Lucene search

K
debianDebianDEBIAN:DLA-1415-1:3315A
HistoryJul 06, 2018 - 9:21 a.m.

[SECURITY] [DLA 1415-1] phpmyadmin security update

2018-07-0609:21:07
lists.debian.org
23

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

0.01

Percentile

83.4%

Package : phpmyadmin
Version : 4:4.2.12-2+deb8u3
CVE ID : CVE-2016-6609 CVE-2016-6614 CVE-2016-6615 CVE-2016-6616
CVE-2016-6618 CVE-2016-6619 CVE-2016-6620 CVE-2016-6621
CVE-2016-6622 CVE-2016-9865 CVE-2017-18264

Several vulnerabilities were found in phpMyAdmin, the web-based MySQL
administration interface, including SQL injection attacks, denial of
service, arbitrary code execution, cross-site scripting, server-side
request forgery, authentication bypass, and file system traversal.

For Debian 8 "Jessie", these problems have been fixed in version
4:4.2.12-2+deb8u3.

We recommend that you upgrade your phpmyadmin packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

OSVersionArchitecturePackageVersionFilename
Debian8allphpmyadmin< 4:4.2.12-2+deb8u3phpmyadmin_4:4.2.12-2+deb8u3_all.deb

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.5

Confidence

High

EPSS

0.01

Percentile

83.4%