Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 454
Alerts This Week
Warning Icon 1 454

Fedora 23: Critical SQL Injection Advisory for php-adodb CVE-2016-7405

fedora
Calendar Grey September 29, 2016
Dist Fedora Esm H88
A recent security patch for the php-adodb library fixes vulnerabilities related to SQL injection threats. Understand the implications of this update and why it is crucial for developers.
Security fix for CVE-2016-7405

Summary

ADOdb is an object oriented library written in PHP that abstracts database

operations for portability. It is modelled on Microsoft's ADO, but has many

improvements that make it unique (eg. pivot tables, Active Record support,

generating HTML for paging recordsets with next and previous links, cached

recordsets, HTML menu generation, etc).

ADOdb hides the differences between the different databases so you can easily

switch DBs without changing code.

Update Information:

Security fix for CVE-2016-7405

Change Log

References


[ 1 ] Bug #1376365 - CVE-2016-7405 php-adodb: Incorrect quoting may allow SQL injection https://bugzilla.redhat.com/show_bug.cgi?id=1376365

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update php-adodb' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: php-adodb
Product: Fedora 23
Version: 5.20.6
Release: 2.fc23
Summary: Database abstraction layer for PHP

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.