phpMyAdmin: Multiple vulnerabilities
Multiple vulnerabilities have been found in phpMyAdmin, the worst
of which could lead to arbitrary code execution.
phpMyAdmin
January 11, 2017
January 11, 2017: 1
586964
593582
600814
remote
4.6.5.1
4.6.5.1
phpMyAdmin is a web-based management tool for MySQL databases.
Multiple vulnerabilities have been discovered in phpMyAdmin. Please
review the CVE identifiers referenced below for details.
A authenticated remote attacker could exploit these vulnerabilities to
execute arbitrary PHP Code, inject SQL code, or to conduct Cross-Site
Scripting attacks.
In certain configurations, an unauthenticated remote attacker could
cause a Denial of Service condition.
There is no known workaround at this time.
All phpMyAdmin users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-db/phpmyadmin-4.6.5.1"
CVE-2016-4412
CVE-2016-5097
CVE-2016-5098
CVE-2016-5099
CVE-2016-5701
CVE-2016-5702
CVE-2016-5703
CVE-2016-5704
CVE-2016-5705
CVE-2016-5706
CVE-2016-5730
CVE-2016-5731
CVE-2016-5732
CVE-2016-5733
CVE-2016-5734
CVE-2016-5739
CVE-2016-6606
CVE-2016-6607
CVE-2016-6608
CVE-2016-6609
CVE-2016-6610
CVE-2016-6611
CVE-2016-6612
CVE-2016-6613
CVE-2016-6614
CVE-2016-6615
CVE-2016-6616
CVE-2016-6617
CVE-2016-6618
CVE-2016-6619
CVE-2016-6620
CVE-2016-6622
CVE-2016-6623
CVE-2016-6624
CVE-2016-6625
CVE-2016-6626
CVE-2016-6627
CVE-2016-6628
CVE-2016-6629
CVE-2016-6630
CVE-2016-6631
CVE-2016-6632
CVE-2016-6633
CVE-2016-9847
CVE-2016-9848
CVE-2016-9849
CVE-2016-9850
CVE-2016-9851
CVE-2016-9852
CVE-2016-9853
CVE-2016-9854
CVE-2016-9855
CVE-2016-9856
CVE-2016-9857
CVE-2016-9858
CVE-2016-9859
CVE-2016-9860
CVE-2016-9861
CVE-2016-9862
CVE-2016-9863
CVE-2016-9864
CVE-2016-9865
CVE-2016-9866
whissi
whissi