Accepting request 787669 from server:php:applications

OBS-URL: https://build.opensuse.org/request/show/787669 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/phpMyAdmin?expand=0&rev=165
2020-03-27 20:56:17 +00:00 · 2020-03-27 20:56:17 +00:00 · 2df81e202e
commit 2df81e202e
parent 3cef812359 2a522d4def
1 changed files with 7 additions and 6 deletions
--- a/phpMyAdmin.changes
+++ b/phpMyAdmin.changes
@ -3,12 +3,13 @@ Mon Mar 23 06:40:08 UTC 2020 - ecsos@opensuse.org

 - Update to 4.9.5
  This is a security release containing several bug fixes.
-  * PMASA-2020-2 SQL injection vulnerability in the user accounts
-    page, particularly when changing a password
-  * PMASA-2020-3 SQL injection vulnerability relating to the search
-    feature
-  * PMASA-2020-4 SQL injection and XSS having to do with displaying
-    results
+  * CVE-2020-10804: SQL injection vulnerability in the user
+    accounts page, particularly when changing a password
+    (boo#1167335, PMASA-2020-2)
+  * CVE-2020-10802: SQL injection vulnerability relating to the
+    search feature (boo#1167336, PMASA-2020-3)
+  * CVE-2020-10803: SQL injection and XSS having to do with
+    displaying results (boo#1167337, PMASA-2020-4)
  * Removing of the "options" field for the external
    transformation.