review.tizen.org Git - scm/bb/tizen-distro.git/commit

author	Roy Li <rongqing.li@windriver.com>
	Thu, 30 Oct 2014 05:37:26 +0000 (13:37 +0800)
committer	Patrick Ohly <patrick.ohly@intel.com>
	Fri, 9 Jan 2015 17:19:13 +0000 (09:19 -0800)
commit	7ab1349db44bc6fdb48a96b7e14e8da9d45ac69d
tree	dcc034a2e4376072777dc2b2e0de0add09e51f71	tree \| snapshot
parent	16cc2420e648d0cb78af58de502c92a1f7e6c064	commit \| diff

phpmyadmin: fix for Security Advisory CVE-2014-5274

Cross-site scripting (XSS) vulnerability in the view operations page in
phpMyAdmin 4.1.x before 4.1.14.3 and 4.2.x before 4.2.7.1 allows remote
authenticated users to inject arbitrary web script or HTML via a crafted
view name, related to js/functions.js.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-5274

(From meta-openembedded rev: 9167cec3d6f2ae63b3a407d70eb5137c19b993a7)

Signed-off-by: Roy Li <rongqing.li@windriver.com>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Patrick Ohly <patrick.ohly@intel.com>

meta-openembedded/meta-webserver/recipes-php/phpmyadmin/phpmyadmin/0001-bug-4505-security-XSS-in-view-operations-page.patch	[new file with mode: 0644]	blob
meta-openembedded/meta-webserver/recipes-php/phpmyadmin/phpmyadmin_4.2.7.bb		diff \| blob \| history