CVE-2016-6614

Priority
Description
An issue was discovered in phpMyAdmin involving the %u username replacement
functionality of the SaveDir and UploadDir features. When the username
substitution is configured, a specially-crafted user name can be used to
circumvent restrictions to traverse the file system. All 4.6.x versions
(prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions
(prior to 4.0.10.17) are affected.
Notes
ratliffUpstream notes mitigating factors
Package
Upstream:released (4:4.6.4+dfsg1-1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 ESM (Trusty Tahr):needed
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (4:4.6.4+dfsg1-1)
Ubuntu 20.04 LTS (Focal Fossa):not-affected (4:4.6.4+dfsg1-1)
Ubuntu 20.10 (Groovy Gorilla):not-affected (4:4.6.4+dfsg1-1)
Patches:
Upstream:https://github.com/phpmyadmin/phpmyadmin/commit/2989e49
More Information

Updated: 2020-07-28 18:37:34 UTC (commit 7b6828437fde0509248708fcdb5b0f7587b85bd1)