Needs fallback reviewer.

Source in Factory Checker's avatar

factory-source accepted review

openSUSE:Backports:SLE-12/phpMyAdmin.openSUSE_Backports_SLE-12::maintenance_incident: the
package needs to be accepted in openSUSE:Factory or openSUSE:Factory or openSUSE:Factory
or openSUSE:Factory first
openSUSE:Leap:15.1:Update/phpMyAdmin.openSUSE_Leap_15.1_Update::maintenance_incident: the
package needs to be accepted in openSUSE:Factory or openSUSE:Factory or openSUSE:Factory
or openSUSE:Factory first

Eric Schirra's avatar

ecsos accepted review

ok

Ismail Dönmez's avatar

namtrac accepted review

Ismail Dönmez's avatar

namtrac approved review

Alexandros Toptsoglou's avatar

atopt moved maintenance target to openSUSE:Maintenance:12159

Alexandros Toptsoglou's avatar

atopt accepted request

accepted request 787596:Thanks!

For information about the update, see https://build.opensuse.org/project/maintenance_incidents/openSUSE:Maintenance

openSUSE Build Service is sponsored by
Places