head 1.118; access; symbols pkgsrc-2023Q4:1.118.0.14 pkgsrc-2023Q4-base:1.118 pkgsrc-2023Q3:1.118.0.12 pkgsrc-2023Q3-base:1.118 pkgsrc-2023Q2:1.118.0.10 pkgsrc-2023Q2-base:1.118 pkgsrc-2023Q1:1.118.0.8 pkgsrc-2023Q1-base:1.118 pkgsrc-2022Q4:1.118.0.6 pkgsrc-2022Q4-base:1.118 pkgsrc-2022Q3:1.118.0.4 pkgsrc-2022Q3-base:1.118 pkgsrc-2022Q2:1.118.0.2 pkgsrc-2022Q2-base:1.118 pkgsrc-2022Q1:1.117.0.2 pkgsrc-2022Q1-base:1.117 pkgsrc-2021Q4:1.116.0.2 pkgsrc-2021Q4-base:1.116 pkgsrc-2021Q3:1.114.0.8 pkgsrc-2021Q3-base:1.114 pkgsrc-2021Q2:1.114.0.6 pkgsrc-2021Q2-base:1.114 pkgsrc-2021Q1:1.114.0.4 pkgsrc-2021Q1-base:1.114 pkgsrc-2020Q4:1.114.0.2 pkgsrc-2020Q4-base:1.114 pkgsrc-2020Q3:1.113.0.4 pkgsrc-2020Q3-base:1.113 pkgsrc-2020Q2:1.113.0.2 pkgsrc-2020Q2-base:1.113 pkgsrc-2020Q1:1.112.0.2 pkgsrc-2020Q1-base:1.112 pkgsrc-2019Q4:1.111.0.4 pkgsrc-2019Q4-base:1.111 pkgsrc-2019Q3:1.110.0.2 pkgsrc-2019Q3-base:1.110 pkgsrc-2019Q2:1.109.0.2 pkgsrc-2019Q2-base:1.109 pkgsrc-2019Q1:1.108.0.4 pkgsrc-2019Q1-base:1.108 pkgsrc-2018Q4:1.108.0.2 pkgsrc-2018Q4-base:1.108 pkgsrc-2018Q3:1.106.0.16 pkgsrc-2018Q3-base:1.106 pkgsrc-2018Q2:1.106.0.14 pkgsrc-2018Q2-base:1.106 pkgsrc-2018Q1:1.106.0.12 pkgsrc-2018Q1-base:1.106 pkgsrc-2017Q4:1.106.0.10 pkgsrc-2017Q4-base:1.106 pkgsrc-2017Q3:1.106.0.8 pkgsrc-2017Q3-base:1.106 pkgsrc-2017Q2:1.106.0.4 pkgsrc-2017Q2-base:1.106 pkgsrc-2017Q1:1.106.0.2 pkgsrc-2017Q1-base:1.106 pkgsrc-2016Q4:1.105.0.4 pkgsrc-2016Q4-base:1.105 pkgsrc-2016Q3:1.105.0.2 pkgsrc-2016Q3-base:1.105 pkgsrc-2016Q2:1.104.0.2 pkgsrc-2016Q2-base:1.104 pkgsrc-2016Q1:1.103.0.4 pkgsrc-2016Q1-base:1.103 pkgsrc-2015Q4:1.103.0.2 pkgsrc-2015Q4-base:1.103 pkgsrc-2015Q3:1.102.0.6 pkgsrc-2015Q3-base:1.102 pkgsrc-2015Q2:1.102.0.4 pkgsrc-2015Q2-base:1.102 pkgsrc-2015Q1:1.102.0.2 pkgsrc-2015Q1-base:1.102 pkgsrc-2014Q4:1.99.0.2 pkgsrc-2014Q4-base:1.99 pkgsrc-2014Q3:1.91.0.2 pkgsrc-2014Q3-base:1.91 pkgsrc-2014Q2:1.86.0.2 pkgsrc-2014Q2-base:1.86 pkgsrc-2014Q1:1.81.0.2 pkgsrc-2014Q1-base:1.81 pkgsrc-2013Q4:1.79.0.2 pkgsrc-2013Q4-base:1.79 pkgsrc-2013Q3:1.76.0.2 pkgsrc-2013Q3-base:1.76 pkgsrc-2013Q2:1.73.0.2 pkgsrc-2013Q2-base:1.73 pkgsrc-2013Q1:1.71.0.2 pkgsrc-2013Q1-base:1.71 pkgsrc-2012Q4:1.69.0.2 pkgsrc-2012Q4-base:1.69 pkgsrc-2012Q3:1.66.0.2 pkgsrc-2012Q3-base:1.66 pkgsrc-2012Q2:1.61.0.2 pkgsrc-2012Q2-base:1.61 pkgsrc-2012Q1:1.59.0.2 pkgsrc-2012Q1-base:1.59 pkgsrc-2011Q4:1.57.0.2 pkgsrc-2011Q4-base:1.57 pkgsrc-2011Q3:1.52.0.2 pkgsrc-2011Q3-base:1.52 pkgsrc-2011Q2:1.49.0.4 pkgsrc-2011Q2-base:1.49 pkgsrc-2011Q1:1.49.0.2 pkgsrc-2011Q1-base:1.49 pkgsrc-2010Q4:1.46.0.2 pkgsrc-2010Q4-base:1.46 pkgsrc-2010Q3:1.45.0.2 pkgsrc-2010Q3-base:1.45 pkgsrc-2010Q2:1.43.0.4 pkgsrc-2010Q2-base:1.43 pkgsrc-2010Q1:1.43.0.2 pkgsrc-2010Q1-base:1.43 pkgsrc-2009Q4:1.42.0.2 pkgsrc-2009Q4-base:1.42 pkgsrc-2009Q3:1.41.0.4 pkgsrc-2009Q3-base:1.41 pkgsrc-2009Q2:1.41.0.2 pkgsrc-2009Q2-base:1.41 pkgsrc-2009Q1:1.40.0.4 pkgsrc-2009Q1-base:1.40 pkgsrc-2008Q4:1.40.0.2 pkgsrc-2008Q4-base:1.40 pkgsrc-2008Q3:1.38.0.2 pkgsrc-2008Q3-base:1.38 cube-native-xorg:1.37.0.2 cube-native-xorg-base:1.37 pkgsrc-2008Q2:1.35.0.4 pkgsrc-2008Q2-base:1.35 cwrapper:1.35.0.2 pkgsrc-2008Q1:1.32.0.2 pkgsrc-2008Q1-base:1.32 pkgsrc-2007Q4:1.30.0.2 pkgsrc-2007Q4-base:1.30 pkgsrc-2007Q3:1.29.0.2 pkgsrc-2007Q3-base:1.29 pkgsrc-2007Q2:1.28.0.4 pkgsrc-2007Q2-base:1.28 pkgsrc-2007Q1:1.28.0.2 pkgsrc-2007Q1-base:1.28 pkgsrc-2006Q4:1.26.0.2 pkgsrc-2006Q4-base:1.26 pkgsrc-2006Q3:1.23.0.2 pkgsrc-2006Q3-base:1.23 pkgsrc-2006Q2:1.21.0.2 pkgsrc-2006Q2-base:1.21 pkgsrc-2006Q1:1.19.0.2 pkgsrc-2006Q1-base:1.19 pkgsrc-2005Q4:1.17.0.2 pkgsrc-2005Q4-base:1.17 pkgsrc-2005Q3:1.13.0.2 pkgsrc-2005Q3-base:1.13 pkgsrc-2005Q2:1.12.0.2 pkgsrc-2005Q2-base:1.12 pkgsrc-2005Q1:1.11.0.2 pkgsrc-2005Q1-base:1.11 pkgsrc-2004Q4:1.8.0.2 pkgsrc-2004Q4-base:1.8 pkgsrc-2004Q3:1.6.0.2 pkgsrc-2004Q3-base:1.6 pkgsrc-2004Q2:1.5.0.6 pkgsrc-2004Q2-base:1.5 pkgsrc-2004Q1:1.5.0.4 pkgsrc-2004Q1-base:1.5 pkgsrc-2003Q4:1.5.0.2 pkgsrc-2003Q4-base:1.5 netbsd-1-6-1:1.4.0.2 netbsd-1-6-1-base:1.4 netbsd-1-6:1.2.0.8 netbsd-1-6-RELEASE-base:1.2 pkgviews:1.2.0.4 pkgviews-base:1.2 buildlink2:1.2.0.2 buildlink2-base:1.2 netbsd-1-5-PATCH003:1.2 pkgsrc-base:1.1.1.1 TNF:1.1.1; locks; strict; comment @# @; 1.118 date 2022.04.22.18.06.05; author tm; state Exp; branches; next 1.117; commitid vCOBgs8FmMXdWdBD; 1.117 date 2022.02.02.13.41.12; author tm; state Exp; branches; next 1.116; commitid iDrWDqr94DsL03rD; 1.116 date 2021.10.26.10.09.45; author nia; state Exp; branches; next 1.115; commitid M6fNIkrZ0rV41jeD; 1.115 date 2021.10.07.13.35.33; author nia; state Exp; branches; next 1.114; commitid USVQpuM9JMvPLSbD; 1.114 date 2020.11.11.11.56.14; author tm; state Exp; branches; next 1.113; commitid fRvYLLqWyuUBPsvC; 1.113 date 2020.04.01.08.36.16; author tm; state Exp; branches; next 1.112; commitid vpDub7W10JHfVE2C; 1.112 date 2020.01.21.09.50.58; author tm; state Exp; branches 1.112.2.1; next 1.111; commitid 9FCy9t8fUXFxCxTB; 1.111 date 2019.12.03.12.42.28; author tm; state Exp; branches 1.111.4.1; next 1.110; commitid 5wrXfndC6p819gNB; 1.110 date 2019.09.21.12.38.25; author tm; state Exp; branches 1.110.2.1; next 1.109; commitid MWn3nlCesCj7tSDB; 1.109 date 2019.06.07.10.09.43; author tm; state Exp; branches; next 1.108; commitid NP7MbdzuPPHl3fqB; 1.108 date 2018.12.13.08.22.42; author tm; state Exp; branches 1.108.4.1; next 1.107; commitid ty5ycf7gXTml7C3B; 1.107 date 2018.12.10.19.27.46; author tm; state Exp; branches; next 1.106; commitid XwttyTnLvLHwTh3B; 1.106 date 2016.12.30.04.44.43; author taca; state Exp; branches; next 1.105; commitid x37UnYnty9upPXzz; 1.105 date 2016.08.23.15.53.14; author taca; state Exp; branches 1.105.4.1; next 1.104; commitid iHSSkCjCbJdlFrjz; 1.104 date 2016.06.28.13.32.35; author taca; state Exp; branches; next 1.103; commitid PVGgjs0dnV9XGecz; 1.103 date 2015.11.03.01.56.25; author agc; state Exp; branches; next 1.102; commitid CWcfajqBx1XKtAHy; 1.102 date 2015.03.18.21.25.28; author tron; state Exp; branches; next 1.101; commitid lIdiAo1F2Rkem8ey; 1.101 date 2015.02.18.21.28.10; author tron; state Exp; branches; next 1.100; commitid 4EHgt5ttGwhXgxay; 1.100 date 2015.01.12.08.35.37; author tron; state Exp; branches; next 1.99; commitid DRMfJbEvBNnFbI5y; 1.99 date 2014.12.14.09.16.23; author tron; state Exp; branches; next 1.98; commitid EFouyvLDmETrlZ1y; 1.98 date 2014.12.10.20.34.34; author tron; state Exp; branches; next 1.97; commitid 51nlxcIr3vA4ex1y; 1.97 date 2014.12.07.14.27.29; author tron; state Exp; branches; next 1.96; commitid NmULtWoWnclRh71y; 1.96 date 2014.12.07.12.37.54; author tron; state Exp; branches; next 1.95; commitid BtQ7rd25rcZwG61y; 1.95 date 2014.11.23.13.17.21; author tron; state Exp; branches; next 1.94; commitid 9Jl5BYCPK1DXljZx; 1.94 date 2014.10.26.07.31.38; author tron; state Exp; branches; next 1.93; commitid rgV37KawNyN9lGVx; 1.93 date 2014.10.19.10.43.12; author tron; state Exp; branches; next 1.92; commitid NnYdXXBhe7NPCNUx; 1.92 date 2014.10.04.15.35.49; author tron; state Exp; branches; next 1.91; commitid 9S9fPmgzzrA6JTSx; 1.91 date 2014.09.23.13.47.31; author tron; state Exp; branches 1.91.2.1; next 1.90; commitid lLbkLlOeEhbSttRx; 1.90 date 2014.08.27.21.25.44; author tron; state Exp; branches; next 1.89; commitid JubRfPaCms3TS2Ox; 1.89 date 2014.08.06.20.23.10; author tron; state Exp; branches; next 1.88; commitid bqCGMRGk4FzgdlLx; 1.88 date 2014.07.26.10.33.02; author tron; state Exp; branches; next 1.87; commitid 2aEGOFcioqAJiSJx; 1.87 date 2014.07.13.07.39.04; author tron; state Exp; branches; next 1.86; commitid LKcG6pfXWzeYKbIx; 1.86 date 2014.06.09.17.30.56; author tron; state Exp; branches 1.86.2.1; next 1.85; commitid QYWhAOrk0MNL7SDx; 1.85 date 2014.06.04.20.40.33; author tron; state Exp; branches; next 1.84; commitid Bj7Kx7LGJKxbkfDx; 1.84 date 2014.04.28.19.56.40; author tron; state Exp; branches; next 1.83; commitid TZR24ibV4nathuyx; 1.83 date 2014.04.13.17.56.12; author tron; state Exp; branches; next 1.82; commitid 6PYJfTBee4J16ywx; 1.82 date 2014.04.09.19.52.15; author tron; state Exp; branches; next 1.81; commitid ZNfkmkpPQgFNR2wx; 1.81 date 2014.03.08.13.07.42; author tron; state Exp; branches; next 1.80; commitid QuBgulIvePdOETrx; 1.80 date 2014.02.22.11.14.57; author tron; state Exp; branches; next 1.79; commitid uC6ZQIkwMye1u5qx; 1.79 date 2013.12.06.18.34.54; author tron; state Exp; branches 1.79.2.1; next 1.78; commitid SlrazbvNyotoq6gx; 1.78 date 2013.11.07.08.29.44; author tron; state Exp; branches; next 1.77; commitid 5fjZA5V6HdLz0kcx; 1.77 date 2013.10.10.17.52.35; author tron; state Exp; branches; next 1.76; commitid dsddSGmnqPst1M8x; 1.76 date 2013.09.28.07.52.43; author tron; state Exp; branches; next 1.75; commitid VBk2Cfvl1JKB5b7x; 1.75 date 2013.09.18.22.20.04; author tron; state Exp; branches; next 1.74; commitid q5M01lDkBHO0cY5x; 1.74 date 2013.07.29.20.01.02; author tron; state Exp; branches; next 1.73; commitid q5g1SnPjZhr15pZw; 1.73 date 2013.04.24.20.06.02; author tron; state Exp; branches 1.73.2.1; next 1.72; 1.72 date 2013.04.09.07.07.05; author tron; state Exp; branches; next 1.71; 1.71 date 2013.02.18.19.01.37; author tron; state Exp; branches 1.71.2.1; next 1.70; 1.70 date 2013.02.13.19.03.56; author tron; state Exp; branches; next 1.69; 1.69 date 2012.12.22.10.31.31; author tron; state Exp; branches; next 1.68; 1.68 date 2012.11.18.13.58.00; author tron; state Exp; branches; next 1.67; 1.67 date 2012.10.17.18.35.06; author tron; state Exp; branches; next 1.66; 1.66 date 2012.08.29.17.38.39; author dholland; state Exp; branches 1.66.2.1; next 1.65; 1.65 date 2012.08.27.17.11.34; author tron; state Exp; branches; next 1.64; 1.64 date 2012.08.17.23.08.21; author tron; state Exp; branches; next 1.63; 1.63 date 2012.08.08.07.17.00; author tron; state Exp; branches; next 1.62; 1.62 date 2012.07.15.13.02.32; author tron; state Exp; branches; next 1.61; 1.61 date 2012.05.06.09.01.10; author tron; state Exp; branches 1.61.2.1; next 1.60; 