-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Sun, 22 Mar 2020 14:12:51 +0100 Source: phpmyadmin Binary: phpmyadmin Architecture: source all Version: 4:4.2.12-2+deb8u9 Distribution: jessie-security Urgency: high Maintainer: Thijs Kinkhorst <thijs@debian.org> Changed-By: William Desportes <williamdes@wdes.fr> Description: phpmyadmin - MySQL web administration tool Closes: 954665 954666 Changes: phpmyadmin (4:4.2.12-2+deb8u9) jessie-security; urgency=high . * Team upload * Add a patch to escape database and table name. (Fixes: CVE-2020-10802) (Closes: #954665) * Add a patch to secure sql_query parameter. (Fixes: CVE-2020-10803) (Closes: #954666) Checksums-Sha1: 50d652d48f74848e8d1e58af7f491ff2261305d9 1967 phpmyadmin_4.2.12-2+deb8u9.dsc a1111cb2bfec0f1dfb762009a324ab93d451c82c 5203736 phpmyadmin_4.2.12.orig.tar.xz a555e057f320c0e3989754854b98e75147f6df59 81256 phpmyadmin_4.2.12-2+deb8u9.debian.tar.xz ddfb28bc568a6e911b291bfae3d6d52b9b4cb2df 3867600 phpmyadmin_4.2.12-2+deb8u9_all.deb Checksums-Sha256: fd40a1989f6dfe224cabb8b99ddbdcca8dde4dd8835ab3dcf1412c33c96e13ca 1967 phpmyadmin_4.2.12-2+deb8u9.dsc 29a5d980ca16f0ee20437f3e01e2ab553041ccf422221ebe26fb18f11261d74a 5203736 phpmyadmin_4.2.12.orig.tar.xz 2d1a02708b01973f93da022feb9b5923c41fb7c5729acd223dfa0f3c9f730c1c 81256 phpmyadmin_4.2.12-2+deb8u9.debian.tar.xz ff7da80251a8331d58be25e4de9e4211dc40c7b908e04645608bb88cc637028b 3867600 phpmyadmin_4.2.12-2+deb8u9_all.deb Files: d6846cb4eb18c1ed1a1a12820ebbccc8 1967 web extra phpmyadmin_4.2.12-2+deb8u9.dsc 2d12dce0a405db30509793720d1034e3 5203736 web extra phpmyadmin_4.2.12.orig.tar.xz 4a5e14a6223554f4fc98a5684566246e 81256 web extra phpmyadmin_4.2.12-2+deb8u9.debian.tar.xz bf5c07161a344ac554c3401989165a92 3867600 web extra phpmyadmin_4.2.12-2+deb8u9_all.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEbJ0QSEqa5Mw4X3xxgj6WdgbDS5YFAl53kpkACgkQgj6WdgbD S5aWdRAA6ETu/aWCPEyV1kBOtrvvARqYpR7DxyobJUvxIToPVST5tqyP3ii3zNRP 8yUxeE7ae6YQWT24WA6xWgcZFO0dEnasfUrkNvO0ZF2PKRPY72efmaK9saZUNFJN GMN6WtB942X5xgT5QD/E8EsGLyr7iMj5xIgE1ga06VUUNzNaby7CdZAPnycFUMHr PNXakBerVp4sIGCELZIjM8OLBwE9XY6UOt6GRjFi/M9D21W9pL4zD1HT2jfOre73 TGvC87vvHzmXekUrbHut/oEIKDiTnnO82T/0QKtdbmvTIescDXlG947ACealUTH/ fPRxpQLXbbu+RVEch2gEOmKLm45WZykrPz+t2ajM7daiQaEtdUk39M2r06ahWAKa HKdBLGySu3sXhwO1QHL3oE6Q7gh3C/di83Ng7O77OKXQiPrZNXgSR8T4Dc35wSvs idglwSxqYJSUwyMkTxkej7MYCt5hICeQMYn4X7zsahDpuEIsBQgQMyCNEmQuu6aR rhClLUPkXINBDo5c0JVS3FV0G+OQTDsXqkX1B1hF4Y5Fg8+vGqJ//3GpfrUh3kTY GgwqwQRytc+trimHOJmnsrnjnvdIymEstAK+UumLXAG3jRqpTHrm4dzZAP7Z5qE5 d/VFzGYIH4d7xoFgdqVTbzvSq5q1EhLHcctP5aQXJBsswOImbMo= =Ksd/ -----END PGP SIGNATURE-----