1
Candidate: CVE-2016-9850
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9850
5
https://www.phpmyadmin.net/security/PMASA-2016-61/
7
An issue was discovered in phpMyAdmin. Username matching for the allow/deny
8
rules may result in wrong matches and detection of the username in the rule
9
due to non-constant execution time. All 4.6.x versions (prior to 4.6.5),
10
4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18)
16
Discovered-by: Emanuel Bronshtein
20
upstream_phpmyadmin: released (4:4.6.5.1-1)
21
precise_phpmyadmin: ignored (reached end-of-life)
22
precise/esm_phpmyadmin: DNE (precise was needs-triage)
23
trusty_phpmyadmin: needed
24
vivid/stable-phone-overlay_phpmyadmin: DNE
25
vivid/ubuntu-core_phpmyadmin: DNE
26
xenial_phpmyadmin: needed
27
yakkety_phpmyadmin: ignored (reached end-of-life)
28
zesty_phpmyadmin: not-affected (4:4.6.5.1-1)
29
artful_phpmyadmin: not-affected (4:4.6.5.1-1)
30
bionic_phpmyadmin: not-affected (4:4.6.5.1-1)
31
devel_phpmyadmin: not-affected (4:4.6.5.1-1)