Advisories » MGASA-2025-0023

Updated phpmyadmin packages fix security vulnerabilities

Publication date: 24 Jan 2025
Modification date: 24 Jan 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2023-30536 , CVE-2024-2961

Description

fix possible security issue with library code slim/psr7 (CVE-2023-30536)
fix possible security issue relating to iconv (CVE-2024-2961,
PMASA-2025-3)
fix an XSS vulnerability in the check tables feature (PMASA-2025-1)
fix an XSS vulnerability in the Insert tab (PMASA-2025-2)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=33948
• https://www.phpmyadmin.net/news/2025/1/21/phpMyAdmin-522-is-released/
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-30536
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-2961

SRPMS

9/core

• phpmyadmin-5.2.2-1.mga9