[SECURITY] [DLA 2024-1] phpmyadmin security update
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Package : phpmyadmin
Version : 4:4.2.12-2+deb8u7
CVE ID : CVE-2019-19617
phpMyAdmin before 4.9.2 does not escape certain Git information, related to
libraries/display_git_revision.lib.php and libraries/Footer.class.php.
For Debian 8 "Jessie", this issue has been fixed in phpmyadmin version
4:4.2.12-2+deb8u7. This upload was prepared by Utkarsh Gupta
<guptautkarsh2102@gmail.com>
We recommend that you upgrade your phpmyadmin packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
Regards,
- --
,''`.
: :' : Chris Lamb
`. `'` lamby@debian.org / chris-lamb.co.uk
`-
-----BEGIN PGP SIGNATURE-----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=KfVp
-----END PGP SIGNATURE-----
Reply to: