Accepting request 75323 from home:computersalat:devel:php

update to 3.4.3.1

OBS-URL: https://build.opensuse.org/request/show/75323
OBS-URL: https://build.opensuse.org/package/show/server:php:applications/phpMyAdmin?expand=0&rev=11
This commit is contained in:
Christian Wittmer 2011-07-04 14:05:23 +00:00 committed by Git OBS Bridge
parent e6f306fa5d
commit f60a54ceb1
4 changed files with 42 additions and 7 deletions

View File

@ -1,3 +0,0 @@
version https://git-lfs.github.com/spec/v1
oid sha256:e63aa5479bfb190d295b02431b3a579faf62dd66bd24c8a79e43aa5c477f1fe0
size 4639847

View File

@ -0,0 +1,3 @@
version https://git-lfs.github.com/spec/v1
oid sha256:138175f19802c5c1c70ceee14b89a86a19ee04917fd7bbd50b17bb200838eb69
size 4924615

View File

@ -1,3 +1,30 @@
-------------------------------------------------------------------
Mon Jul 4 13:27:10 UTC 2011 - chris@computersalat.de
- update to 3.4.3.1
- [security] Fixed possible session manipulation in swekey
authentication, see PMASA-2011-5
- [security] Fixed possible code injection incase session variables
are compromised, see PMASA-2011-6
- [security] Fixed regexp quoting issue in Synchronize code, see PMASA-2011-7
- [security] Fixed filtering of a file path, which allowed for
directory traversal, see PMASA-2011-8
- 3.4.3.0 (2011-06-27)
- bug #3311170 [sync] Missing helper icons in Synchronize
- patch #3304473 [setup] Redefine a lable that was wrong
- bug #3304544 [parser] master is not a reserved word
- bug #3307616 [edit] Inline edit updates multiple duplicate rows
- patch #3311539 [edit] Inline edit does not escape backslashes
- bug #3313210 [interface] Columns class sometimes changed for nothing
- patch #3313326 [interface] Some tooltips do not disappear
- bug #3315720 [search] Fix search in non unicode tables
- bug #3315741 [display] Inline query edit broken
- patch #3317206 [privileges] Generate password option missing on new accounts
- bug #3317293 [edit] Inline edit places HTML line breaks in edit area
- bug #3319466 [interface] Inline query edit does not escape special characters
- minor XSS (require a valid token)
- add restart_on_update apache to post
------------------------------------------------------------------- -------------------------------------------------------------------
Wed Jun 22 09:01:52 UTC 2011 - chris@computersalat.de Wed Jun 22 09:01:52 UTC 2011 - chris@computersalat.de

View File

@ -34,8 +34,8 @@ Name: phpMyAdmin
%endif %endif
Summary: Administration of MySQL over the web Summary: Administration of MySQL over the web
Version: 3.4.2 Version: 3.4.3.1
Release: 3 Release: 1
License: GPLv2+ License: GPLv2+
Group: Productivity/Networking/Web/Frontends Group: Productivity/Networking/Web/Frontends
Url: http://www.phpMyAdmin.net Url: http://www.phpMyAdmin.net
@ -50,8 +50,15 @@ BuildRequires: apache2-devel
BuildRequires: fdupes BuildRequires: fdupes
%endif %endif
# #
Requires: mod_php_any php-bz2 php-gd php-iconv Requires: mod_php_any
Requires: php-mbstring php-mcrypt php-mysql php-session php-zlib Requires: php-bz2
Requires: php-gd
Requires: php-iconv
Requires: php-mbstring
Requires: php-mcrypt
Requires: php-mysql
Requires: php-session
Requires: php-zlib
Recommends: php5-zip Recommends: php5-zip
%description %description
@ -136,6 +143,7 @@ find $RPM_BUILD_ROOT%{ap_docroot}/%{name} -maxdepth 1 -type f | grep -v 'config.
# set PmaAbsoluteUri ### generate blowfish secret # set PmaAbsoluteUri ### generate blowfish secret
%{__sed} -i -e "s,@FQDN@,$(cat /etc/HOSTNAME)," \ %{__sed} -i -e "s,@FQDN@,$(cat /etc/HOSTNAME)," \
-e "s/\\\$cfg\['blowfish_secret'\] = ''/\$cfg['blowfish_secret'] = '`pwgen -s -1 46`'/" %{pma_config} -e "s/\\\$cfg\['blowfish_secret'\] = ''/\$cfg['blowfish_secret'] = '`pwgen -s -1 46`'/" %{pma_config}
%restart_on_update apache2
%postun %postun
%restart_on_update apache2 %restart_on_update apache2