-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Thu, 23 Jun 2016 08:58:19 +0200 Source: phpmyadmin Binary: phpmyadmin Architecture: source all Version: 4:4.6.3-1 Distribution: unstable Urgency: high Maintainer: Thijs Kinkhorst <thijs@debian.org> Changed-By: Michal Čihař <nijel@debian.org> Description: phpmyadmin - MySQL web administration tool Changes: phpmyadmin (4:4.6.3-1) unstable; urgency=high . * New upstream release, fixing several security issues: - BBCode injection vulnerability (PMASA-2016-17 / CVE-2016-5701) - Cookie attribute injection attack (PMASA-2016-18 / CVE-2016-5702) - SQL injection attack (PMASA-2016-19 / CVE-2016-5703) - XSS on table structure page (PMASA-2016-20 / CVE-2016-5704) - Multiple XSS vulnerabilities (PMASA-2016-21 / CVE-2016-5705) - DOS attack (PMASA-2016-22 / CVE-2016-5706) - Multiple full path disclosure vulnerabilities (PMASA-2016-23 / CVE-2016-5730) - XSS through FPD (PMASA-2016-24 / CVE-2016-5731) - XSS in partition range functionality (PMASA-2016-25 / CVE-2016-5732) - Multiple XSS vulnerabilities (PMASA-2016-26 / CVE-2016-5733) - Unsafe handling of preg_replace parameters (PMASA-2016-27 / CVE-2016-5734) - Referrer leak in transformations (PMASA-2016-28 / CVE-2016-5739) Checksums-Sha1: 6ec60c8620bda8399c19f0ceae9cf78fb668be31 1919 phpmyadmin_4.6.3-1.dsc 08f06598de52051d2431aecff330944618a742fd 6111852 phpmyadmin_4.6.3.orig.tar.xz c68d3e645daebe614e6ba930d506f3847e42268c 79104 phpmyadmin_4.6.3-1.debian.tar.xz 010ae8aac235075db690a87c1b5f973568eeccfe 3849234 phpmyadmin_4.6.3-1_all.deb Checksums-Sha256: 8db48be337c01e06ce9422cc558978557774b8a43ed78922a0d91ed3bb0dfa5c 1919 phpmyadmin_4.6.3-1.dsc 943bad38a95f21bb015bdb78c9c067e0ea7510c1b35d4b8e757cb89c413e3bac 6111852 phpmyadmin_4.6.3.orig.tar.xz 5bad7b9680eef85c26282687534da825a430afa391d3b20a361e9c9ede9e275a 79104 phpmyadmin_4.6.3-1.debian.tar.xz 7822646e0077a3aac5a09fef164c4648fa334c0a74d5cd5dceb1c23ea3f5e3f7 3849234 phpmyadmin_4.6.3-1_all.deb Files: 9c3e60b2dc7cd06544f2528ebf65ff0d 1919 web extra phpmyadmin_4.6.3-1.dsc 53c7a6a577d10de04a5dd21a05018542 6111852 web extra phpmyadmin_4.6.3.orig.tar.xz f040edc7ab1cf12a2d4882d0fc5df4cb 79104 web extra phpmyadmin_4.6.3-1.debian.tar.xz 30484cf6db44275c9bbfab6c357fa618 3849234 web extra phpmyadmin_4.6.3-1_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJXa4lwAAoJEJwnsxNCt1EdJDgQAKlY2Q0+Po5OOTNo8Wjorzas s0HciU4WziODDHrvcbNZGKX3oB//MfDNTaBrqqDDZ9EM007wzdqclidUiWuAGEGU 87qXqhakZVWfkMW3QV9PAnJZJdvarDtRgACzT6Asn3tVjm2HKxTQWfLBWGgAXSwc rlmh33elUTJcDP0pMFNrkVNKK2XQZT+64sYdUltfFXPAe/+53wbH0Qj8XUlkfH9D KlQoFW9cR8ZkozvIwpOB8GN7oR2r6axbmxwBJHrx9qIs7yOHciVX3xPv2th/8mNi hfAwcSkD/jYWdN5tAtvTQRY7wR235REUoUn9OPhK9eExuIDTrZQWMojQvCNnXfH3 zTBNMsjNydvD8qkzfkBJ7rRnp0jtVpyMfRpZF62g5YUcGz4+FAFoSdD0Eb/EyLb8 +SxyPhYozcHJTWjG9RmrMxTuPkeJDlNMA/vLAI0r0bw3WQBzFwfU8ZkbCGDeNGpi Plm0ATcwCXs9IWB/4Iqk5AxwUn5qBrM/Cc9ljxxuZq8wWZpnW6VvPH6GJJOG+xM+ Se354W1qkBFVNn+zTy4612nqEQJn8+l7uRQR1mxPZe5NFHhPdsBuUdugWAR6Q586 M8ybdFHq89qwA0VYaFdtgAMxutCp5MAPTnvrQi8QH+G6XTcP5CYI2pbsV3wyv1N5 OSPil4/0Bc4Tok1QxUsE =vTIr -----END PGP SIGNATURE-----