Detections
Analytics

Fedora 25 : phpMyAdmin (2017-360e912fdb)

high Nessus Plugin ID 97031

Language:

Synopsis

The remote Fedora host is missing a security update.

Description

Welcome to **phpMyAdmin 4.6.6**, a release containing security and bug fixes.

This release includes many security fixes of various levels of severity. We recommend all users upgrade to this release immediately.
For full information on the vulnerabilities fixed and mitigation factors for users who are unable to upgrade, refer to the ChangeLog file included with this release and the security announcements at https://www.phpmyadmin.net/security/

There have been changes in the behavior of previous version :

 - Changed the suggested text in the query window for delete queries to avoid accidental data loss

 - Re-introduce a page which shows the output of phpinfo()

Aside from the changes and security improvements, many bugs have been fixed including :

 - Parsing of SQL queries with the BINARY function

 - Syntax error when adding or changing TIMESTAMP columns with default value as NULL

 - Broken 'Edit' and 'Export' links in the Routines tab

 - Creating a new user on older MariaDB servers

 - Format button in the SQL tab broken

 - Fixes for PHP 7.1

 - Problems with MySQL servers running with `lower_case_names=2`

 - Fixes for several PHP notices/warnings being shown

And many more. Please see the ChangeLog for full details of bugs fixes.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected phpMyAdmin package.

See Also

https://bodhi.fedoraproject.org/updates/FEDORA-2017-360e912fdb

Plugin Details

Severity: High

ID: 97031

File Name: fedora_2017-360e912fdb.nasl

Version: 3.4

Type: local

Agent: unix

Published: 2/7/2017

Updated: 1/11/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:phpmyadmin, cpe:/o:fedoraproject:fedora:25

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Patch Publication Date: 2/6/2017

Vulnerability Publication Date: 2/6/2017

Reference Information