Advisories ยป MGASA-2016-0272

Updated php-ZendFramework packages fix security vulnerability

Publication date: 03 Aug 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-6233

Description

The implementation of ORDER BY and GROUP BY in Zend_Db_Select of
ZendFramework is vulnerable to an SQL injection (CVE-2016-6233).
                

References

SRPMS

5/core