openSUSE Security Update : phpMyAdmin (openSUSE-2017-1421)

This script is Copyright (C) 2018 Tenable Network Security, Inc.


Synopsis :

The remote openSUSE host is missing a security update.

Description :

This update for phpMyAdmin to version 4.7.7 fixes a security issue and
bugs. The following vulnerability was fixed :

- By deceiving a user to click on a crafted URL, it was
possible to perform harmful database operations
(bsc#1074066, PMASA-2017-09)

This update also contains all upstream improvements and bugfixes in
version 4.7.7 :

- various display and UI fixes

- PHP error fixes

- Improved deteciton of MySQL server needing SSL
connections

- Support JSON datatype on MariaDB 10.2.7 and newer

- Fix constructing ALTER query with AFTER

- Fix changing password on MariaDB cluster

See also :

https://bugzilla.opensuse.org/show_bug.cgi?id=1074066

Solution :

Update the affected phpMyAdmin package.

Risk factor :

High

Family: SuSE Local Security Checks

Nessus Plugin ID: 105504 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now