Andreas Stieger 2016-05-28 15:42:38 +00:00 committed by Git OBS Bridge
parent fdcead68a0
commit 7ed8b2119d

View File

@ -23,11 +23,11 @@ Sat May 28 07:33:29 UTC 2016 - ecsos@opensuse.org
- remove PmaAbsoluteUri from phpMyAdmin-config.patch because since - remove PmaAbsoluteUri from phpMyAdmin-config.patch because since
version 4.6.0 it is remove version 4.6.0 it is remove
- Security fixes: - Security fixes:
* PMASA-2016-14 (CVE-2016-5097, CWE-661) * PMASA-2016-14 (CVE-2016-5097, CWE-661, boo#982126)
https://www.phpmyadmin.net/security/PMASA-2016-14/ https://www.phpmyadmin.net/security/PMASA-2016-14/
- User SQL queries can be revealed through URL GET parameters, - User SQL queries can be revealed through URL GET parameters,
see PMASA-2016-14 see PMASA-2016-14
* PMASA-2016-16 (CVE-2016-5099, CWE-661) * PMASA-2016-16 (CVE-2016-5099, CWE-661, boo#982128)
https://www.phpmyadmin.net/security/PMASA-2016-16/ https://www.phpmyadmin.net/security/PMASA-2016-16/
- Self XSS vulneratbility, see PMASA-2016-16 - Self XSS vulneratbility, see PMASA-2016-16