{"affected":[{"ecosystem_specific":{"binaries":[{"phpMyAdmin":"4.7.7-14.1"}]},"package":{"ecosystem":"SUSE:Package Hub 12","name":"phpMyAdmin","purl":"pkg:rpm/suse/phpMyAdmin&distro=SUSE%20Package%20Hub%2012"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"4.7.7-14.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for phpMyAdmin to version 4.7.7 fixes a security issue and bugs.\n    \nThe following vulnerability was fixed:\n    \n- By deceiving a user to click on a crafted URL, it was possible to perform harmful database\n  operations (bsc#1074066, PMASA-2017-09)\n\nThis update also contains all upstream improvements and bugfixes in version 4.7.7:\n\n- various display and UI fixes\n- PHP error fixes\n- Improved deteciton of MySQL server needing SSL connections\n- Support JSON datatype on MariaDB 10.2.7 and newer\n- Fix constructing ALTER query with AFTER\n- Fix changing password on MariaDB cluster\n","id":"openSUSE-SU-2017:3448-1","modified":"2017-12-29T16:35:29Z","published":"2017-12-29T16:35:29Z","references":[{"type":"ADVISORY","url":"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/S2TCUFEQYBD4YCQKKUHAYS7Z5HE727Z3/#S2TCUFEQYBD4YCQKKUHAYS7Z5HE727Z3"},{"type":"REPORT","url":"https://bugzilla.suse.com/1074066"}],"related":[],"summary":"Security update for phpMyAdmin","upstream":[]}