From 64044d8addca22d7a0c91d37e3f5e18d6e4740d8cb3e8c0de934e62a846e26ec Mon Sep 17 00:00:00 2001 From: Christian Wittmer Date: Wed, 12 Jun 2013 22:30:44 +0000 Subject: [PATCH] Accepting request 178823 from home:computersalat:devel:php fix changelog, add missing 'fix for bnc#xxxxxx' OBS-URL: https://build.opensuse.org/request/show/178823 OBS-URL: https://build.opensuse.org/package/show/server:php:applications/phpMyAdmin?expand=0&rev=61 --- phpMyAdmin.changes | 115 ++++++++++++++++++++++++++------------------- 1 file changed, 67 insertions(+), 48 deletions(-) diff --git a/phpMyAdmin.changes b/phpMyAdmin.changes index fcfeb8f..dca4cfb 100644 --- a/phpMyAdmin.changes +++ b/phpMyAdmin.changes @@ -1,65 +1,73 @@ +------------------------------------------------------------------- +Wed Jun 12 21:59:40 UTC 2013 - chris@computersalat.de + +- fix changelog + * add missing 'fix for bnc#xxxxxx + ------------------------------------------------------------------- Thu Jun 6 16:27:24 UTC 2013 - ecsos@schirra.net - update to 4.0.3 (2013-06-05) - - sf#3941 Recent tables list always empty - - sf#3933 Do not translate "Open Document" in export settings - - sf#3927 List of tables is missing after expanding in the navigation frame - - sf#3942 Warnings about reserved word for many non reserved words - - sf#3912 Exporting row selection, resulted by ORDER BY query - - sf#3957 Cookies must be enabled past this point - - sf#3956 "Browse foreign values" search filter / page selector not working - - sf#3579 NOW() function incorrectly selected (partial regression) - - [security] Javascript execution vulnerability in Create view, - reported by Maxim Rupp (see PMASA-2013-6) + - sf#3941 Recent tables list always empty + - sf#3933 Do not translate "Open Document" in export settings + - sf#3927 List of tables is missing after expanding in the navigation frame + - sf#3942 Warnings about reserved word for many non reserved words + - sf#3912 Exporting row selection, resulted by ORDER BY query + - sf#3957 Cookies must be enabled past this point + - sf#3956 "Browse foreign values" search filter / page selector not working + - sf#3579 NOW() function incorrectly selected (partial regression) + - [security] Javascript execution vulnerability in Create view, + reported by Maxim Rupp (see PMASA-2013-6) +- fix for bnc#824306 + * PMASA-2013-6 (CVE-2013-3242) ------------------------------------------------------------------- Sat May 25 17:33:09 UTC 2013 - ecsos@schirra.net - update to 4.0.2 (2013-05-24) - - sf#3902 Cannot browse when table name contains keyword "call" - + center loading indicator for navigation refresh, related to bug #3920 - - sf#3925 Table sorting in navigation panel is case-sensitive - - sf#3915 Import of CSV file (Replace table data with file) with duplicate values - - sf#3907 undefined variables, function parameter problems - - sf#3898 Structure not refreshed after column drop - - sf#3926 View is not updatable - - sf#3919 PropertiesIconic not honored - - sf#3930 Databases to choose for specific privileges show up escaped - - sf#3910 Export database with empty table as a php array, does not produce valid PHP - - sf#3936 Query profiler chart not loading from SQL Query page - - sf#3946 Missing CSV import option "Do not abort on INSERT error" - - sf#3943 Missing Operations>Table options>AUTO_INCREMENT - - bug Missing CREATE DATABASE statement when exporting at database level - - sf#3924 Show warning when CSV file does not contain data for all columns - - sf#3947 Missing Sql Query after modify structure - - sf#3948 Server export problems - - sf#3917 CountTables directive is deprecated + - sf#3902 Cannot browse when table name contains keyword "call" + + center loading indicator for navigation refresh, related to bug #3920 + - sf#3925 Table sorting in navigation panel is case-sensitive + - sf#3915 Import of CSV file (Replace table data with file) with duplicate values + - sf#3907 undefined variables, function parameter problems + - sf#3898 Structure not refreshed after column drop + - sf#3926 View is not updatable + - sf#3919 PropertiesIconic not honored + - sf#3930 Databases to choose for specific privileges show up escaped + - sf#3910 Export database with empty table as a php array, does not produce valid PHP + - sf#3936 Query profiler chart not loading from SQL Query page + - sf#3946 Missing CSV import option "Do not abort on INSERT error" + - sf#3943 Missing Operations>Table options>AUTO_INCREMENT + - bug Missing CREATE DATABASE statement when exporting at database level + - sf#3924 Show warning when CSV file does not contain data for all columns + - sf#3947 Missing Sql Query after modify structure + - sf#3948 Server export problems + - sf#3917 CountTables directive is deprecated ------------------------------------------------------------------- Wed May 15 08:00:00 UTC 2013 - ecsos@schirra.net - update to 4.0.1.0 (2013-05-14) - - sf#3879 Import broken for CSV using LOAD DATA - - sf#3889 When login fails and error display is active, login data is displayed - - sf#3890 [import] Web server upload directory import fails - - sf#3891 [import] Server upload folder import file name missing in success message - + rfe #1421 [auth] Add retry button on connection failure with config auth - - sf#3894 [interface] Provide feedback if no columns selected for multi-submit - - sf#3799 [interface] Incorrect select field change on ctrl key navigation in Firefox - - sf#3885 [browse] display_binary_as_hex option causes unexpected behavior - - sf#3899 Git commit links to Github missing - - sf#3900 CSP WARN in Firefox console - - sf#3901 Setup script warning for config auth (stored login data) shows link BBcode - - sf#3895 [browse] Fixed getting BLOB data - - sf#3905 [export] Custom Exporting exports all databases - - sf#3909 [import] Import of CSV FIle to selected table doesn't work - - sf#3904 Browsing an empty table should not display its Structure - - sf#3908 Calendar widget improperly redirects to home - - sf#3918 Greyed out tabs when there are no rows fixed - - sf#3916 [interface] Missing scrollbar (original theme) - + [vendor] add tcpdf path to vendor_config.php - - bug fix compat with tcpdf >= 6.0 (tested with 6.0.012) + - sf#3879 Import broken for CSV using LOAD DATA + - sf#3889 When login fails and error display is active, login data is displayed + - sf#3890 [import] Web server upload directory import fails + - sf#3891 [import] Server upload folder import file name missing in success message + + rfe #1421 [auth] Add retry button on connection failure with config auth + - sf#3894 [interface] Provide feedback if no columns selected for multi-submit + - sf#3799 [interface] Incorrect select field change on ctrl key navigation in Firefox + - sf#3885 [browse] display_binary_as_hex option causes unexpected behavior + - sf#3899 Git commit links to Github missing + - sf#3900 CSP WARN in Firefox console + - sf#3901 Setup script warning for config auth (stored login data) shows link BBcode + - sf#3895 [browse] Fixed getting BLOB data + - sf#3905 [export] Custom Exporting exports all databases + - sf#3909 [import] Import of CSV FIle to selected table doesn't work + - sf#3904 Browsing an empty table should not display its Structure + - sf#3908 Calendar widget improperly redirects to home + - sf#3918 Greyed out tabs when there are no rows fixed + - sf#3916 [interface] Missing scrollbar (original theme) + + [vendor] add tcpdf path to vendor_config.php + - bug fix compat with tcpdf >= 6.0 (tested with 6.0.012) ------------------------------------------------------------------- Fri May 3 17:32:42 UTC 2013 - ecsos@schirra.net @@ -175,6 +183,10 @@ Fri May 3 17:32:42 UTC 2013 - ecsos@schirra.net - [security] Global variables overwrite in export.php, reported by Janek Vind (see PMASA-2013-5) - sf#3892 [export] SQL Export files are empty +- fix for bnc#824304 + * PMASA-2013-4 (CVE-2013-3240) +- fix for bnc#824305 + * PMASA-2013-5 (CVE-2013-3241) ------------------------------------------------------------------- Wed Apr 24 22:41:50 UTC 2013 - ecsos@schirra.net @@ -184,6 +196,10 @@ Wed Apr 24 22:41:50 UTC 2013 - ecsos@schirra.net (see PMASA-2013-2) * [security] Locally Saved SQL Dump File Multiple File Extension Remote Code Execution, reported by Janek Vind (see PMASA-2013-3) +- fix for bnc#824301 + * PMASA-2013-2 (CVE-2013-3238) +- fix for bnc#824302 + * PMASA-2013-3 (CVE-2013-3239) ------------------------------------------------------------------- Mon Apr 8 18:33:29 UTC 2013 - ecsos@schirra.net @@ -194,7 +210,10 @@ Mon Apr 8 18:33:29 UTC 2013 - ecsos@schirra.net * sf#3705 Attempt to open trigger for edit gives NULL * Use HTML5 DOCTYPE * [security] Self-XSS on GIS visualisation page, reported by Janek Vind + see PMASA-2013-1 * sf#3800 Incorrect keyhandler behaviour #2 +- fix for bnc#814678 + * PMASA-2013-1 (CVE-2013-1937) ------------------------------------------------------------------- Fri Mar 15 19:51:32 UTC 2013 - chris@computersalat.de