|
|
| Problem Description |
A number of vulnerabilities and security-related issues have been fixed
in phpMyAdmin versions since the 2.9.1.1 release. This update provides
version 2.11.1.2 which is the latest stable release of phpMyAdmin.
Note that due to heavy configuration file changes, it may be necessary
to reconfigure phpMyAdmin. The configuration file is located in
/etc/phpMyAdmin/. In most cases, it should be sufficient so simply
replace config.default.php with config.default.php.rpmnew and make
whatever modifications are necessary.
| Updated Packages |
Corporate Server 4.0
1615938a8fb39ea6af326c8c82865be9 corporate/4.0/i586/phpMyAdmin-2.11.1.2-0.1.20060mlcs4.noarch.rpm b85026949e4db3234873cef96d7c7aa0 corporate/4.0/SRPMS/phpMyAdmin-2.11.1.2-0.1.20060mlcs4.src.rpm
Corporate Server 4.0/X86_64
883eca31e1d12d5d13ac860f9bec4111 corporate/4.0/x86_64/phpMyAdmin-2.11.1.2-0.1.20060mlcs4.noarch.rpm b85026949e4db3234873cef96d7c7aa0 corporate/4.0/SRPMS/phpMyAdmin-2.11.1.2-0.1.20060mlcs4.src.rpm
| References |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5386
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4306
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2245
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1395
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1325
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0204
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0203
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0095
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5589
| Upgrade |
To upgrade automatically, use MandrivaUpdate.
| Verification |
Please verify the update prior to upgrading to ensure the integrity of the downloaded package. You can do this with the command :
rpm --checksig package.rpm
You can get the GPG public key of the Mandriva Security Team to verify the GPG signature of each RPM.
If you use MandrivaUpdate, the verification of md5 checksum and GPG signature is performed automatically for you.