[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 2024-1] phpmyadmin security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : phpmyadmin
Version        : 4:4.2.12-2+deb8u7
CVE ID         : CVE-2019-19617


phpMyAdmin before 4.9.2 does not escape certain Git information, related to
libraries/display_git_revision.lib.php and libraries/Footer.class.php.

For Debian 8 "Jessie", this issue has been fixed in phpmyadmin version
4:4.2.12-2+deb8u7. This upload was prepared by Utkarsh Gupta
<guptautkarsh2102@gmail.com>

We recommend that you upgrade your phpmyadmin packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Regards,

- -- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org / chris-lamb.co.uk
       `-

-----BEGIN PGP SIGNATURE-----
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=KfVp
-----END PGP SIGNATURE-----
Reply to: