-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 23 Oct 2020 14:39:25 +0200 Source: phpmyadmin Binary: phpmyadmin Architecture: source all Version: 4:4.6.6-4+deb9u2 Distribution: stretch-security Urgency: high Maintainer: Thijs Kinkhorst <thijs@debian.org> Changed-By: William Desportes <williamdes@wdes.fr> Description: phpmyadmin - MySQL web administration tool Closes: 971999 972000 Changes: phpmyadmin (4:4.6.6-4+deb9u2) stretch; urgency=high . * Team upload * Several security fixes - Add a patch to make sure where_clause is not modified (PMASA-2020-5, CVE-2020-26934, Closes: #971999) - Add a patch to secure where_clause parameter on zoom search (PMASA-2020-6, CVE-2020-26935, Closes: #972000) - Add a patch to escape GIT information (CVE-2019-19617) * Patch tests for - PMASA-2020-5, CVE-2020-26934 - PMASA-2020-6, CVE-2020-26935 Checksums-Sha1: b9de4595c2e8e592e3e6bfe3ac25b77c883d92fc 2152 phpmyadmin_4.6.6-4+deb9u2.dsc 5314655baf12ad47bdc42a2ebcfc2b10995ce7a5 6147904 phpmyadmin_4.6.6.orig.tar.xz 071121041d4a061e9c70f474fe96980ae425e7d1 89700 phpmyadmin_4.6.6-4+deb9u2.debian.tar.xz ff1916b895470d836b5935cd52ee84b4a0e4eaf3 3912688 phpmyadmin_4.6.6-4+deb9u2_all.deb 718021e625ee4029a7500b94857c06602eacadfe 8752 phpmyadmin_4.6.6-4+deb9u2_amd64.buildinfo Checksums-Sha256: 31c023c20ca03f962dbcdb9280de72a8896ffcc6f5678b94962ad8a78a39476a 2152 phpmyadmin_4.6.6-4+deb9u2.dsc b7b9e0f88ca740fcba249e7e3e7d51d1923b038b7742cde72de193a2b0a2654f 6147904 phpmyadmin_4.6.6.orig.tar.xz 0b325af1f471b6356c0201335e98fc826ea9f002a8402015f949145de18fd9c9 89700 phpmyadmin_4.6.6-4+deb9u2.debian.tar.xz 614be5c56f2372cf5c231a73df1448ace9854bb197775d15e35122df50ce476c 3912688 phpmyadmin_4.6.6-4+deb9u2_all.deb 98aba4a1373a15d44c504b1d64d8eec8cd01ec03a80bc38469ea2704f73e78fa 8752 phpmyadmin_4.6.6-4+deb9u2_amd64.buildinfo Files: e5f8ad25edf5e6fde3a1139a762b4dd8 2152 web extra phpmyadmin_4.6.6-4+deb9u2.dsc 474af1974cadf7f0300d80a63acc14d2 6147904 web extra phpmyadmin_4.6.6.orig.tar.xz 02a22db5e15416267a4942c3877061a8 89700 web extra phpmyadmin_4.6.6-4+deb9u2.debian.tar.xz 630f510a4e824a70c563e5321361092c 3912688 web extra phpmyadmin_4.6.6-4+deb9u2_all.deb 0ed4e09576284726bcf5d76673d1a461 8752 web extra phpmyadmin_4.6.6-4+deb9u2_amd64.buildinfo -----BEGIN PGP SIGNATURE----- iQJIBAEBCgAyFiEE7xPqJqaY/zX9fJAuhj1N8u2cKO8FAl+VT5wUHGFiaGlqaXRo QGRlYmlhbi5vcmcACgkQhj1N8u2cKO9hJhAAjqD7j6IXYLEbLK4lEj7JnTjw06Ul 4i2DHXsTlu2klN4m8USz40o4cLxjabSo3NeVAVFvh70vJiNf1/JWH5EOL7qLp0uB NijOLkakszB17h8o0zJ1mqFebIFVz54J1Gk8BE9vMFXMlQIVCtH10B/Zve8Kq4QF RTfqu0U25v6Ib4RWZWkahY15uqU2/XeSWKRaPe8qiTtsWgtR8GjpNsZWMMlJcr9c Dini6JzJNP06+UeP2E2cNlp+yd2H5+rx3775ORJJbQ4a9x+2JmwUdAYp0jEHn7Jf GiZdJ9wwWjZqv2DHdVYXHQJOCWdBa1eSDc7nNBqcNHChaca94fZ2zn+TxbAMWr4I 5JYAQb05LLH7nw1qevlpMXjk4uN9bp71k5DrOGAO3hhs7jcSfRvPFbBKU3nVODNx 37x20YtQzG74M830y6PwtD4P3cmkw16st/rKE+66yPZjemEy+Q5iFfqCHJQEQmL5 OlO2NY0v4mFJEs7ee133APTG/3K3BwBQFU60paFJH14tMAXoHEk2sW5CtssBVyoI V5wY3tjHFsol2rHYt3g0QcT22ASrPzbEERLBYKvuHXSkxnPnIpQabfarfXgWImNg YhZt/6uMiSbcW49A0FYNDFDbIV/bcF1MxET+9yPZ6mmMXPPLKUv4N+PN9j3zAWCt X4z4h6LxjxPFIY8= =m0D2 -----END PGP SIGNATURE-----