Fedora 18 : phpMyAdmin-3.5.3-1.fc18 (2012-15691)

high Nessus Plugin ID 62533

Synopsis

The remote Fedora host is missing a security update.

Description

phpMyAdmin 3.5.3.0 (2012-10-08) ===============================

- [interface] Browse mode 'Show' button gives blank page if no results anymore

- [interface] Copy Database Ajax feedback vanishes long before copying is done

- [interface] GC-maxlifetime warning incorrectly displayed

- [interface] Search fails with JS error when tooltips disabled

- [interface] Event comments not saved

- [edit] Can't enter date directly when editing inline

- [interface] Inline query editor doesn't work from search results

- [edit] BLOB download no longer works

- [config] Error in generated configuration arrray

- [GUI] Invalid HTML code in multi submits confirmation form

- [interface] Designer sometimes places tables on the top menu

- [core] Call to undefined function __() when config file has wrong permissions

- [edit] Error searching table with many fields

- [edit] Cannot copy a DB with table and views

- [privileges] Incorrect updating of the list of users

- [edit] cell edit date field with empty date fills in current date

- [edit] current_date from function drop down fails on update

- [compatibility] add support for Solaris and FreeBSD system load and memory display in server status

- [import] Table import from XML file fails

- [display] replace Highcharts with jqplot for Display chart

- [edit] Pasting value doesn't clear null checkbox

- [edit] Datepicker for date and datetime fields is broken

- [security] Unspecified minor security fix by upstream, see PMASA-2012-6 (http://www.phpmyadmin.net/home_page/security/PMASA-20 12-6.php)

- [security] Unspecified minor security fix by upstream, see PMASA-2012-7 (http://www.phpmyadmin.net/home_page/security/PMASA-20 12-7.php)

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected phpMyAdmin package.

See Also

https://www.phpmyadmin.net/security/PMASA-2012-6/

https://www.phpmyadmin.net/security/PMASA-2012-7/

http://www.nessus.org/u?41e57ef3

Plugin Details

Severity: High

ID: 62533

File Name: fedora_2012-15691.nasl

Version: 1.8

Type: local

Agent: unix

Published: 10/15/2012

Updated: 1/11/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:phpmyadmin, cpe:/o:fedoraproject:fedora:18

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 10/9/2012

Reference Information

FEDORA: 2012-15691