[Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-22452/phpmyadmin
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Feb 9 05:30:31 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
96c430b7 by Salvatore Bonaccorso at 2023-02-09T06:29:25+01:00
Update information for CVE-2020-22452/phpmyadmin
The issue was already fixed earlier, 5.0.2 upstream includes the fix and
so the 4:5.0.4+dfsg1-1 upload to unstable as well.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -185860,7 +185860,7 @@ CVE-2020-22454
CVE-2020-22453 (Untis WebUntis before 2020.9.6 allows XSS in multiple functions that s ...)
NOT-FOR-US: Untis WebUntis
CVE-2020-22452 (SQL Injection vulnerability in function getTableCreationQuery in Creat ...)
- - phpmyadmin 4:5.2.0+dfsg1-2
+ - phpmyadmin 4:5.0.4+dfsg1-1
NOTE: https://github.com/phpmyadmin/phpmyadmin/issues/15898
NOTE: https://github.com/phpmyadmin/phpmyadmin/pull/16004
NOTE: https://github.com/phpmyadmin/phpmyadmin/commit/20e3d2fa9f5dc55fd25209963b5f26705d3e8020 (RELEASE_5_0_2)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96c430b7465ecdc5d49aeb1462719b0e6dd93b5d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/96c430b7465ecdc5d49aeb1462719b0e6dd93b5d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230209/1e8c4d49/attachment.htm>
More information about the debian-security-tracker-commits
mailing list