1.60 date 2012.04.15.11.56.27; author tron; state Exp; branches; next 1.59; 1.59 date 2012.02.18.23.04.44; author tron; state Exp; branches 1.59.2.1; next 1.58; 1.58 date 2012.02.16.20.19.25; author tron; state Exp; branches; next 1.57; 1.57 date 2011.12.23.08.07.44; author tron; state Exp; branches 1.57.2.1; next 1.56; 1.56 date 2011.12.02.23.39.30; author tron; state Exp; branches; next 1.55; 1.55 date 2011.11.13.09.10.25; author tron; state Exp; branches; next 1.54; 1.54 date 2011.10.24.07.14.48; author tron; state Exp; branches; next 1.53; 1.53 date 2011.10.18.14.58.28; author tron; state Exp; branches; next 1.52; 1.52 date 2011.09.14.22.25.27; author tron; state Exp; branches 1.52.2.1; next 1.51; 1.51 date 2011.08.25.20.40.24; author tron; state Exp; branches; next 1.50; 1.50 date 2011.07.29.17.21.20; author tron; state Exp; branches; next 1.49; 1.49 date 2011.02.13.16.11.11; author tron; state Exp; branches; next 1.48; 1.48 date 2011.02.10.16.48.09; author tron; state Exp; branches; next 1.47; 1.47 date 2011.01.27.13.45.55; author tron; state Exp; branches; next 1.46; 1.46 date 2010.11.29.19.13.30; author tron; state Exp; branches 1.46.2.1; next 1.45; 1.45 date 2010.09.07.22.44.07; author tron; state Exp; branches 1.45.2.1; next 1.44; 1.44 date 2010.08.21.07.50.01; author tron; state Exp; branches; next 1.43; 1.43 date 2010.01.26.12.04.37; author tron; state Exp; branches 1.43.4.1; next 1.42; 1.42 date 2009.12.03.12.05.10; author tron; state Exp; branches 1.42.2.1; next 1.41; 1.41 date 2009.04.17.09.40.13; author tron; state Exp; branches 1.41.4.1; next 1.40; 1.40 date 2008.12.15.09.11.49; author tron; state Exp; branches 1.40.4.1; next 1.39; 1.39 date 2008.11.01.19.50.41; author tron; state Exp; branches; next 1.38; 1.38 date 2008.09.18.14.33.35; author tron; state Exp; branches 1.38.2.1; next 1.37; 1.37 date 2008.07.29.18.59.51; author tron; state Exp; branches; next 1.36; 1.36 date 2008.07.17.15.55.16; author tron; state Exp; branches; next 1.35; 1.35 date 2008.06.28.11.11.15; author tron; state Exp; branches 1.35.4.1; next 1.34; 1.34 date 2008.06.08.14.15.28; author tron; state Exp; branches; next 1.33; 1.33 date 2008.04.27.14.59.10; author tron; state Exp; branches; next 1.32; 1.32 date 2008.04.01.16.11.21; author tron; state Exp; branches 1.32.2.1; next 1.31; 1.31 date 2008.03.03.16.47.47; author tron; state Exp; branches; next 1.30; 1.30 date 2007.11.12.14.05.26; author tron; state Exp; branches; next 1.29; 1.29 date 2007.07.03.14.18.14; author tron; state Exp; branches 1.29.2.1; next 1.28; 1.28 date 2007.03.20.14.17.16; author tron; state Exp; branches 1.28.4.1; next 1.27; 1.27 date 2007.01.10.12.50.04; author tron; state Exp; branches; next 1.26; 1.26 date 2006.11.19.15.55.54; author tron; state Exp; branches 1.26.2.1; next 1.25; 1.25 date 2006.11.04.15.50.37; author tron; state Exp; branches; next 1.24; 1.24 date 2006.10.14.11.22.32; author tron; state Exp; branches; next 1.23; 1.23 date 2006.08.29.09.01.30; author tron; state Exp; branches 1.23.2.1; next 1.22; 1.22 date 2006.07.08.10.26.29; author tron; state Exp; branches; next 1.21; 1.21 date 2006.05.13.09.56.36; author tron; state Exp; branches 1.21.2.1; next 1.20; 1.20 date 2006.04.07.12.01.15; author tron; state Exp; branches; next 1.19; 1.19 date 2006.03.26.17.55.28; author tron; state Exp; branches 1.19.2.1; next 1.18; 1.18 date 2006.03.09.11.21.22; author tron; state Exp; branches; next 1.17; 1.17 date 2005.12.09.13.49.22; author tron; state Exp; branches 1.17.2.1; next 1.16; 1.16 date 2005.11.21.13.47.42; author tron; state Exp; branches; next 1.15; 1.15 date 2005.10.30.12.54.35; author tron; state Exp; branches; next 1.14; 1.14 date 2005.10.12.11.51.10; author tron; state Exp; branches; next 1.13; 1.13 date 2005.08.29.17.09.31; author adrianp; state Exp; branches 1.13.2.1; next 1.12; 1.12 date 2005.04.04.12.55.16; author tron; state Exp; branches 1.12.2.1; next 1.11; 1.11 date 2005.02.24.20.52.09; author tron; state Exp; branches 1.11.2.1; next 1.10; 1.10 date 2005.02.24.17.26.03; author adrianp; state Exp; branches; next 1.9; 1.9 date 2005.02.23.16.33.08; author agc; state Exp; branches; next 1.8; 1.8 date 2004.12.14.20.38.47; author adrianp; state Exp; branches 1.8.2.1; next 1.7; 1.7 date 2004.11.06.13.28.32; author jdolecek; state Exp; branches; next 1.6; 1.6 date 2004.08.07.11.31.14; author adrianp; state Exp; branches; next 1.5; 1.5 date 2003.09.01.14.00.31; author tron; state Exp; branches; next 1.4; 1.4 date 2003.01.05.14.25.18; author tron; state Exp; branches; next 1.3; 1.3 date 2003.01.05.08.41.45; author tron; state Exp; branches; next 1.2; 1.2 date 2001.10.03.08.20.37; author tron; state Exp; branches; next 1.1; 1.1 date 2001.07.08.20.53.04; author tron; state Exp; branches 1.1.1.1; next ; 1.112.2.1 date 2020.04.22.09.52.05; author bsiegert; state Exp; branches; next ; commitid Gs0oUaavWBJzFm5C; 1.111.4.1 date 2020.01.27.10.11.21; author bsiegert; state Exp; branches; next ; commitid WVBaC4V6CKKzxjUB; 1.110.2.1 date 2019.12.07.17.15.55; author bsiegert; state Exp; branches; next ; commitid cdRQPd7ShwhRwNNB; 1.108.4.1 date 2019.06.16.17.43.39; author spz; state Exp; branches; next ; commitid OdXcJ8XcNEg7hrrB; 1.105.4.1 date 2017.01.08.19.28.33; author bsiegert; state Exp; branches; next ; commitid LamaFZyHS8rOqcBz; 1.91.2.1 date 2014.10.10.12.43.11; author spz; state Exp; branches; next 1.91.2.2; commitid ESrIiqw1hlrVzETx; 1.91.2.2 date 2014.11.02.20.27.55; author spz; state Exp; branches; next 1.91.2.3; commitid VTBaMks6NOkwpEWx; 1.91.2.3 date 2014.11.23.23.27.36; author spz; state Exp; branches; next 1.91.2.4; commitid aTPpa5py43njJmZx; 1.91.2.4 date 2014.12.14.08.27.45; author spz; state Exp; branches; next ; commitid zPzooknpEexK4Z1y; 1.86.2.1 date 2014.07.15.06.53.41; author spz; state Exp; branches; next 1.86.2.2; commitid 7N9xDKJwSw6prrIx; 1.86.2.2 date 2014.07.27.06.37.19; author spz; state Exp; branches; next 1.86.2.3; commitid 25jxDgdvWaVRXYJx; 1.86.2.3 date 2014.08.27.22.57.04; author spz; state Exp; branches; next 1.86.2.4; commitid 03pEddEnFApco3Ox; 1.86.2.4 date 2014.09.25.10.11.59; author spz; state Exp; branches; next ; commitid vb43npxMtp3WdIRx; 1.79.2.1 date 2014.02.24.16.31.03; author schnoebe; state Exp; branches; next ; commitid OKVnYzVogrq1anqx; 1.73.2.1 date 2013.08.04.18.35.06; author spz; state Exp; branches; next ; commitid GG6es395ozTzpa0x; 1.71.2.1 date 2013.04.20.19.08.30; author spz; state Exp; branches; next 1.71.2.2; 1.71.2.2 date 2013.04.26.22.30.23; author spz; state Exp; branches; next ; 1.66.2.1 date 2012.11.04.09.02.47; author spz; state Exp; branches; next ; 1.61.2.1 date 2012.08.08.18.39.21; author spz; state Exp; branches; next 1.61.2.2; 1.61.2.2 date 2012.08.18.16.33.44; author spz; state Exp; branches; next ; 1.59.2.1 date 2012.04.17.05.52.46; author spz; state Exp; branches; next ; 1.57.2.1 date 2012.02.19.04.19.43; author sbd; state Exp; branches; next ; 1.52.2.1 date 2011.10.18.21.37.59; author sbd; state Exp; branches; next 1.52.2.2; 1.52.2.2 date 2011.11.13.20.41.47; author sbd; state Exp; branches; next 1.52.2.3; 1.52.2.3 date 2011.12.04.07.17.10; author spz; state Exp; branches; next 1.52.2.4; 1.52.2.4 date 2011.12.26.03.06.15; author sbd; state Exp; branches; next ; 1.46.2.1 date 2011.01.27.21.18.32; author sbd; state Exp; branches; next 1.46.2.2; 1.46.2.2 date 2011.02.11.05.16.18; author sbd; state Exp; branches; next 1.46.2.3; 1.46.2.3 date 2011.02.13.17.45.22; author spz; state Exp; branches; next ; 1.45.2.1 date 2010.11.29.20.27.09; author sbd; state Exp; branches; next ; 1.43.4.1 date 2010.08.22.00.59.48; author spz; state Exp; branches; next ; 1.42.2.1 date 2010.01.26.15.10.39; author spz; state Exp; branches; next ; 1.41.4.1 date 2009.12.05.15.10.10; author spz; state Exp; branches; next ; 1.40.4.1 date 2009.04.25.16.06.59; author spz; state Exp; branches; next ; 1.38.2.1 date 2008.11.02.23.47.33; author rtr; state Exp; branches; next 1.38.2.2; 1.38.2.2 date 2008.12.16.12.02.02; author rtr; state Exp; branches; next ; 1.35.4.1 date 2008.07.18.10.05.00; author rtr; state Exp; branches; next 1.35.4.2; 1.35.4.2 date 2008.07.30.10.03.25; author rtr; state Exp; branches; next 1.35.4.3; 1.35.4.3 date 2008.09.21.13.18.54; author rtr; state Exp; branches; next ; 1.32.2.1 date 2008.04.28.10.41.30; author rtr; state Exp; branches; next 1.32.2.2; 1.32.2.2 date 2008.06.29.11.11.44; author rtr; state Exp; branches; next ; 1.29.2.1 date 2007.11.13.11.53.21; author ghen; state Exp; branches; next ; 1.28.4.1 date 2007.07.10.10.33.47; author ghen; state Exp; branches; next ; 1.26.2.1 date 2007.01.10.13.22.19; author ghen; state Exp; branches; next 1.26.2.2; 1.26.2.2 date 2007.03.20.15.27.51; author salo; state Exp; branches; next ; 1.23.2.1 date 2006.10.14.13.11.24; author salo; state Exp; branches; next 1.23.2.2; 1.23.2.2 date 2006.11.04.16.47.01; author ghen; state Exp; branches; next 1.23.2.3; 1.23.2.3 date 2006.11.23.08.52.58; author ghen; state Exp; branches; next ; 1.21.2.1 date 2006.07.09.11.33.06; author salo; state Exp; branches; next ; 1.19.2.1 date 2006.04.07.13.18.27; author salo; state Exp; branches; next 1.19.2.2; 1.19.2.2 date 2006.05.14.13.17.47; author salo; state Exp; branches; next ; 1.17.2.1 date 2006.03.29.14.21.22; author salo; state Exp; branches; next ; 1.13.2.1 date 2005.10.15.11.40.38; author salo; state Exp; branches; next 1.13.2.2; 1.13.2.2 date 2005.10.30.13.40.22; author salo; state Exp; branches; next 1.13.2.3; 1.13.2.3 date 2005.11.21.23.04.10; author salo; state Exp; branches; next 1.13.2.4; 1.13.2.4 date 2005.12.09.16.46.02; author salo; state Exp; branches; next ; 1.12.2.1 date 2005.08.29.21.11.32; author salo; state Exp; branches; next ; 1.11.2.1 date 2005.04.04.14.07.10; author salo; state Exp; branches; next ; 1.8.2.1 date 2005.02.25.22.20.04; author salo; state Exp; branches; next ; 1.1.1.1 date 2001.07.08.20.53.04; author tron; state Exp; branches; next ; desc @@ 1.118 log @phpmyadmin: update to 4.9.10 4.9.10 (2022-02-10) - issue #17308 Fix broken pagination links in the navigation sidebar @ text @$NetBSD: distinfo,v 1.117 2022/02/02 13:41:12 tm Exp $ BLAKE2s (phpMyAdmin-4.9.10-all-languages.tar.xz) = 0eb2179c30d0aa570435f65486fb07f5dc34d5b2bd3b454a31c89c12ce5b38ee SHA512 (phpMyAdmin-4.9.10-all-languages.tar.xz) = 9d12a4ffcfd32a6dcf8558103fea4e178f1c7daabb4b0f57a18d0e0608b6e6549eb7b8cff0337275986c41090e8b81aa2d11bd321e5a7bf52d4bf99d35deabde Size (phpMyAdmin-4.9.10-all-languages.tar.xz) = 6115796 bytes SHA1 (patch-libraries_vendor__config.php) = b758f5550dd7226d88293fa6614b2283cbd8e3ea @ 1.117 log @phpmyadmin: update to 4.9.9 4.9.9 (2022-01-22) - issue #17305 Fix syntax error for PHP 5 - issue #17307 Fix hide_connection_errors being undefined when a controluser is set 4.9.8 (2022-01-20) - issue #14321 Display a correct error page when "$cfg['Servers'][$i]['SignonURL']" is empty for auth_type=signon - issue #14321 [security] Remove leaked HTML on signon page redirect before login for auth_type=signon - issue [security] Add configuration directive $cfg['Servers'][$i]['hide_connection_errors'] to allow hiding host names and other error details when login fails - issue [security] Add configuration directive $cfg['URLQueryEncryption'] to allow encrypting senstive information in the URL - issue [security] Fix a scenario where an authenticated user can disable two factor authentication @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.116 2021/10/26 10:09:45 nia Exp $ d3 3 a5 3 BLAKE2s (phpMyAdmin-4.9.9-all-languages.tar.xz) = 918db2d97b323f32193c5c1fbb770305f6911b2f9d138300f7280a0296e75247 SHA512 (phpMyAdmin-4.9.9-all-languages.tar.xz) = e4058523e73f697f7f12609076ef296235d6f21b2d3ab01bb96e0272818107f0962c9db3e64bf2c9ac031c80c7d039a6a815ba49a58619f7e819b0f86234be87 Size (phpMyAdmin-4.9.9-all-languages.tar.xz) = 6119588 bytes @ 1.116 log @databases: Replace RMD160 checksums with BLAKE2s checksums All checksums have been double-checked against existing RMD160 and SHA512 hashes The following distfiles could not be fetched (some may be only fetched conditionally): ./databases/cstore/distinfo D6.data.ros.gz ./databases/cstore/distinfo cstore0.2.tar.gz ./databases/cstore/distinfo data4.tar.gz @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.115 2021/10/07 13:35:33 nia Exp $ d3 3 a5 3 BLAKE2s (phpMyAdmin-4.9.7-all-languages.tar.xz) = 27c75260304f730e55ca9879eead72d5d6c70bd566bbed4ea81b0afc52146c46 SHA512 (phpMyAdmin-4.9.7-all-languages.tar.xz) = 15f3e34a626f4ca80a42f015fed89dc5d3d681b4a3bcdb00f1ea6bf52cca1060d61b5c4c8875a697ca20be0f89862bf95edad0a150092d67c273ebddae03f311 Size (phpMyAdmin-4.9.7-all-languages.tar.xz) = 6147004 bytes @ 1.115 log @databases: Remove SHA1 distfile hashes @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.114 2020/11/11 11:56:14 tm Exp $ d3 1 a3 1 RMD160 (phpMyAdmin-4.9.7-all-languages.tar.xz) = 77e88cbc1297a9dedefd1e78347aeb00a79932b9 @ 1.114 log @phpmyadmin: update to 4.9.7 4.9.7 (2020-10-15) - issue #16397 Fix compatibility problems with older PHP versions (also issue #16399) - issue #16396 Fix broken two-factor authentication 4.9.6 (2020-10-09) - issue [security] Fix XSS vulnerability with the transformation feature (PMASA-2020-5) - issue [security] Fix SQL injection vulnerability with search feature (PMASA-2020-6) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.113 2020/04/01 08:36:16 tm Exp $ a2 1 SHA1 (phpMyAdmin-4.9.7-all-languages.tar.xz) = f96e72f1205abf72a2f5c052a8d85977b584284b @ 1.113 log @phpmyadmin: update to 4.9.5 4.9.5 (2020-03-20) - issue [security] Fix SQL injection with certain usernames (PMASA-2020-2) - issue [security] Fix SQL injection in particular search situations (PMASA-2020-3) - issue [security] Fix SQL injection and XSS flaw (PMASA-2020-4) - issue Deprecate "options" for the external transformation; options must now be hard-coded along with the program name directly in the file. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.112 2020/01/21 09:50:58 tm Exp $ d3 4 a6 4 SHA1 (phpMyAdmin-4.9.5-all-languages.tar.xz) = 25b733a5917d2f40df69a39d3719fb8b7204054f RMD160 (phpMyAdmin-4.9.5-all-languages.tar.xz) = 7e8eedaa60babe520905298f778f887693b7b971 SHA512 (phpMyAdmin-4.9.5-all-languages.tar.xz) = 555f07f087d8bcddd114df0b86fa21872f14f45c31e0f63eea499e76fdebdfd8abebcc88662887418e80ddebfea73d6aaac17856cf433d1855423b5145865d1a Size (phpMyAdmin-4.9.5-all-languages.tar.xz) = 6138948 bytes @ 1.112 log @phpmyadmin: update to 4.9.4 4.9.4 (2020-01-07) - issue #15724 Fix 2FA was disabled by a bug - issue [security] Fix SQL injection vulnerability on the user accounts page (PMASA-2020-1) 4.9.3 (2019-12-26) - issue #15570 Fix page contents go underneath of floating menubar in some cases - issue #15591 Fix php notice 'Undefined index: foreign_keys_data' on relations view when the user has column access - issue #15592 Fix php warning "error_reporting() has been disabled for security reasons" - issue #15434 Fix middle click on table sort column name shows a blank page - issue Fix php notice "Undefined index table_create_time" when setting displayed columns on results of a view - issue #15571 Fix fatal error when trying to edit row with row checked and button under the table - issue #15633 Fix designer set display field broken for php 5.x versions - issue #15621 Support CloudFront-Forwarded-Proto header for Amazon CloudFront proxy - issue Fix php 8.0 php notices - Undefined index on login page - issue #15640 Fix php 7.4 error when trying to access array offset on value of type null on table browse - issue #15641 Fix replication actions where broken (start slave, stop slave, reset, ...) - issue #15608 Fix DisableIS is broken when with controluser configured (database list broken) - issue #15614 Fix undefined offset on index page for MySQL 5.7.8 (server charset) - issue #15692 Fix JavaScript error when user has not enough privilege to view query statistics. - issue #14248 Fixed date selection in search menu missing higher Z-index value - issue Fix Uncaught php TypeError on php 8.0 when adding a column to table create form - issue #15682 Fix calendar not taking current time as default value - issue #15636 Fix php error trying to access array offset on value o type null on replication GUI - issue #15695 Fix input field for the time in datetime picker is disabled @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.111 2019/12/03 12:42:28 tm Exp $ d3 4 a6 4 SHA1 (phpMyAdmin-4.9.4-all-languages.tar.xz) = b76c020276b619faa7a5aada2ca9e987b2d1e54b RMD160 (phpMyAdmin-4.9.4-all-languages.tar.xz) = 75849da37da1911fbfdd7bfbf058417214d74d4a SHA512 (phpMyAdmin-4.9.4-all-languages.tar.xz) = 3ddab59725d59bcbe99457a1717f12b53bbd251f0bfcea1582288abfbb4507e50351e3ed0e76961026b0ad351abc806deed4a97f0fa882b34ee095ef314aaf37 Size (phpMyAdmin-4.9.4-all-languages.tar.xz) = 6134852 bytes @ 1.112.2.1 log @Pullup ticket #6163 - requested by taca databases/phpmyadmin: security fix Revisions pulled up: - databases/phpmyadmin/Makefile 1.163 - databases/phpmyadmin/PLIST 1.51 - databases/phpmyadmin/distinfo 1.113 --- Module Name: pkgsrc Committed By: tm Date: Wed Apr 1 08:36:16 UTC 2020 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: phpmyadmin: update to 4.9.5 4.9.5 (2020-03-20) - issue [security] Fix SQL injection with certain usernames (PMASA-2020-2) - issue [security] Fix SQL injection in particular search situations (PMASA-2020-3) - issue [security] Fix SQL injection and XSS flaw (PMASA-2020-4) - issue Deprecate "options" for the external transformation; options must now be hard-coded along with the program name directly in the file. @ text @d1 1 a1 1 $NetBSD$ d3 4 a6 4 SHA1 (phpMyAdmin-4.9.5-all-languages.tar.xz) = 25b733a5917d2f40df69a39d3719fb8b7204054f RMD160 (phpMyAdmin-4.9.5-all-languages.tar.xz) = 7e8eedaa60babe520905298f778f887693b7b971 SHA512 (phpMyAdmin-4.9.5-all-languages.tar.xz) = 555f07f087d8bcddd114df0b86fa21872f14f45c31e0f63eea499e76fdebdfd8abebcc88662887418e80ddebfea73d6aaac17856cf433d1855423b5145865d1a Size (phpMyAdmin-4.9.5-all-languages.tar.xz) = 6138948 bytes @ 1.111 log @phpmyadmin: update to 4.9.2 4.9.2 (2019-11-21) - issue #14184 Change the cookie name from phpMyAdmin to phpMyAdmin_https for HTTPS, fixes many "Failed to set session cookie" errors - issue #15304 Fix ssl_use php error - issue #14804 Fix undefined index: ssl_* variables - issue #14245 Fix mysql 8.0.3 and above fails on advisor - issue #15499 Fix unparenthesized php deprecation - issue #15482 Fix URL encoding plus sign (+) in the table or DB name when configuring foreign keys - issue #14898 Fixed bottom table in list in left panel blocked by horizontal scroll bar - issue #15161 Fix text area overflows its parent element on "Query" page - issue #15511 Fixed exporting users after a delete will delete all selected users on "Users" page - issue #14598 Fixed checking referencial integrity on "Operations" page - issue #14433 Fix "You do not have privileges to manipulate with the users!" on root superadmin - issue #15391 Fix GIS polygon of a geometry field is not drawn on "GIS visualization" - issue #15311 Fix adjust privileges on copy database fails with MariaDB - issue #15477 Fix display referential integrity check for InnoDB - issue #15236 Support phpunit 8 in our test suite to help packaging phpMyAdmin on Debian - issue #15522 Fix missing image error fills logs, removed ic_b_info icon from icon list - issue #15537 Fixed some issues with the sort by key selectors - issue #15546 Fix operators precedence in DatabaseInterface class - issue #14906 Test test suite on 32-bit systems - issue Fix Long2IP transformation issue with PHP 7.1 - issue #14951 Fix moving columns with DEFAULT NULL doesn't work on MariaDB 10.2+ - issue #14951 Fix moving columns with INT AND DEFAULT CURRENT_TIMESTAMP doesn't work on MariaDB - issue #12241 Fixed table alias is removed when exporting a query - issue #15316 Fixed cross join clause is removed on export - issue #14809 Fix error "is_uploaded_file() expects parameter 1 to be string" when inserting blobs from files - issue #15127 Fix white square when refreshing designer or browsing other pages - issue #13912 Detect when phpMyAdmin storage tables are not accessible, help users browse corrupt DBs - issue #15465 Display profiling when query outputs no rows - issue Fix setting and removing display field on Designer - issue Added a warning when trying to set a display field on Designer and configuration storage is not setup - issue #15327 Fix shift-click in Export misses a checkbox - issue [security] Fix improperly sanitized data when showing the Git branch (thanks to Ali Hubail for this report) - issue [security] Fix security weaknesses in Designer feature,including a flaw where an attacker could trigger an SQL injection attack (PMASA-2019-5) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.110 2019/09/21 12:38:25 tm Exp $ d3 4 a6 4 SHA1 (phpMyAdmin-4.9.2-all-languages.tar.xz) = 958126237700284067fbff3eb1afd59d38515918 RMD160 (phpMyAdmin-4.9.2-all-languages.tar.xz) = 246031909a28c7dc780e3d3afab1600cb12fdfc4 SHA512 (phpMyAdmin-4.9.2-all-languages.tar.xz) = 426689c31f963a9cbe34b2116888aa0264801aa5ef18fb0e4b89811b032d4018c770538e823bccb684fb066ed27fcf6dc6e0fb4198d1e082e7eea15595b67727 Size (phpMyAdmin-4.9.2-all-languages.tar.xz) = 6118472 bytes @ 1.111.4.1 log @Pullup ticket #6121 - requested by tm databases/phpmyadmin: security fix (CVE-2020-5504) Revisions pulled up: - databases/phpmyadmin/Makefile 1.162 - databases/phpmyadmin/distinfo 1.112 --- Module Name: pkgsrc Committed By: tm Date: Tue Jan 21 09:50:58 UTC 2020 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: phpmyadmin: update to 4.9.4 4.9.4 (2020-01-07) - issue #15724 Fix 2FA was disabled by a bug - issue [security] Fix SQL injection vulnerability on the user accounts page (PMASA-2020-1) 4.9.3 (2019-12-26) - issue #15570 Fix page contents go underneath of floating menubar in some cases - issue #15591 Fix php notice 'Undefined index: foreign_keys_data' on relations view when the user has column access - issue #15592 Fix php warning "error_reporting() has been disabled for security reasons" - issue #15434 Fix middle click on table sort column name shows a blank page - issue Fix php notice "Undefined index table_create_time" when setting displayed columns on results of a view - issue #15571 Fix fatal error when trying to edit row with row checked and button under the table - issue #15633 Fix designer set display field broken for php 5.x versions - issue #15621 Support CloudFront-Forwarded-Proto header for Amazon CloudFront proxy - issue Fix php 8.0 php notices - Undefined index on login page - issue #15640 Fix php 7.4 error when trying to access array offset on value of type null on table browse - issue #15641 Fix replication actions where broken (start slave, stop slave, reset, ...) - issue #15608 Fix DisableIS is broken when with controluser configured (database list broken) - issue #15614 Fix undefined offset on index page for MySQL 5.7.8 (server charset) - issue #15692 Fix JavaScript error when user has not enough privilege to view query statistics. - issue #14248 Fixed date selection in search menu missing higher Z-index value - issue Fix Uncaught php TypeError on php 8.0 when adding a column to table create form - issue #15682 Fix calendar not taking current time as default value - issue #15636 Fix php error trying to access array offset on value o type null on replication GUI - issue #15695 Fix input field for the time in datetime picker is disabled @ text @d1 1 a1 1 $NetBSD$ d3 4 a6 4 SHA1 (phpMyAdmin-4.9.4-all-languages.tar.xz) = b76c020276b619faa7a5aada2ca9e987b2d1e54b RMD160 (phpMyAdmin-4.9.4-all-languages.tar.xz) = 75849da37da1911fbfdd7bfbf058417214d74d4a SHA512 (phpMyAdmin-4.9.4-all-languages.tar.xz) = 3ddab59725d59bcbe99457a1717f12b53bbd251f0bfcea1582288abfbb4507e50351e3ed0e76961026b0ad351abc806deed4a97f0fa882b34ee095ef314aaf37 Size (phpMyAdmin-4.9.4-all-languages.tar.xz) = 6134852 bytes @ 1.110 log @phpmyadmin: update to 4.9.1 4.9.1 (2019-09-21) - Routine fix for an issue that has been reported as CVE-2019-12922 - issue #15313 Added support for Twig 2 - issue #15315 Fix cannot edit or export column with default CURRENT_TIMESTAMP in MySQL >= 8.0.13 - issue Fix a TypeError in Import class with PHP 8 - issue #14270 Fix Middle-click on foreign key link broken - issue #14363 Fix broken relational links in tables - issue #14987 Fix weird error for empty collation - issue #15334 Fix export of GIS visualisation not working (PNG, PDF, SVG) - issue #14918 Use hex for the phpMyAdmin session token - issue Added GB18030 Chinese collations description - issue Added Russian, Swedish, Slovak and Chinese UCA 9.0.0 collations description - issue Added description for the _ks (kana-sensitive) collation suffix - issue Added description for the _nopad (NO PAD) collation suffix - issue #15404 Remove array/string curly braces access - issue #15427 Fixed "FilterLanguages" option does not work (configuration) - issue #15202 Fixed creating user with single quote in password results in no password user - issue #14950 Fixed left database overview "add column" triggers error - issue #15363 Fix remove unexpected quotes on text fields (structure and insert) - issue Fix NULL wrongly checked on field change - issue #15388 Fix allow to rollback an empty statement - issue #14291 Fixed incorrect linkage from one table's value to another table - issue #15446 Fix tables added from other databases are not collapsing in the designer section - issue #14945 Fix designer page save fails if dB name contains period - issue Display an error when trying to import in designer a table that's already imported - issue Fix many bugs when adding new tables to designer - issue Update CodeMirror to v5.48.4 - issue Update jQuery Migrate to v3.1.0 - issue Update jQuery Validation to v1.19.1 - issue Update jQuery to v3.4.1 - issue Update js-cookie to v2.2.1 - issue Remove fieldset closing tag when setting global privileges - issue #15425 Fix backslash in column name resulting an error in editing - issue #15380 Fix Status - Advisor error - issue #15439 Fix designer page status not updated when added a new table from another database - issue #15440 Fix page number is not being updated in the URL after saving a designer's page - issue Fix reloading a designer's page - issue Fix designer full screen mode button and text stuck when exiting full-screen mode @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.109 2019/06/07 10:09:43 tm Exp $ d3 4 a6 4 SHA1 (phpMyAdmin-4.9.1-all-languages.tar.xz) = f9e660db02bd6ccc96e7b66c74e6ab9db4341a41 RMD160 (phpMyAdmin-4.9.1-all-languages.tar.xz) = a886900c11195669fbcfebb12405433ac157ebd5 SHA512 (phpMyAdmin-4.9.1-all-languages.tar.xz) = c2804bdb9d8501309e46d66fe4c27c3618de9cbd440928bf6335b3623a7e71608bb02fda17c5f1715b0cb32ecd68e2bbca86565f240b138c3630084225c56f83 Size (phpMyAdmin-4.9.1-all-languages.tar.xz) = 6146368 bytes @ 1.110.2.1 log @Pullup ticket #6094 - requested by tm databases/phpmyadmin: security fix (CVE-2019-18622) Revisions pulled up: - databases/phpmyadmin/Makefile 1.161 - databases/phpmyadmin/PLIST 1.50 - databases/phpmyadmin/distinfo 1.111 --- Module Name: pkgsrc Committed By: tm Date: Tue Dec 3 12:42:28 UTC 2019 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: phpmyadmin: update to 4.9.2 4.9.2 (2019-11-21) - issue #14184 Change the cookie name from phpMyAdmin to phpMyAdmin_https for HTTPS, fixes many "Failed to set session cookie" errors - issue #15304 Fix ssl_use php error - issue #14804 Fix undefined index: ssl_* variables - issue #14245 Fix mysql 8.0.3 and above fails on advisor - issue #15499 Fix unparenthesized php deprecation - issue #15482 Fix URL encoding plus sign (+) in the table or DB name when configuring foreign keys - issue #14898 Fixed bottom table in list in left panel blocked by horizontal scroll bar - issue #15161 Fix text area overflows its parent element on "Query" page - issue #15511 Fixed exporting users after a delete will delete all selected users on "Users" page - issue #14598 Fixed checking referencial integrity on "Operations" page - issue #14433 Fix "You do not have privileges to manipulate with the users!" on root superadmin - issue #15391 Fix GIS polygon of a geometry field is not drawn on "GIS visualization" - issue #15311 Fix adjust privileges on copy database fails with MariaDB - issue #15477 Fix display referential integrity check for InnoDB - issue #15236 Support phpunit 8 in our test suite to help packaging phpMyAdmin on Debian - issue #15522 Fix missing image error fills logs, removed ic_b_info icon from icon list - issue #15537 Fixed some issues with the sort by key selectors - issue #15546 Fix operators precedence in DatabaseInterface class - issue #14906 Test test suite on 32-bit systems - issue Fix Long2IP transformation issue with PHP 7.1 - issue #14951 Fix moving columns with DEFAULT NULL doesn't work on MariaDB 10.2+ - issue #14951 Fix moving columns with INT AND DEFAULT CURRENT_TIMESTAMP doesn't work on MariaDB - issue #12241 Fixed table alias is removed when exporting a query - issue #15316 Fixed cross join clause is removed on export - issue #14809 Fix error "is_uploaded_file() expects parameter 1 to be string" when inserting blobs from files - issue #15127 Fix white square when refreshing designer or browsing other pages - issue #13912 Detect when phpMyAdmin storage tables are not accessible, help users browse corrupt DBs - issue #15465 Display profiling when query outputs no rows - issue Fix setting and removing display field on Designer - issue Added a warning when trying to set a display field on Designer and configuration storage is not setup - issue #15327 Fix shift-click in Export misses a checkbox - issue [security] Fix improperly sanitized data when showing the Git branch (thanks to Ali Hubail for this report) - issue [security] Fix security weaknesses in Designer feature,including a flaw where an attacker could trigger an SQL injection