[Secure-testing-commits] r43087 - data/CVE
Ola Lundqvist
opal at moszumanska.debian.org
Sat Jul 9 21:58:14 UTC 2016
Author: opal
Date: 2016-07-09 21:58:14 +0000 (Sat, 09 Jul 2016)
New Revision: 43087
Modified:
data/CVE/list
Log:
Analysis of phpmyadmin gave quite a lot of vulnerable code not present.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-07-09 14:43:51 UTC (rev 43086)
+++ data/CVE/list 2016-07-09 21:58:14 UTC (rev 43087)
@@ -1210,10 +1210,13 @@
RESERVED
CVE-2016-5734 (phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x ...)
- phpmyadmin 4:4.6.3-1
+ [wheezy] - phpmyadmin <no-dsa> (Vulnerable only with a php version earlier than the one in wheezy)
+ [jessie] - phpmyadmin <no-dsa> (Vulnerable only with a php version earlier than the one in jessie)
CVE-2016-5733 (Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin ...)
- phpmyadmin 4:4.6.3-1
CVE-2016-5732 (Multiple cross-site scripting (XSS) vulnerabilities in the ...)
- phpmyadmin 4:4.6.3-1
+ [wheezy] - phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2016-5731 (Cross-site scripting (XSS) vulnerability in examples/openid.php in ...)
- phpmyadmin 4:4.6.3-1
CVE-2016-5730 (phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x before 4.4.15.7, and 4.6.x ...)
@@ -1283,12 +1286,16 @@
RESERVED
CVE-2016-5706 (js/get_scripts.js.php in phpMyAdmin 4.0.x before 4.0.10.16, 4.4.x ...)
- phpmyadmin 4:4.6.3-1
+ [wheezy] - phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2016-5705 (Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin ...)
- phpmyadmin 4:4.6.3-1
+ [wheezy] - phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2016-5704 (Cross-site scripting (XSS) vulnerability in the table-structure page ...)
- phpmyadmin 4:4.6.3-1
+ [wheezy] - phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2016-5703 (SQL injection vulnerability in libraries/central_columns.lib.php in ...)
- phpmyadmin 4:4.6.3-1
+ [wheezy] - phpmyadmin <not-affected> (Vulnerable code not present)
CVE-2016-5702 (phpMyAdmin 4.6.x before 4.6.3, when the environment lacks a PHP_SELF ...)
- phpmyadmin 4:4.6.3-1
[wheezy] - phpmyadmin <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list