Accepting request 787592 from home:AndreasStieger:branches:server:php:applications

add bug IDs for 4.9.5 release OBS-URL: https://build.opensuse.org/request/show/787592 OBS-URL: https://build.opensuse.org/package/show/server:php:applications/phpMyAdmin?expand=0&rev=349
2020-03-24 06:38:27 +00:00 · 2020-03-24 06:38:27 +00:00 · 2a522d4def
commit 2a522d4def
parent bc02fff1c5
1 changed files with 7 additions and 6 deletions
--- a/phpMyAdmin.changes
+++ b/phpMyAdmin.changes
@ -3,12 +3,13 @@ Mon Mar 23 06:40:08 UTC 2020 - ecsos@opensuse.org

 - Update to 4.9.5
  This is a security release containing several bug fixes.
-  * PMASA-2020-2 SQL injection vulnerability in the user accounts
-    page, particularly when changing a password
-  * PMASA-2020-3 SQL injection vulnerability relating to the search
-    feature
-  * PMASA-2020-4 SQL injection and XSS having to do with displaying
-    results
+  * CVE-2020-10804: SQL injection vulnerability in the user
+    accounts page, particularly when changing a password
+    (boo#1167335, PMASA-2020-2)
+  * CVE-2020-10802: SQL injection vulnerability relating to the
+    search feature (boo#1167336, PMASA-2020-3)
+  * CVE-2020-10803: SQL injection and XSS having to do with
+    displaying results (boo#1167337, PMASA-2020-4)
  * Removing of the "options" field for the external
    transformation.