Navigation:
Browse pkgsrc
(this page)
databases phpmyadm..
CVSweb ] [ 
Homepage ] [ 
RSS ] [ 
Required by ] [ 
Add to tracker ] 2008-09-21 15:18:54 by Tyler R. Retzlaff | Files touched by this commit (2) |  |
Log message:
pullup ticket #2530 - requested by tron
phpmyadmin: update package for security fixes
revisions pulled up:
pkgsrc/databases/phpmyadmin/Makefile 1.75
pkgsrc/databases/phpmyadmin/distinfo 1.38
Module Name: pkgsrc
Committed By: tron
Date: Thu Sep 18 14:33:35 UTC 2008
Modified Files:
pkgsrc/databases/phpmyadmin: Makefile distinfo
Log message:
Update "phpmyadmin" package to version 2.11.9.1. Changes since 2.11.8.1:
- bug #2031221 [auth] Links to version number on login screen
- bug #2032707 [core] PMA does not start if ini_set() is disabled
- bug #2004915 [bookmarks] Saved queries greater than 1000 chars
not displayed
- bug #2037381 [export] Export type "replace" does not work
- bug #2037375 [export] DROP PROCEDURE needs IF EXISTS
- bug #2045512 [export] Numbers in Excel export
+ [lang] Norwegian UTF-8 original file remerged
- bug #2074250 [parser] Undefined variable seen_from
- [security] Code execution vulnerability
This update fixes the security vulnerability reported in PMASA-2008-7.
|
| 2008-07-30 12:03:25 by Tyler R. Retzlaff | Files touched by this commit (2) | |
Log message:
pullup ticket #2467 - requested by tron
phpmyadmin: update for security fixes
revisions pulled up:
pkgsrc/databases/phpmyadmin/Makefile 1.74
pkgsrc/databases/phpmyadmin/distinfo 1.37
Module Name: pkgsrc
Committed By: tron
Date: Tue Jul 29 18:59:51 UTC 2008
Modified Files:
pkgsrc/databases/phpmyadmin: Makefile distinfo
Log message:
Update "phpmyadmin" package to version 2.11.8.1. Changes since 2.11.7.1:
- patch #1987593 [interface] Table list pagination in navi
- bug #1989081 [profiling] Profiling causes query to be executed again
(really causes a problem in case of INSERT/UPDATE)
- bug #1990342 [import] SQL file import very slow on Windows
- bug [XHTML] problem with tabindex and radio fields
- bug #1971221 [interface] tabindex not set correctly
- bug [views] VIEW name created via the GUI was not protected
with backquotes
- bug #1989813 [interface] Deleting multiple views (space in name)
- bug #1992628 [parser] SQL parser removes essential space
- bug #1989281 [export] CSV for MS Excel incorrect escaping of
double quotes
- bug #1959855 [interface] Font size option problem when no
config file
- bug #1982489 [relation] Relationship view should check for changes
- bug [history] Do not save too big queries in history
- [security] Do not show version info on login screen
- bug #2018595 [import] Potential data loss on import resubmit
- patch #2020630 [export] Safari and timedate
- bug #2022182 [import, export] Import/Export fails because of
Mac files
- [security] protection against cross-frame scripting and
new directive AllowThirdPartyFraming
- [security] possible XSS during setup
- [interface] revert language changing problem introduced
with 2.11.7.1
- small fix for notice about "lang"
This update fixes the security vulnerability reported in PMASA-2008-6.
|
| 2008-07-18 12:05:00 by Tyler R. Retzlaff | Files touched by this commit (2) | |
Log message:
pullup ticket #2451 requested by tron
phpmyadmin: package update for bug and security fixes
revisions pulled up:
pkgsrc/databases/phpmyadmin/Makefile 1.73
pkgsrc/databases/phpmyadmin/distinfo 1.36
Module Name: pkgsrc
Committed By: tron
Date: Thu Jul 17 15:55:16 UTC 2008
Modified Files:
pkgsrc/databases/phpmyadmin: Makefile distinfo
Log message:
Updatep "phpmyadmin" package to version 2.11.7.1. Changes since 2.11.7:
- bug #1908719 [interface] New field cannot be auto-increment and
primary key
- [dbi] Incorrect interpretation for some mysqli field flags
- bug #1910621 [display] part 1: do not display a TEXT utf8_bin
as BLOB (fixed for mysqli extension only)
- [interface] sanitize the after_field parameter,
thanks to Norman Hippert
- [structure] do not remove the BINARY attribute in drop-down
- bug #1955386 [session] Overriding session.hash_bits_per_character
- [interface] sanitize the table comments in table print view,
thanks to Norman Hippert
- bug #1939031 Auto_Increment selected for TimeStamp by Default
- patch #1957998 [display] No tilde for InnoDB row counter when
we know it for sure, thanks to Vladyslav Bakayev - dandy76
- bug #1955572 [display] alt text causes duplicated strings
- bug #1762029 [interface] Cannot upload BLOB into existing row
- bug #1981043 [export] HTML in exports getting corrupted,
thanks to Jason Judge - jasonjudge
- bug #1936761 [interface] BINARY not treated as BLOB:
update/delete issues
- protection against XSS when register_globals is on and .htaccess
has no effect, thanks to Tim Starling
- bug #1996943 [export] Firefox 3 and .sql.gz (corrupted);
detect Gecko 1.9, thanks to Juergen Wind
- (2.11.7.1) [security] XSRF/CSRF by manipulating the db,
convcharset and collation_connection parameters,
thanks to YGN Ethical Hacker Group
This update fixes the security vulnerability reported in PMASA-2008-5.
|
New packages: