Register | Log in

adminer

Web-based database administration tool

Choose email to subscribe with

general

source: adminer (main)
version: 5.4.2+dfsg-1
maintainer: Alexandre Rossi (DMD)
arch: all
std-ver: 4.7.3.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 4.7.9-2
oldstable: 4.8.1-1
stable: 5.2.1+dfsg-1
testing: 5.4.1+dfsg-1
unstable: 5.4.2+dfsg-1

versioned links

4.7.9-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
4.8.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.2.1+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.4.1+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.4.2+dfsg-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

adminer

action needed

2 security issues in buster high

There are 2 open security issues in buster.

2 important issues:

CVE-2023-45195: Adminer and AdminerEvo are vulnerable to SSRF via database connection fields. This could allow an unauthenticated remote attacker to enumerate or access systems the attacker would not otherwise have access to. Adminer is no longer supported, but this issue was fixed in AdminerEvo version 4.8.4.
CVE-2023-45196: Adminer and AdminerEvo allow an unauthenticated remote attacker to cause a denial of service by connecting to an attacker-controlled service that responds with HTTP redirects. The denial of service is subject to PHP configuration limits. Adminer is no longer supported, but this issue was fixed in AdminerEvo version 4.8.4.

Created: 2024-06-28 Last update: 2024-06-28 20:13

2 low-priority security issues in bookworm low

There are 2 open security issues in bookworm.

2 issues left for the package maintainer to handle:

CVE-2023-45195: (needs triaging) Adminer and AdminerEvo are vulnerable to SSRF via database connection fields. This could allow an unauthenticated remote attacker to enumerate or access systems the attacker would not otherwise have access to. Adminer is no longer supported, but this issue was fixed in AdminerEvo version 4.8.4.
CVE-2023-45196: (needs triaging) Adminer and AdminerEvo allow an unauthenticated remote attacker to cause a denial of service by connecting to an attacker-controlled service that responds with HTTP redirects. The denial of service is subject to PHP configuration limits. Adminer is no longer supported, but this issue was fixed in AdminerEvo version 4.8.4.

You can find information about how to handle these issues in the security team's documentation.

Created: 2024-06-28 Last update: 2026-02-22 00:16

testing migrations

excuses:
- Migration status for adminer (5.4.1+dfsg-1 to 5.4.2+dfsg-1): Waiting for test results or another package, or too young (no action required now - check later)
- Issues preventing migration:
- ∙ ∙ Autopkgtest for adminer/5.4.2+dfsg-1: amd64: Pass, arm64: Pass, i386: Pass, ppc64el: Test triggered, riscv64: Pass, s390x: Pass
- ∙ ∙ Too young, only 0 of 5 days old
- Additional info (not blocking):
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/a/adminer.html
- ∙ ∙ Reproducible on amd64
- ∙ ∙ Reproducible on arm64
- ∙ ∙ Reproducible on armhf
- ∙ ∙ Reproducible on i386
- ∙ ∙ Reproducible on ppc64el
- Not considered

news

[2026-02-21] Accepted adminer 5.4.2+dfsg-1 (source) into unstable (Alexandre Rossi) (signed by: Tobias Frost)
[2025-12-19] adminer 5.4.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2025-12-17] Accepted adminer 5.4.1+dfsg-1 (source) into unstable (Alexandre Rossi) (signed by: bage@debian.org)
[2025-11-25] adminer 5.4.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2025-11-22] Accepted adminer 5.4.0+dfsg-1 (source) into unstable (Alexandre Rossi) (signed by: bage@debian.org)
[2025-08-21] adminer 5.3.0+dfsg-1 MIGRATED to testing (Debian testing watch)
[2025-08-18] Accepted adminer 5.3.0+dfsg-1 (source) into unstable (Alexandre Rossi) (signed by: xiao sheng wen)
[2025-04-29] adminer 5.2.1+dfsg-1 MIGRATED to testing (Debian testing watch)
[2025-04-18] Accepted adminer 5.2.1+dfsg-1 (source) into unstable (Alexandre Rossi) (signed by: xiao sheng wen)
[2025-04-05] adminer 5.1.0-1 MIGRATED to testing (Debian testing watch)
[2025-04-02] Accepted adminer 5.1.0-1 (source) into unstable (Alexandre Rossi) (signed by: Boyuan Yang)
[2024-08-02] adminer 4.8.1-4 MIGRATED to testing (Debian testing watch)
[2024-07-30] Accepted adminer 4.8.1-4 (source) into unstable (Alexandre Rossi) (signed by: Boyuan Yang)
[2024-07-29] adminer REMOVED from testing (Debian testing watch)
[2024-02-06] adminer 4.8.1-2 MIGRATED to testing (Debian testing watch)
[2024-02-01] Accepted adminer 4.8.1-2 (source) into unstable (Alexandre Rossi) (signed by: Chris Lamb)
[2022-08-13] Accepted adminer 4.7.1-1+deb10u1 (source) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Debian FTP Masters) (signed by: Emilio Pozuelo Monfort)
[2022-05-13] Accepted adminer 4.2.5-3+deb9u3 (source all) into oldoldstable (Chris Lamb)
[2021-08-20] adminer 4.8.1-1 MIGRATED to testing (Debian testing watch)
[2021-08-17] Accepted adminer 4.8.1-1 (source) into unstable (Alexandre Rossi) (signed by: Chris Lamb)
[2021-05-31] adminer 4.7.9-2 MIGRATED to testing (Debian testing watch)
[2021-05-26] Accepted adminer 4.7.9-2 (source) into unstable (Alexandre Rossi) (signed by: Chris Lamb)
[2021-03-05] Accepted adminer 4.7.9-1~bpo10+1 (source all) into buster-backports (Alexandre Rossi) (signed by: Chris Lamb)
[2021-03-02] Accepted adminer 4.2.5-3+deb9u2 (source all) into oldstable (Utkarsh Gupta)
[2021-02-10] adminer 4.7.9-1 MIGRATED to testing (Debian testing watch)
[2021-02-08] Accepted adminer 4.7.9-1 (source) into unstable (Alexandre Rossi) (signed by: Chris Lamb)
[2020-12-10] adminer 4.7.8-2 MIGRATED to testing (Debian testing watch)
[2020-12-08] Accepted adminer 4.7.8-2 (source) into unstable (Alexandre Rossi) (signed by: Chris Lamb)
[2020-05-18] Accepted adminer 4.7.7-1~bpo10+1 (source all) into buster-backports (Alexandre Rossi) (signed by: Chris Lamb)
[2020-05-14] adminer 4.7.7-1 MIGRATED to testing (Debian testing watch)

1
2

bugs [bug history graph]

all: 0

links

homepage
lintian
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 5.4.1+dfsg-1

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers

Report problems to the tracker.debian.org pseudo-package in the Debian BTS.

Documentation — Bugs — Git Repository — Contributing