Candidate: CVE-2016-6633
PublicDate: 2016-12-11 02:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6633
 https://www.phpmyadmin.net/security/PMASA-2016-56/
Description:
 An issue was discovered in phpMyAdmin. phpMyAdmin can be used to trigger a
 remote code execution attack against certain PHP installations that are
 running with the dbase extension. All 4.6.x versions (prior to 4.6.4),
 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17)
 are affected.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H [8.1 HIGH]

Patches_phpmyadmin:
upstream_phpmyadmin: released (4.5+dfsg-1)
precise_phpmyadmin: ignored (reached end-of-life)
precise/esm_phpmyadmin: DNE (precise was needs-triage)
trusty_phpmyadmin: ignored (out of standard support)
trusty/esm_phpmyadmin: needs-triage
vivid/stable-phone-overlay_phpmyadmin: DNE
vivid/ubuntu-core_phpmyadmin: DNE
xenial_phpmyadmin: ignored (end of standard support, was needs-triage)
yakkety_phpmyadmin: ignored (reached end-of-life)
zesty_phpmyadmin: ignored (reached end-of-life)
artful_phpmyadmin: ignored (reached end-of-life)
bionic_phpmyadmin: not-affected (4.5+dfsg-1)
cosmic_phpmyadmin: not-affected (4.5+dfsg-1)
disco_phpmyadmin: not-affected (4.5+dfsg-1)
eoan_phpmyadmin: DNE
focal_phpmyadmin: not-affected (4.5+dfsg-1)
groovy_phpmyadmin: not-affected (4.5+dfsg-1)
hirsute_phpmyadmin: not-affected (4.5+dfsg-1)
impish_phpmyadmin: not-affected (4.5+dfsg-1)
jammy_phpmyadmin: not-affected (4.5+dfsg-1)
devel_phpmyadmin: not-affected (4.5+dfsg-1)