attack (PMASA-2019-5) @ text @d1 1 a1 1 $NetBSD$ d3 4 a6 4 SHA1 (phpMyAdmin-4.9.2-all-languages.tar.xz) = 958126237700284067fbff3eb1afd59d38515918 RMD160 (phpMyAdmin-4.9.2-all-languages.tar.xz) = 246031909a28c7dc780e3d3afab1600cb12fdfc4 SHA512 (phpMyAdmin-4.9.2-all-languages.tar.xz) = 426689c31f963a9cbe34b2116888aa0264801aa5ef18fb0e4b89811b032d4018c770538e823bccb684fb066ed27fcf6dc6e0fb4198d1e082e7eea15595b67727 Size (phpMyAdmin-4.9.2-all-languages.tar.xz) = 6118472 bytes @ 1.109 log @phpmyadmin: update to 4.9.0.1 4.9.0.1 (2019-06-04) - issue #14478 phpMyAdmin no longer streams the export data - issue #14514 Tables with SYSTEM VERSIONING show up as views instead of tables - issue #14515 Values cannot be edited in SYSTEM VERSIONING tables with INVISIBLE timestamps - issue Fix header icon on server plugins page - issue #14298 Fixed error 500 on MultiTableQuery page when a empty query is passed - issue #14402 Fixed fatal javascript error while adding index to a new column - issue #14896 Fixed issue with plus/minus icon when refreshing an expanded database - issue #14922 Fixed json encode error in export - issue #13975 Fixed missing query time in German (fix decimal number format issue) - issue #14503 Fixed JavaScript events not activating on input (sql bookmark issue) - issue #14898 Fixed Bottom table is blocked in database list (left panel) - issue #14425 Fixed Null Checkbox automatically unmarked - issue #14870 Display correct date and time in Zip files - issue #14763 Fixed the loading symbol not appearing when refreshing the navigation - issue #14607 Count rows only if needed - issue #14832 Show Designer combo boxes when adding a constraint - issue #14948 Fix change password is not showing password strength difference at the second attempt - issue #14868 Fix edit view - issue #14943 Fixed loading Forever when creating new view without filling any field - issue #14843 Fix Bookmark::get() id matching SQL - issue #14734 Fixed invalid default value for bit field - issue #14311 Fixed undefined index in setup script - issue #14991 Fixed TypeError in GIS editor - issue Fixed GIS data editor for multi server setup - issue #14312 Fixed type error in setup script when adding new server - issue #14053 Fix missed padding on query results - issue #14826 Fixed javascript error PMA_messages is not defined - issue Show error message if config-set fails and not "loading..." forever - issue #14359 Prevent multiple error modals, and error-report request spamming from script - issue Fixed error reporting javascript errors on multi server setup - issue Fixed wrong property name on TableStructureController - issue #14811 Fix SHOW FULL TABLES FROM when a table is locked - issue #14916 Fix bug when creating or editing views - issue #14931 Fixed php error when using a query like SELECT 1 INTO @@a; SELECT @@a; in inline query edit - issue #15074 Make the server logo visible on theme "original" - issue #15077 Fixed incorrect page numbers - issue #14205 Fixed "No tables found in database" when you delete all tables from last page - issue #14957 Virtuality is not selected when editing generated column (added virtuality(stored) option for mariadb) - issue #14853 Insert page should not allow entering things into virtual columns - issue #15110 Fixed TypeError e.preventDefaulut is not a function - issue #15115 Improved label in Settings export, clarifying that it's a JSON file - issue #14816 Fixed [designer] Cannot read property 'style' of null - issue Fixed [designer] Add new tables with database/table list modal - issue Fixed query format on multi server setup - issue Fixed remove partitioning on multi server setup - issue Fixed normalization - issue Fixed 'RESET SLAVE' button on replication slave - issue Fixed sending a php error report on multi server setup - issue Fixed downloading of monitor parameters for IE 11, Edge, Chrome and others - issue #15141 Fixed php notice Undefined index: designer_settings - issue #12729 Fixed sticky table header over dropdown menu - issue #15140 Fixed edit link does not work on failed insert - issue #14334 Fixed export table structure shows rows fields - issue #15010 Fixed empty SQL preview modal on tbl_relation - issue #14673 Fixed innodb & MySQL 8: DYNAMIC & COMPRESSED ROW_FORMAT missing - issue Fixed empty success message when adding a new INDEX from left panel - issue #15150 Fixed generate password hidden on second open of change password modal - issue Fixed import XML data with leading zeros - issue #15036 Fixed missing input fields checks for MaxSizeForInputField - issue #15119 Fixed uninterpreted HTML on Settings->Export page - issue #15159 Fixed missing query time and database in console - issue #13713 Fixed column comments in the floating table header - issue #15177 Fixed label alignment on login page - issue #15210 Fixed a typo in the english name of the Albanian language - issue Fixed issue when resetting charset in import.php - issue #14460 Fixed forms where submitted multiple times on CTRL + ENTER - issue #15038 Fixed console height was allowing a negative values - issue #15219 Fixed 'No Password' option does not switch automatically to 'Use Text Field' in add user account - issue Fixed importing the exported config on Server status monitor page - issue #15228 Fixed php notice 'Undefined index: foreign_keys_data' on designer when the user has column access - issue #12900 Fixed designer page saving gives error when configuration storage is not set up - issue #15229 Fixed php notice, added support for 'DELETE HISTORY' table privilege (MariaDB >= 10.3.4) - issue #14527 Fixed import settings function not working - issue #14908 Fixed uninterpreted HTML on Settings->Import (missing data error descriptions) - issue #14800 Fixed status->Processes doesn't show full query process list page - issue #14833 Fixed sort by Time not working in process list page - issue #14982 Fixed setting "null" keep an "enum" value - issue #14401 Fixed insert rows keypress Enter behavior - issue #15146 Fixed error reports can not be sent because they are too large - issue #15205 Fixed useless backquotes on sql preview modal when deleting an index - issue #13178 Fixed issues with uppercase table and database names (lower_case_table_names=1) - issue #14383 Fixed warning when browsing certain tables (GIS data) - issue #12865 Fixed MySQL 8.0.0 issues with GIS display - issue #15059 Fixed "Server charset" in "Database server" tab showing wrong information - issue #14614 Fixed mysql error "#2014 - Commands out of sync; you can't run this command now" on sql query - issue #15238 Fixed phpMyAdmin 4.8.5 doesn't show privileges of procedures (raw html displayed instead) - issue #13726 Fixed can not copy user on Percona Server 5.7 - issue #15239 Fixed javascript error while fetching latest version info and switching pages - issue #14301 Fixed javascript error when editing a JSON data type column - issue #15240 Fixed apply a Settings form with errors shows a JSON response after using return back - issue #15043 Fixed multiple errors printing on Settings page - issue #15037 Fixed unexpected behavior of reset button on Settings - issue #15157 Fixed 'Settings' tab not marked as active when browsing 2FA settings - issue #14934 Fixed all fields readonly on Edit/Insert screens - issue #14588 Fixed export of geometry objects, GIS objects are now exported as hex - issue #14412 Better handling of errors with Signon authentication type - issue Added support for AUTO_INCREMENT when using ROCKSDB, on Operations page - issue #15276 Fixed partitioning is missing in Structure page UI (MySQL 8.0) - issue #14252 Fixed DisableIS and database tree list (new database missing when refreshing the list) - issue #14621 Removed "Propose table structure" on MySQL 8.0 - issue Fixed editing of virtual columns on PerconaDB - issue #13854 Fixed column options are ignored for GENERATED/VIRTUAL/STORED columns - issue #15262 Fixed incorrect display of charset column (raw html) - issue Added explicit parentheses in nested ternary operators - issue #15287 Fix auto_increment field is too small - issue #15283 Fix tries to change collation on views when changing collation on all tables/fields - issue Fixed empty PMA_gotoWhitelist JavaScript array - issue #15079 Fixed responsive behaviour of instruction dialog box - issue #10846 Fixed javascript error when renaming a table - issue Updated sql-parser to version 4.3.2 - issue [security] SQL injection in Designer (PMASA-2019-3) - issue [security] CSRF attack on 'cookie' login form (PMASA-2019-4) 4.8.5 (2019-01-25) - issue Developer debug data was saved to the PHP error log - issue #14217 Fix issue when adding user on MySQL 8.0.11 - issue #13788 Exporting a view structure based on another view with a sub-query throws no database selected error - issue #14635 Fix PHP error in GitRevision, error in processing request, error code 200 - issue #14787 Cannot execute stored procedure - issue Add Burmese language - issue #14794 Not responding to click, frozen interface, plugin Text_Plain_Sql error - issue #14786 Table level Operations functions missing - issue #14791 PHP warning, db_export.php#L91 urldecode() - issue #14775 Export to SQL format not available for tables - issue #14782 Error message shown instead of two-factor QR code when adding 2fa to a user - issue [security] Arbitrary file read/delete relating to MySQL LOAD DATA LOCAL INFILE and an evil server instance (PMASA-2019-1) - issue [security] SQL injection in Designer (PMASA-2019-2) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.108 2018/12/13 08:22:42 tm Exp $ d3 4 a6 4 SHA1 (phpMyAdmin-4.9.0.1-all-languages.tar.xz) = 97c5ec2ecf53fda5e1b217ee64c3f5fde6bed032 RMD160 (phpMyAdmin-4.9.0.1-all-languages.tar.xz) = 0919a70b28703a46b9902fcef8e854f458bd7e7b SHA512 (phpMyAdmin-4.9.0.1-all-languages.tar.xz) = 92fc032ba44e84f6c6a62bb658c2c7ea984bfd8c963b18bf19c26c3991cfe635771376ad8aebf90140bb1bd723b62a5adaca35d88f7bb68169fd0d07c3995356 Size (phpMyAdmin-4.9.0.1-all-languages.tar.xz) = 6066680 bytes @ 1.108 log @phpmyadmin: update to 4.8.4 4.8.4 (2018-12-11) - issue #14452 Remove hash param in edit query URL - issue #14295 Issue in Changing theme - issue #13267 Ensure that database names with '.' are handled properly when DisableIS is true - issue #14438 Invisible Icon "Show Full Queries" - issue #14133 CSS issue in Designer - issue #14447 Error while copying database (pma__column_info) - issue #14571 "No database selected" - DROP a view - issue #14636 Move operation causes SELECT * FROM `undefined` - issue #14630 Enum '0' produces incorrect search SQL - issue #14223 Fix TypeError in database designer - issue #13621 QBE selenium tests broken since merge of #13342 - issue #14672 When logging with $cfg['AuthLog'] to syslog, successful login messages were not logged even if $cfg['AuthLogSuccess'] was true. - issue #14339 Fix infinite loop when sorting table rows by key. - issue #14658 Regression on multi table query functionality (foreign keys) - issue #14617 Fix designer errors when database is empty - issue #13032 Fix designer errors when database contains special chars - issue #14352 Fix designer javascript errors - issue #14764 Fix left/right icons hidden - issue [security] Local file inclusion flaw in the Transformation feature (PMASA-2018-6) - issue [security] Multiple CSRF/XSRF vulnerabilities (PMASA-2018-7) - issue [security] XSS vulnerability in the navigation tree (PMASA-2018-8) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.107 2018/12/10 19:27:46 tm Exp $ d3 4 a6 4 SHA1 (phpMyAdmin-4.8.4-all-languages.tar.xz) = cd1a6b6b25308f2ff025c1fbccb18bae1ab3071b RMD160 (phpMyAdmin-4.8.4-all-languages.tar.xz) = c2437bf524f9701382538eaf6636fae523b27a74 SHA512 (phpMyAdmin-4.8.4-all-languages.tar.xz) = 4f7018416fb925b28d5e061ebba4d99c45497f0e33c6a4bfa32aaa74197a429d61469d8084fd5ea6b23a34444c81905e072b5508f9a87c75e18e0ac596ff2121 Size (phpMyAdmin-4.8.4-all-languages.tar.xz) = 6012216 bytes @ 1.108.4.1 log @Pullup ticket #5977 - requested by tm databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.159 - databases/phpmyadmin/PLIST 1.48 - databases/phpmyadmin/distinfo 1.109 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tm Date: Fri Jun 7 10:09:43 UTC 2019 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: phpmyadmin: update to 4.9.0.1 4.9.0.1 (2019-06-04) - issue #14478 phpMyAdmin no longer streams the export data - issue #14514 Tables with SYSTEM VERSIONING show up as views instead of tables - issue #14515 Values cannot be edited in SYSTEM VERSIONING tables with INVISIBLE timestamps - issue Fix header icon on server plugins page - issue #14298 Fixed error 500 on MultiTableQuery page when a empty query is passed - issue #14402 Fixed fatal javascript error while adding index to a new column - issue #14896 Fixed issue with plus/minus icon when refreshing an expanded database - issue #14922 Fixed json encode error in export - issue #13975 Fixed missing query time in German (fix decimal number format issue) - issue #14503 Fixed JavaScript events not activating on input (sql bookmark issue) - issue #14898 Fixed Bottom table is blocked in database list (left panel) - issue #14425 Fixed Null Checkbox automatically unmarked - issue #14870 Display correct date and time in Zip files - issue #14763 Fixed the loading symbol not appearing when refreshing the navigation - issue #14607 Count rows only if needed - issue #14832 Show Designer combo boxes when adding a constraint - issue #14948 Fix change password is not showing password strength difference at the second attempt - issue #14868 Fix edit view - issue #14943 Fixed loading Forever when creating new view without filling any field - issue #14843 Fix Bookmark::get() id matching SQL - issue #14734 Fixed invalid default value for bit field - issue #14311 Fixed undefined index in setup script - issue #14991 Fixed TypeError in GIS editor - issue Fixed GIS data editor for multi server setup - issue #14312 Fixed type error in setup script when adding new server - issue #14053 Fix missed padding on query results - issue #14826 Fixed javascript error PMA_messages is not defined - issue Show error message if config-set fails and not "loading..." forever - issue #14359 Prevent multiple error modals, and error-report request spamming from script - issue Fixed error reporting javascript errors on multi server setup - issue Fixed wrong property name on TableStructureController - issue #14811 Fix SHOW FULL TABLES FROM when a table is locked - issue #14916 Fix bug when creating or editing views - issue #14931 Fixed php error when using a query like SELECT 1 INTO @@a; SELECT @@a; in inline query edit - issue #15074 Make the server logo visible on theme "original" - issue #15077 Fixed incorrect page numbers - issue #14205 Fixed "No tables found in database" when you delete all tables from last page - issue #14957 Virtuality is not selected when editing generated column (added virtuality(stored) option for mariadb) - issue #14853 Insert page should not allow entering things into virtual columns - issue #15110 Fixed TypeError e.preventDefaulut is not a function - issue #15115 Improved label in Settings export, clarifying that it's a JSON file - issue #14816 Fixed [designer] Cannot read property 'style' of null - issue Fixed [designer] Add new tables with database/table list modal - issue Fixed query format on multi server setup - issue Fixed remove partitioning on multi server setup - issue Fixed normalization - issue Fixed 'RESET SLAVE' button on replication slave - issue Fixed sending a php error report on multi server setup - issue Fixed downloading of monitor parameters for IE 11, Edge, Chrome and others - issue #15141 Fixed php notice Undefined index: designer_settings - issue #12729 Fixed sticky table header over dropdown menu - issue #15140 Fixed edit link does not work on failed insert - issue #14334 Fixed export table structure shows rows fields - issue #15010 Fixed empty SQL preview modal on tbl_relation - issue #14673 Fixed innodb & MySQL 8: DYNAMIC & COMPRESSED ROW_FORMAT missing - issue Fixed empty success message when adding a new INDEX from left panel - issue #15150 Fixed generate password hidden on second open of change password modal - issue Fixed import XML data with leading zeros - issue #15036 Fixed missing input fields checks for MaxSizeForInputField - issue #15119 Fixed uninterpreted HTML on Settings->Export page - issue #15159 Fixed missing query time and database in console - issue #13713 Fixed column comments in the floating table header - issue #15177 Fixed label alignment on login page - issue #15210 Fixed a typo in the english name of the Albanian language - issue Fixed issue when resetting charset in import.php - issue #14460 Fixed forms where submitted multiple times on CTRL + ENTER - issue #15038 Fixed console height was allowing a negative values - issue #15219 Fixed 'No Password' option does not switch automatically to 'Use Text Field' in add user account - issue Fixed importing the exported config on Server status monitor page - issue #15228 Fixed php notice 'Undefined index: foreign_keys_data' on designer when the user has column access - issue #12900 Fixed designer page saving gives error when configuration storage is not set up - issue #15229 Fixed php notice, added support for 'DELETE HISTORY' table privilege (MariaDB >= 10.3.4) - issue #14527 Fixed import settings function not working - issue #14908 Fixed uninterpreted HTML on Settings->Import (missing data error descriptions) - issue #14800 Fixed status->Processes doesn't show full query process list page - issue #14833 Fixed sort by Time not working in process list page - issue #14982 Fixed setting "null" keep an "enum" value - issue #14401 Fixed insert rows keypress Enter behavior - issue #15146 Fixed error reports can not be sent because they are too large - issue #15205 Fixed useless backquotes on sql preview modal when deleting an index - issue #13178 Fixed issues with uppercase table and database names (lower_case_table_names=1) - issue #14383 Fixed warning when browsing certain tables (GIS data) - issue #12865 Fixed MySQL 8.0.0 issues with GIS display - issue #15059 Fixed "Server charset" in "Database server" tab showing wrong information - issue #14614 Fixed mysql error "#2014 - Commands out of sync; you can't run this command now" on sql query - issue #15238 Fixed phpMyAdmin 4.8.5 doesn't show privileges of procedures (raw html displayed instead) - issue #13726 Fixed can not copy user on Percona Server 5.7 - issue #15239 Fixed javascript error while fetching latest version info and switching pages - issue #14301 Fixed javascript error when editing a JSON data type column - issue #15240 Fixed apply a Settings form with errors shows a JSON response after using return back - issue #15043 Fixed multiple errors printing on Settings page - issue #15037 Fixed unexpected behavior of reset button on Settings - issue #15157 Fixed 'Settings' tab not marked as active when browsing 2FA settings - issue #14934 Fixed all fields readonly on Edit/Insert screens - issue #14588 Fixed export of geometry objects, GIS objects are now exported as hex - issue #14412 Better handling of errors with Signon authentication type - issue Added support for AUTO_INCREMENT when using ROCKSDB, on Operations page - issue #15276 Fixed partitioning is missing in Structure page UI (MySQL 8.0) - issue #14252 Fixed DisableIS and database tree list (new database missing when refreshing the list) - issue #14621 Removed "Propose table structure" on MySQL 8.0 - issue Fixed editing of virtual columns on PerconaDB - issue #13854 Fixed column options are ignored for GENERATED/VIRTUAL/STORED columns - issue #15262 Fixed incorrect display of charset column (raw html) - issue Added explicit parentheses in nested ternary operators - issue #15287 Fix auto_increment field is too small - issue #15283 Fix tries to change collation on views when changing collation