Fedora 17 : phpMyAdmin-3.5.3-1.fc17 (2012-15754)

High Nessus Plugin ID 62727


The remote Fedora host is missing a security update.


phpMyAdmin (2012-10-08) ===============================

- [interface] Browse mode 'Show' button gives blank page if no results anymore

- [interface] Copy Database Ajax feedback vanishes long before copying is done

- [interface] GC-maxlifetime warning incorrectly displayed

- [interface] Search fails with JS error when tooltips disabled

- [interface] Event comments not saved

- [edit] Can't enter date directly when editing inline

- [interface] Inline query editor doesn't work from search results

- [edit] BLOB download no longer works

- [config] Error in generated configuration arrray

- [GUI] Invalid HTML code in multi submits confirmation form

- [interface] Designer sometimes places tables on the top menu

- [core] Call to undefined function __() when config file has wrong permissions

- [edit] Error searching table with many fields

- [edit] Cannot copy a DB with table and views

- [privileges] Incorrect updating of the list of users

- [edit] cell edit date field with empty date fills in current date

- [edit] current_date from function drop down fails on update

- [compatibility] add support for Solaris and FreeBSD system load and memory display in server status

- [import] Table import from XML file fails

- [display] replace Highcharts with jqplot for Display chart

- [edit] Pasting value doesn't clear null checkbox

- [edit] Datepicker for date and datetime fields is broken

- [security] Unspecified minor security fix by upstream, see PMASA-2012-6 (http://www.phpmyadmin.net/home_page/security/PMASA-20 12-6.php)

- [security] Unspecified minor security fix by upstream, see PMASA-2012-7 (http://www.phpmyadmin.net/home_page/security/PMASA-20 12-7.php)

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.


Update the affected phpMyAdmin package.

See Also




Plugin Details

Severity: High

ID: 62727

File Name: fedora_2012-15754.nasl

Version: $Revision: 1.8 $

Type: local

Agent: unix

Published: 2012/10/29

Modified: 2016/05/09

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:phpMyAdmin, cpe:/o:fedoraproject:fedora:17

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2012/10/10

Reference Information

BID: 55925, 55939

FEDORA: 2012-15754