Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Fedora 40: FEDORA-2025-101800c1e1 critical: php-adodb SQL injection

fedora
Calendar Grey May 11, 2025
Dist Fedora Esm H88
An upgrade for php-adodb in Fedora 40 resolves critical SQL injection vulnerabilities to improve system security.
5.22.9

Summary

ADOdb is an object oriented library written in PHP that abstracts database

operations for portability. It is modelled on Microsoft's ADO, but has many

improvements that make it unique (eg. pivot tables, Active Record support,

generating HTML for paging recordsets with next and previous links, cached

recordsets, HTML menu generation, etc).

ADOdb hides the differences between the different databases so you can easily

switch DBs without changing code.

Update Information:

5.22.9

Topics%20covered

Topics Covered

security advisory update critical Fedora SQL injection php-adodb

Change Log

* Fri May 2 2025 Gwyn Ciesla - 5.22.9-1 - 5.22.9 * Sat Jan 18 2025 Fedora Release Engineering - 5.22.7-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild * Fri Jul 19 2024 Fedora Release Engineering - 5.22.7-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild

References


[ 1 ] Bug #2363627 - CVE-2025-46337 php-adodb: SQL injection in ADOdb PostgreSQL driver pg_insert_id() method [epel-8] https://bugzilla.redhat.com/show_bug.cgi?id=2363627 [ 2 ] Bug #2363628 - CVE-2025-46337 php-adodb: SQL injection in ADOdb PostgreSQL driver pg_insert_id() method [fedora-40] https://bugzilla.redhat.com/show_bug.cgi?id=2363628 [ 3 ] Bug #2363629 - CVE-2025-46337 php-adodb: SQL injection in ADOdb PostgreSQL driver pg_insert_id() method [fedora-41] https://bugzilla.redhat.com/show_bug.cgi?id=2363629 [ 4 ] Bug #2363630 - CVE-2025-46337 php-adodb: SQL injection in ADOdb PostgreSQL driver pg_insert_id() method [fedora-42] https://bugzilla.redhat.com/show_bug.cgi?id=2363630

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2025-101800c1e1' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: php-adodb
Product: Fedora 40
Version: 5.22.9
Release: 1.fc40
URL: https://adodb.org/dokuwiki/doku.php?id=index
Summary: Database abstraction layer for PHP

Topics%20covered

Topics Covered

security advisory update critical Fedora SQL injection php-adodb

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here