on all tables/fields - issue Fixed empty PMA_gotoWhitelist JavaScript array - issue #15079 Fixed responsive behaviour of instruction dialog box - issue #10846 Fixed javascript error when renaming a table - issue Updated sql-parser to version 4.3.2 - issue [security] SQL injection in Designer (PMASA-2019-3) - issue [security] CSRF attack on 'cookie' login form (PMASA-2019-4) 4.8.5 (2019-01-25) - issue Developer debug data was saved to the PHP error log - issue #14217 Fix issue when adding user on MySQL 8.0.11 - issue #13788 Exporting a view structure based on another view with a sub-query throws no database selected error - issue #14635 Fix PHP error in GitRevision, error in processing request, error code 200 - issue #14787 Cannot execute stored procedure - issue Add Burmese language - issue #14794 Not responding to click, frozen interface, plugin Text_Plain_Sql error - issue #14786 Table level Operations functions missing - issue #14791 PHP warning, db_export.php#L91 urldecode() - issue #14775 Export to SQL format not available for tables - issue #14782 Error message shown instead of two-factor QR code when adding 2fa to a user - issue [security] Arbitrary file read/delete relating to MySQL LOAD DATA LOCAL INFILE and an evil server instance (PMASA-2019-1) - issue [security] SQL injection in Designer (PMASA-2019-2) To generate a diff of this commit: cvs rdiff -u -r1.157 -r1.158 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.47 -r1.48 pkgsrc/databases/phpmyadmin/PLIST cvs rdiff -u -r1.108 -r1.109 pkgsrc/databases/phpmyadmin/distinfo ------------------------------------------------------------------------ Module Name: pkgsrc Committed By: tm Date: Sun Jun 16 09:13:11 UTC 2019 Modified Files: pkgsrc/databases/phpmyadmin: Makefile Log Message: phpmyadmin: provide correct shell script for replace_sh (pkg/54296) To generate a diff of this commit: cvs rdiff -u -r1.158 -r1.159 pkgsrc/databases/phpmyadmin/Makefile @ text @d1 1 a1 1 $NetBSD$ d3 4 a6 4 SHA1 (phpMyAdmin-4.9.0.1-all-languages.tar.xz) = 97c5ec2ecf53fda5e1b217ee64c3f5fde6bed032 RMD160 (phpMyAdmin-4.9.0.1-all-languages.tar.xz) = 0919a70b28703a46b9902fcef8e854f458bd7e7b SHA512 (phpMyAdmin-4.9.0.1-all-languages.tar.xz) = 92fc032ba44e84f6c6a62bb658c2c7ea984bfd8c963b18bf19c26c3991cfe635771376ad8aebf90140bb1bd723b62a5adaca35d88f7bb68169fd0d07c3995356 Size (phpMyAdmin-4.9.0.1-all-languages.tar.xz) = 6066680 bytes @ 1.107 log @phpmyadmin: update to 4.8.3 The new package will be prefixed with the php version because the dependencies are also specified with the version number in the Makefile. Changelog: 4.8.3 (2018-08-22) - issue #14314 Error when naming a database '0' - issue #14333 Fix NULL as default not shown - issue #14229 Fixes issue with recent table list - issue #14045 Fix slow performance on DB structure filtering - issue #14327 Fix Editing server variable not showing save or cancel option - issue #14377 Populate options for view create and edit - issue #14171 2FA configuration fails if PHP doesn't have GD support - issue #14390 Can't unhide tables - issue #14382 "Visualize GIS data" icon missing - issue #14435 Event scheduler status toggle doesn't work - issue #14365 View not working on multiple servers - issue #14207 Partition actions in table structure do not work - issue #14375 Fixes ERR_BLOCKED_BY_XSS_AUDITOR on export table - issue #14552 Blank message shown instead of MySQL error when adding trigger and other locations - issue #14525 Fix PHP 7.3 warning: "continue" in "switch" is equal to "break" - issue #14554 Icon missing when creating a new trigger, routine, and event - issue #14422 Table comment not showing since 4.8.1 - issue #14426 Drop table doesn't work when you copy tables to another database - issue #14581 Escaped HTML in 'Add a new server' setup - issue #14548 [security] HTML injection in import warning messages, see PMASA-2018-5 4.8.2 (2018-06-21) - issue #14370 WHERE 0 causes Fatal error - issue #14225 Fix missing index icon - issue [security] XSS vulnerability in Designer, see PMASA-2018-3 - issue [security] File inclusion and remote code execution vulnerability, see PMASA-2018-4 4.8.1 (2018-05-24) - issue #12772 Fix case where the central columns attributes don't get filled in - issue #14049 Fix case where the query builder doesn't work when selected column is * - issue #14029 Revert "Browse" table CSS overflow - issue #14241 Dropping indexes and foreign keys fail - issue #14227 Relational linking broken - issue #14246 Fixed error in configuration storage zero config - issue #14128 Show 2FA Secret next to QR code - issue #14212 XML Export from single table throws fatal error - issue #14239 Line and some other charts ignore result set order of values chosen for the x-axis - issue #14260 Fixed configuration for DefaultLang and Lang - issue #14264 Linking for 'Distinct values' broken - issue #13968 Fix MariaDB 10.2 current_timestamp() - issue #14249 Fix for missing go button in view edit - issue #14125 Fix for issues with spatial fields - issue #14189 Remember table's sorting broken - issue #14289 Fix multi-column sorting - issue #14278 Fix central columns in-line edit bug - issue #14066 Fix AUTO_INCREMENT error when only exporting table structure in database-level exports - issue #13893 Simulating queries produces unexpected results - issue #14309 Setup script icons missing 4.8.0.1 (2018-04-19) - issue [security] Multiple CSRF vulnerabilities, See PMASA-2018-02 4.8.0 (2018-04-07) - issue #12946 Allow to export JSON with unescaped unicode chars - issue #12983 Disable login button without solved reCaptcha - issue #12315 Allow to remove individual segments from pie charts - issue Change label from "Improve table structure" to "Normalize" to match standard terminology - issue #13087 Offer login as different user on access denied from MySQL - issue #13110 Indicate when HTTPS is not properly reported on the server - issue #13119 No database selected error when adding foreign key - issue #12388 Improved database search to allow search for exact phrase match - issue #13099 Report error when trying to copy database to same name - issue #13167 Themes now have to contain metadata in theme.json - issue #6363 phpMyAdmin no longer requires eval() in PHP - issue #12386 The mbstring dependency is now optional - issue #13269 Small refactoring in preparation to CSP - issue #13384 Database link broken in Databases Page - issue #13391 Configurable authentication logging using $cfg['AuthLog'] - issue #13086 Add support for Google Invisible Captcha - issue #13058 Improved error reporting for reCAPTCHA - issue #12899 Improved rendering of server variables table - issue #12948 Fixed javascript editor for TIME values - issue #13095 Fixed alignment of foreign keys editing - issue #12944 Improved inline editor for JSON - issue #13145 Improved layout of operations pages - issue #13448 Add "format" query button in edit view form - issue #6241 Implement Responsive Design/mobile interface - issue Use a single location for classes under PhpMyAdmin namespace - issue #12354 Indicate SSL status on main page - issue #5666 Configuration directives for defaults of Transformation options - issue #12261 Remove inline JavaScript - issue #13408 Show MySQL warnings when executing SQL queries - issue #5827 Allow Designer to show tables from other databases - issue #13268 Replace Query-By-Example with multi-table query generator interface - issue #13576 Add privileges export to per-database listing - issue Consolidate functions into class files - issue #13560 Add support for changing collation for all tables and columns in database - issue #13303 Add support for creating fulltext index from table structure - issue #13711 Lower default value for $cfg['MaxExactCount'] - issue #13722 DisableIS is not fully honored - issue #6197 Added support for authentication using U2F and 2FA - issue #13480 Avoid removing cookies on upgrade - issue #13397 Remember state of navigation panel - issue #11688 Reduced cookie usage - issue #13466 Better utilization of user preferences - issue #14042 Rename PMD to Designer - issue #13940 Honor arg_separator in AJAX requests - issue #14060 Can't edit rows in Internet Explorer - issue #14096 Internet Explorer compatibility; fixes JavaScript error Object doesn't support property or method 'startsWith' 4.7.9 (2018-03-05) - issue #13931 Fixed browsing tables with more results - issue #13927 "Not an integer" when browsing a table - issue #13887 "Input variables exceeded 1000" error relating to PHP's max_input_vars directive 4.7.8 (2018-02-20) - issue #13914 Fixed resetting default setting values. - issue #13758 Fixed fallback value for collation connection. - issue #13938 Fixed error handling in PHP 7.2 - issue [security] Fix XSS in Central Columns Feature, See PMASA-2018-01 --- Older ChangeLogs can be found on our project website --- https://www.phpmyadmin.net/old-stuff/ChangeLogs/ @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.106 2016/12/30 04:44:43 taca Exp $ d3 5 a7 5 SHA1 (phpMyAdmin-4.8.3-all-languages.tar.xz) = 69d9ef27687d0e29bf039f49b01c89f80a99dd87 RMD160 (phpMyAdmin-4.8.3-all-languages.tar.xz) = 92848d08d04dbdd588a63bc554716d4d2685bfe5 SHA512 (phpMyAdmin-4.8.3-all-languages.tar.xz) = 95998eda6a2db9020671073c62458d819cbd5e54c5f56f467b109401f6b9ebd2dfbc34cc840980bf2d3a7ee3bc93683b7fe20d9bd72b537d8aa066d39089ff89 Size (phpMyAdmin-4.8.3-all-languages.tar.xz) = 5996528 bytes SHA1 (patch-libraries_vendor__config.php) = e0fefe54dabf5fb716a315121c3cbec20925f73c @ 1.106 log @Update phpmyadmin to 4.6.5.2, including security fixes. 