- phpMyAdmin 4.9.0.1:
* CVE-2019-11768: PMASA-2019-3 is an SQL injection flaw in the
Designer feature
* CVE-2019-12616: PMASA-2019-4 is a CSRF attack that's possible
through the 'cookie' login form
* Several issues with SYSTEM VERSIONING tables
* Fixed json encode error in export
* Fixed JavaScript events not activating on input
(sql bookmark issue)
* Show Designer combo boxes when adding a constraint
* Fix edit view
* Fixed invalid default value for bit field
* Fix several errors relating to GIS data types
* Fixed javascript error PMA_messages is not defined
* Fixed import XML data with leading zeros
* Fixed php notice, added support for 'DELETE HISTORY' table
privilege (MariaDB >= 10.3.4)
* Fixed MySQL 8.0.0 issues with GIS display
* Fixed "Server charset" in "Database server" tab showing wrong
information
* Fixed can not copy user on Percona Server 5.7
* Updated sql-parser to version 4.3.2, which fixes several
parsing and linting problems
OBS-URL: https://build.opensuse.org/request/show/707877
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/phpMyAdmin?expand=0&rev=157
- phpMyAdmin 4.9.0.1:
* CVE-2019-11768: PMASA-2019-3 is an SQL injection flaw in the
Designer feature
* CVE-2019-12616: PMASA-2019-4 is a CSRF attack that's possible
through the 'cookie' login form
* Several issues with SYSTEM VERSIONING tables
* Fixed json encode error in export
* Fixed JavaScript events not activating on input
(sql bookmark issue)
* Show Designer combo boxes when adding a constraint
* Fix edit view
* Fixed invalid default value for bit field
* Fix several errors relating to GIS data types
* Fixed javascript error PMA_messages is not defined
* Fixed import XML data with leading zeros
* Fixed php notice, added support for 'DELETE HISTORY' table
privilege (MariaDB >= 10.3.4)
* Fixed MySQL 8.0.0 issues with GIS display
* Fixed "Server charset" in "Database server" tab showing wrong
information
* Fixed can not copy user on Percona Server 5.7
* Updated sql-parser to version 4.3.2, which fixes several
parsing and linting problems
OBS-URL: https://build.opensuse.org/request/show/707875
OBS-URL: https://build.opensuse.org/package/show/server:php:applications/phpMyAdmin?expand=0&rev=331
- update to 4.8.3 (2018-08-22)
- gh#14314 Error when naming a database '0'
- gh#14333 Fix NULL as default not shown
- gh#14229 Fixes issue with recent table list
- gh#14045 Fix slow performance on DB structure filtering
- gh#14327 Fix Editing server variable not showing save or cancel
option
- gh#14377 Populate options for view create and edit
- gh#14171 2FA configuration fails if PHP doesn't have GD support
- gh#14390 Can't unhide tables
- gh#14382 "Visualize GIS data" icon missing
- gh#14435 Event scheduler status toggle doesn't work
- gh#14365 View not working on multiple servers
- gh#14207 Partition actions in table structure do not work
- gh#14375 Fixes ERR_BLOCKED_BY_XSS_AUDITOR on export table
- gh#14552 Blank message shown instead of MySQL error when adding
trigger and other locations
- gh#14525 Fix PHP 7.3 warning: "continue" in "switch" is equal
to "break"
- gh#14554 Icon missing when creating a new trigger, routine,
and event
- gh#14422 Table comment not showing since 4.8.1
- gh#14426 Drop table doesn't work when you copy tables to
another database
- gh#14581 Escaped HTML in 'Add a new server' setup
- gh#14548 [security] HTML injection in import warning messages,
see PMASA-2018-5
- fix for boo#1105726
- PMASA-2018-5 (CVE-2018-15605, CWE-661)
https://www.phpmyadmin.net/security/PMASA-2018-5/
OBS-URL: https://build.opensuse.org/request/show/631065
OBS-URL: https://build.opensuse.org/package/show/server:php:applications/phpMyAdmin?expand=0&rev=323
- update to 4.8.1 (2018-05-25)
* gh#12772 Fix case where the central columns attributes don't
