Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 454
Alerts This Week
Warning Icon 1 454

Fedora 24: 2016-b1b1ef703c Critical: PHP-ADODB SQL Injection

fedora
Calendar Grey September 30, 2016
Dist Fedora Esm H88
Essential maintenance release for php-adodb targeting SQL vulnerability to strengthen Fedora 24 protection.
Security fix for CVE-2016-7405

Summary

ADOdb is an object oriented library written in PHP that abstracts database

operations for portability. It is modelled on Microsoft's ADO, but has many

improvements that make it unique (eg. pivot tables, Active Record support,

generating HTML for paging recordsets with next and previous links, cached

recordsets, HTML menu generation, etc).

ADOdb hides the differences between the different databases so you can easily

switch DBs without changing code.

Update Information:

Security fix for CVE-2016-7405

Change Log

References


[ 1 ] Bug #1376365 - CVE-2016-7405 php-adodb: Incorrect quoting may allow SQL injection https://bugzilla.redhat.com/show_bug.cgi?id=1376365

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update php-adodb' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: php-adodb
Product: Fedora 24
Version: 5.20.6
Release: 2.fc24
Summary: Database abstraction layer for PHP

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.