As usual there are many fixes and security enhancements (no eval, no inline js).
(In reply to Marc Krämer from comment #0)
> As usual there are many fixes and security enhancements (no eval, no inline
lists.jjorge, luigiwalser, marja11
The security fix is for an issue that was introduced in 4.8.0, so an update for Mageia 6 isn't needed.
true David. I should better put it in backports.
RPM Packages =>
Update phpmyadmin to 22.214.171.124 =>
Backport Request: Update phpmyadmin to 126.96.36.199
Backported phpmyadmin package to the latest release.
This backport has some security enhancements, as php does not need to have eval enabled. As all JS-inline scripts have been removed, it is save to turn on Content Security Policy for phpmyadmin, which adds additional protection against XSS vulnerabilities.
Updated packages in core/backports_testing:
After some testing, I have to refuse my own backport request.