Hello community,
here is the log from the commit of package patchinfo.4639 for
openSUSE:13.1:Update checked in at 2016-06-11 18:20:42
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:13.1:Update/patchinfo.4639 (Old)
and /work/SRC/openSUSE:13.1:Update/.patchinfo.4639.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "patchinfo.4639"
Changes:
--------
New Changes file:
NO CHANGES FILE!!!
New:
----
_patchinfo
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ _patchinfo ++++++
<patchinfo>
<category>security</category>
<rating>moderate</rating>
<packager>computersalat</packager>
<summary>Security update for phpMyAdmin</summary>
<description>
This phpMyAdmin update to version 4.4.15.6 fixes the following issues:
Security issues fixed:
- PMASA-2016-16 (CVE-2016-5099, CWE-661):
Self XSS, see
https://www.phpmyadmin.net/security/PMASA-2016-16/
- PMASA-2016-15 (CVE-2016-5098, CWE-661):
File Traversal Protection Bypass on Error Reporting, see
https://www.phpmyadmin.net/security/PMASA-2016-15/
- PMASA-2016-14 (CVE-2016-5097, CWE-661):
Sensitive Data in URL GET Query Parameters, see
https://www.phpmyadmin.net/security/PMASA-2016-14/
</description>
<issue tracker="bnc" id="982128">VUL-0: CVE-2016-5099: phpMyAdmin: Self XSS
(PMASA-2016-16)</issue>
<issue tracker="cve" id="2016-5099"/>
<issue tracker="cve" id="2016-5098"/>
<issue tracker="cve" id="2016-5097"/>
</patchinfo>
