From 6445f51d7367ef750220991765198f64191fdfaa319861dd51a7acb119a55bdf Mon Sep 17 00:00:00 2001
From: Andreas Stieger <andreas.stieger@gmx.de>
Date: Thu, 20 Nov 2014 21:29:43 +0000
Subject: [PATCH] add bug numbers

OBS-URL: https://build.opensuse.org/package/show/server:php:applications/phpMyAdmin?expand=0&rev=154
---
 phpMyAdmin.changes | 38 +++++++++++++++++++++-----------------
 1 file changed, 21 insertions(+), 17 deletions(-)

diff --git a/phpMyAdmin.changes b/phpMyAdmin.changes
index 287f7a9..ea001b8 100644
--- a/phpMyAdmin.changes
+++ b/phpMyAdmin.changes
@@ -2,6 +2,27 @@
 Thu Nov 20 16:18:55 UTC 2014 - ecsos@opensuse.org
 
 - update to 4.2.12 (2014-11-20)
+  This update fixes several vulnerabilities, as well as a number of
+  other bug fixes.
+- Security fixes:
+  * PMASA-2014-16 (CVE-2014-8961, CWE-661 CWE-23) [boo#906488]
+    http://www.phpmyadmin.net/home_page/security/PMASA-2014-16.php
+    - sf#4595 [security] Path traversal can lead to leakage of 
+      line count
+  * PMASA-2014-15 (CVE-2014-8960, CWE-661 CWE-79) [boo#906487]
+    http://www.phpmyadmin.net/home_page/security/PMASA-2014-15.php
+    - sf#4596 [security] XSS through exception stack
+  * PMASA-2014-14 (CVE-2014-8959, CWE-661 CWE-98) [boo#906486]
+    http://www.phpmyadmin.net/home_page/security/PMASA-2014-16.php
+    - sf#4594 [security] Path traversal in file inclusion of 
+      GIS factory
+  * PMASA-2014-13 (CVE-2014-8958, CWE-661 CWE-79) [boo#906485]
+    http://www.phpmyadmin.net/home_page/security/PMASA-2014-16.php
+    - sf#4578 [security] XSS vulnerability in table print view
+    - sf#4579 [security] XSS vulnerability in zoom search page
+    - sf#4598 [security] XSS in multi submit
+    - sf#4597 [security] XSS through pma_fontsize cookie  
+- Other bug fixes:
   - sf#4574 Blank/white page when JavaScript disabled
   - sf#4577 Multi row actions cause full page reloads
   - fix ReferenceError: targeturl is not defined
@@ -16,23 +37,6 @@ Thu Nov 20 16:18:55 UTC 2014 - ecsos@opensuse.org
   - sf#4444 No insert statement produced in SQL export for 
     queries with alias
   - sf#4603 Field disabled when internal relations used
-  * PMASA-2014-16 (CVE-2014-8961, CWE-661 CWE-23)
-    http://www.phpmyadmin.net/home_page/security/PMASA-2014-16.php
-    - sf#4595 [security] Path traversal can lead to leakage of 
-      line count
-  * PMASA-2014-15 (CVE-2014-8960, CWE-661 CWE-79)
-    http://www.phpmyadmin.net/home_page/security/PMASA-2014-15.php
-    - sf#4596 [security] XSS through exception stack
-  * PMASA-2014-14 (CVE-2014-8959, CWE-661 CWE-98)
-    http://www.phpmyadmin.net/home_page/security/PMASA-2014-16.php
-    - sf#4594 [security] Path traversal in file inclusion of 
-      GIS factory
-  * PMASA-2014-13 (CVE-2014-8958, CWE-661 CWE-79)
-    http://www.phpmyadmin.net/home_page/security/PMASA-2014-16.php
-    - sf#4578 [security] XSS vulnerability in table print view
-    - sf#4579 [security] XSS vulnerability in zoom search page
-    - sf#4598 [security] XSS in multi submit
-    - sf#4597 [security] XSS through pma_fontsize cookie  
 
 -------------------------------------------------------------------
 Fri Oct 31 17:44:05 UTC 2014 - ecsos@opensuse.org