get filled in
* gh#14049 Fix case where the query builder doesn't work when
selected column is *
* gh#14029 Revert "Browse" table CSS overflow
* gh#14241 Dropping indexes and foreign keys fail
* gh#14227 Relational linking broken
* gh#14246 Fixed error in configuration storage zero config
* gh#14128 Show 2FA Secret next to QR code
* gh#14212 XML Export from single table throws fatal error
* gh#14239 Line and some other charts ignore result set order of
values chosen for the x-axis
* gh#14260 Fixed configuration for DefaultLang and Lang
* gh#14264 Linking for 'Distinct values' broken
* gh#13968 Fix MariaDB 10.2 current_timestamp()
* gh#14249 Fix for missing go button in view edit
* gh#14125 Fix for issues with spatial fields
* gh#14189 Remember table's sorting broken
* gh#14289 Fix multi-column sorting
* gh#14278 Fix central columns in-line edit bug
* gh#14066 Fix AUTO_INCREMENT error when only exporting table
structure in database-level exports
* gh#13893 Simulating queries produces unexpected results
* gh#14309 Setup script icons missing
OBS-URL: https://build.opensuse.org/request/show/612377
OBS-URL: https://build.opensuse.org/package/show/server:php:applications/phpMyAdmin?expand=0&rev=316
- update to 4.7.6 (2017-11-29)
* gh#13517 Fixed check all interaction with filtering
* gh#13803 Add SJIS-win to default list of allowed charsets
* gh#13436 Improve detection that MySQL server needs SSL connection
* gh#13038 Support JSON datatype on MariaDB 10.2.7 and newer
* gh#13824 Fixed constructing ALTER query with AFTER
* gh#13821 Lock page when changes are done in the SQL editor
* gh#13842 Prefer iconv for encoding conversions
* gh#13737 Fixed changing password on MariaDB cluster
OBS-URL: https://build.opensuse.org/request/show/547490
OBS-URL: https://build.opensuse.org/package/show/server:php:applications/phpMyAdmin?expand=0&rev=301
- update to 4.7.5 (2017-10-23)
* gh#13615 Avoid problems with browsing unknown query types
* gh#13612 Integrate tooltip into datetime pickers
* gh#13628 Fixed javascript error in server monitor
* gh#13444 Fixed server monitor on non Linux and Windows systems
* gh#13633 Reload javscript messages when changing language
* gh#13604 Fixed crash on invalid ordering data
* gh#13639 Fixed error when browsing non SELECT results
* gh#13533 Fixed saving column to display
* gh#13647 Fixed export of tables with VIRTUAL columns
* gh#13669 Fixed selecting multiple rows accidentally selects
the next row too
* gh#13513 Fixed edit index Column alignment issue
* gh#13515 Fixed rendering of add index dialog
* gh#13710 Fixed possible error in server advisor
* gh#13477 Fixed setting input transformations
* gh#13552 Fixed IPv4/IPv6 To Binary input transformation
* gh#13686 Clicking on column name to trigger sort with an active
search leads to logout
* gh#13725 Fixed copying tables with specific PARTITION
definition
* gh#13761 Fixed listing of bookmarks for a database
OBS-URL: https://build.opensuse.org/request/show/536255
OBS-URL: https://build.opensuse.org/package/show/server:php:applications/phpMyAdmin?expand=0&rev=297
- update to 4.7.4
* gh#13415 Remove shadow from the logo
* gh#13507 Fixed per server theme feature
* gh#13523 Missing newline in ALTER exports
* gh#13414 Fixed several compatibility issues with PHP 7.2
* gh#13550 Fixed copy results to clipboard
* gh#13562 Add limitation for user group length
* gh#13561 Fixed edit variable link in advisor
* gh#13579 Optimize table link should not be visible in print
page
* gh#13553 Improved error handling on corrupted tables
* gh#13512 Fixed rendering of add index dialog
* gh#13606 Fixed refreshing server variables
OBS-URL: https://build.opensuse.org/request/show/518796
OBS-URL: https://build.opensuse.org/package/show/server:php:applications/phpMyAdmin?expand=0&rev=293
