Detections
Analytics

Fedora 22 : phpMyAdmin-4.5.3.1-1.fc22 (2015-345966871c)

high Nessus Plugin ID 89202

Language:

Synopsis

The remote Fedora host is missing a security update.

Description

phpMyAdmin 4.5.3.1 (2015-12-25) =============================== - Undefined offset 2 - [Security] Path disclosure, see PMASA-2015-6 ---- phpMyAdmin 4.5.3.0 (2015-12-23) =============================== - Incomplete results of UNION ALL - MATCH AGAINST keywords not recognized - syntax verifier is not knowing 'STRAIGHT_JOIN' - REPLACE() function confused with REPLACE statement - FLUSH word not recognized by parser - Online syntax verifier bug - 'IF' on SELECT statement - Format breaks query with COUNT() - Undefinex index:
SendErrorReports - Incorrect script name in include - Warning: Invalid argument supplied for foreach() - Delimiter missing while exporting multiple db routines

 - mysql_native_password with MariaDB bug - Flush privileges overusage - related to #11597 - Query was empty on creating User in 4.5.2 - PMA_getDataForDeleteUsers() warning - Cannot create user on Percona Server - Properly report error on connecting
 - Database export template not saving compression option
 - Fix single quote export for servers in ANSI_QUOTES mode - Avoid duplicite fetching of table information - Temporary fix for live data edit of big sets is not working - IE 8 compatibility in console - Exporting feature does not work with union table - CSV import skip row count after - Cannot export results of some queries
 - Message 'An account already exists...' incorrectly displayed - Missing quoting of table in ALTER CONVERT query - PMA 4.5.2 breaks MySQL Master-Master Cluster - Export and preview show different SQL for character set
 - Fix possible undefined variables in table operations

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected phpMyAdmin package.

See Also

https://bugzilla.redhat.com/show_bug.cgi?id=1294254

http://www.nessus.org/u?e882949c

Plugin Details

Severity: High

ID: 89202

File Name: fedora_2015-345966871c.nasl

Version: 2.3

Type: local

Agent: unix

Published: 3/4/2016

Updated: 1/11/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:phpmyadmin, cpe:/o:fedoraproject:fedora:22

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 12/30/2015

Reference Information