Advisories » MGASA-2014-0510

Updated phpmyadmin package fixes CVE-2014-9218

Publication date: 05 Dec 2014
Modification date: 05 Dec 2014
Type: security
Affected Mageia releases : 4
CVE: CVE-2014-9218

Description

Updated phpmyadmin package fixes security vulnerabilities:

In phpMyAdmin before 4.1.14.8, with very long passwords it was possible to
initiate a denial of service attack on phpMyAdmin (CVE-2014-9218).
                

References

• https://bugs.mageia.org/show_bug.cgi?id=14721
• http://www.phpmyadmin.net/home_page/security/PMASA-2014-17.php
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9218

SRPMS

4/core

• phpmyadmin-4.1.14.8-1.mga4