4.6.5.2 (2016-12-05) - issue #12765 Fixed SQL export with newlines 4.6.5.1 (2016-11-25) - issue #12735 Incorrect parameters to escapeString in Node.php - issue #12734 Fix PHP error when mbstring is not installed - issue #12736 Don't force partition count to be specified when creating a new table 4.6.5 (2016-11-24) - issue Remove potentionally license problematic sRGB profile - issue #12459 Display read only fields as read only when editing - issue #12384 Fix expanding of navigation pane when clicking on database - issue #12430 Impove partitioning support - issue #12374 Reintroduced simplified PmaAbsoluteUri configuration directive - issue Always use UTC time in HTTP headers - issue #12479 Simplified validation of external links - issue #12483 Fix browsing tables with built in transformations - issue #12485 Do not show warning about short blowfish_secret if none is set - issue #12251 Fixed random logouts due to wrong cookie path - issue #12480 Fixed editing of ENUM/SET/DECIMAL fields structure - issue #12497 Missing escaping of configuration used in SQL (hide_db and only_db) - issue #12476 Add error checking in reading advisory rules file - issue #12477 Add checking missing elements and confirming element types from json_decode - issue #12251 Automatically save SQL query in browser local storage rather than in cookie - issue #12292 Unable to edit transformations - issue #12502 Remove unused paramenter when connecting to MySQLi - issue #12303 Fix number formatting with different settings of precision in PHP - issue #12405 Use single quotes in PHP code - issue #12534 Option for the dropped column is not removed from 'after_field' select, after the column is dropped - issue #12531 Properly detect DROP DATABASE queries - issue #12470 Fix possible race condition in setting URL hash - issue #11924 Remove caching of server information - issue #11628 Proper parsing of INSERT ... ON DUPLICATE KEY queries - issue #12545 Proper parsing of CREATE TABLE ... PARTITION queries - issue #12473 Code can throw unhandled exception - issue #12550 Do not try to keep alive session even after expiry - issue #12512 Fixed rendering BBCode links in setup - issue #12518 Fixed copy of table with generated columns - issue #12221 Fixed export of table with generated columns - issue #12320 Copying a user does not copy usergroup - issue #12272 Adding a new row with default enum goes to no selection when you want to add more then 2 rows - issue #12487 Drag and drop import prevents file dropping to blob column file selector on the insert tab - issue #12554 Absence of scrolling makes it impossible to read longer text values in grid editing - issue #12530 "Edit routine" crashes when the current user is not the definer, even if privileges are adequate - issue #12300 Export selective tables by-default dumps Events also - issue #12298 Fixed export of view definitions - issue #12242 Edit routine detail dialog does not fill "Return length" field in mysql functions - issue #12575 New index Confirm adds whitespace around the field name - issue #12382 Bug in zoom search - issue #12321 Assign LIMIT clause only to syntactically correct queries - issue #12461 Can't Execute SQL With Sub-Query Due To "LIMIT 0,25" Inserted At Wrong Place - issue #12511 Clarify documentation on ArbitraryServerRegexp - issue #12508 Remove duplicate code in SQL escaping - issue #12475 Cleanup code for getting table information - issue #12579 phpMyAdmin's export of a Select statment without a FROM clause generates Wrong SQL - issue #12316 Correct export of complex SELECT statements - issue #12080 Fixed parsing of subselect queries - issue #11740 Fixed handling DELETE ... USING queries - issue #12100 Fixed handling of CASE operator - issue #12455 Query history stores separate entry for every letter typed - issue #12327 Create PHP code no longer works - issue #12179 Fixed bookmarking of query with multiple statements - issue #12419 Wrong description on GRANT OPTION - issue #12615 Fixed regexp for matching browser versions - issue #12569 Avoid showing import errors twice - issue #12362 prefs_manage.php can leave an orphaned temporary file - issue #12619 Unable to export csv when using union select - issue #12625 Broken Edit links in query results of JOIN query - issue #12634 Drop DB error in import if DB doesn't exist - issue #12338 Designer reverts to first saved ER after EACH relation create or delete - issue #12639 'Show trace' in Console generates JS error for functions in query's trace called without any arguments - issue #12366 Fix user creation with certain MariaDB setups - issue #12616 Refuse to work with mbstring.func_overload enabled - issue #12472 Properly report connection without password in setup - issue #12365 Fix records count for large tables - issue #12533 Fix records count for complex queries - issue #12454 Query history not updated in console until page refresh - issue #12344 Fixed parsing of labels in loop - issue #12228 Fixed parsing of BEGIN labels - issue #12637 Fixed editing some timestamp values - issue #12622 Fixed javascript error in designer - issue #12334 Missing page indicator or VIEWs - issue #12610 Export of tables with Timestamp/Datetime/Time columns defined with ON UPDATE clause with precision fails - issue #12661 Error inserting into pma__history after timeout - issue #12195 Row_format = fixed not visible - issue #12665 Cannot add a foreign key - non-indexed fields not listed in InnoDB tables - issue #12674 Allow for proper MySQL-allowed strings as identifiers - issue #12651 Allow for partial dates on table insert page - issue #12681 Fixed designer with tables using special chars - issue #12652 Fixed visual query builder for foreign keys with more fields - issue #12257 Improved search page performance - issue #12322 Avoid selecting default function for foreign keys - issue #12453 Fixed escaping of SQL parts in some corner cases - issue #12542 Missing table name in account privileges editor - issue #12691 Remove ksort call on empty array in PMA_getPlugins function - issue #12443 Check parameter type before processing - issue #12299 Avoid generating too long URLs in search - issue #12361 Fix self SQL injection in table-specific privileges - issue #12698 Add link to release notes and download on new version notification - issue #12712 Error when trying to setup replication (fatal error in call to an old PMA_DBI_connect function) - issue [security] Unsafe generation of $cfg['blowfish_secret'], see PMASA-2016-58 - issue [security] phpMyAdmin's phpinfo functionality is removed, see PMASA-2016-59 - issue [security] AllowRoot and allow/deny rule bypass with specially-crafted username, see PMASA-2016-60 - issue [security] Username matching weaknesses with allow/deny rules, see PMASA-2016-61 - issue [security] Possible to bypass logout timeout, see PMASA-2016-62 - issue [security] Full path disclosure (FPD) weaknesses, see PMASA-2016-63 - issue [security] Multiple XSS weaknesses, see PMASA-2016-64 - issue [security] Multiple denial-of-service (DOS) vulnerabilities, see PMASA-2016-65 - issue [security] Possible to bypass white-list protection for URL redirection, see PMASA-2016-66 - issue [security] BBCode injection to login page, see PMASA-2016-67 - issue [security] Denial-of-service (DOS) vulnerability in table partitioning, see PMASA-2016-68 - issue [security] Multiple SQL injection vulnerabilities, see PMASA-2016-69 - issue [security] Incorrect serialized string parsing, see PMASA-2016-70 - issue [security] CSRF token not stripped from the URL, see PMASA-2016-71 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.105 2016/08/23 15:53:14 taca Exp $ d3 5 a7 5 SHA1 (phpMyAdmin-4.6.5.2-all-languages.tar.xz) = 0870868690c2f97468cb764a13d5e6b3ffda35c7 RMD160 (phpMyAdmin-4.6.5.2-all-languages.tar.xz) = be40587f74dd1763226764891de38b12c8c30ec6 SHA512 (phpMyAdmin-4.6.5.2-all-languages.tar.xz) = 10fecd5f313b3685b3d4d7c86b20e9466abc54298267f2ed41cf81096fae5bf8472860ac3ebd5ecba8644b43f69eaf944625a8a12beaba637bcefba0940f3a11 Size (phpMyAdmin-4.6.5.2-all-languages.tar.xz) = 6136880 bytes SHA1 (patch-libraries_vendor_config.php) = af587496e999bf1e92d6c5a9ab8053fe6e92a0f2 @ 1.105 log @Update phpmyadmin to 4.6.4. pkgsrc changes: * Overhaul Makefile. - Remove use of INSTALL_DIRS and simplify install process. - Utilize pkgsrc SUBST_*. - Stop other pkglint warninggs. * Drop some dot files from installation. Quote from Changes: 4.6.4 (2016-08-16) - issue [security] Weaknesses with cookie encryption, see PMASA-2016-29 - issue [security] Improve session cookie code for openid.php and signon.php example files - issue [security] Full path disclosure in openid.php and signon.php example files - issue [security] Multiple XSS vulnerabilities, see PMASA-2016-30 - issue [security] Multiple XSS vulnerabilities, see PMASA-2016-31 - issue [security] Unsafe generation of BlowfishSecret (when not supplied by the user) - issue [security] Referrer leak when phpinfo is enabled - issue [security] PHP code injection, see PMASA-2016-32 - issue [security] Full path disclosure, see PMASA-2016-33 - issue [security] SQL injection attack, see PMASA-2016-34 - issue [security] Local file exposure through LOAD DATA LOCAL INFILE, see PMASA-2016-35 - issue [security] Local file exposure through symlinks with UploadDir, see PMASA-2016-36 - issue [security] Path traversal with SaveDir and UploadDir, see PMASA-2016-37 - issue [security] Multiple XSS vulnerabilities, see PMASA-2016-38 - issue [security] SQL injection vulnerability as control user, see PMASA-2016-39 - issue [security] SQL injection vulnerability, see PMASA-2016-40 - issue [security] Denial-of-service attack through transformation feature, see PMASA-2016-41 - issue [security] SQL injection vulnerability as control user, see PMASA-2016-42 - issue [security] Verify data before unserializing, see PMASA-2016-43 - issue [security] Use HTTPS for wiki links - issue Remove Swekey support - issue [security] SSRF in setup script, see PMASA-2016-44 - issue [security] Denial-of-service attack with $cfg['AllowArbitraryServer'] = true and persistent connections, see PMASA-2016-45 - issue [security] Improve SSL certificate handling - issue [security] Fix full path disclosure in debugging code - issue [security] Possible circumvention of IP-based allow/deny rules with IPv6 and proxy server, see PMASA-2016-47 - issue [security] Detect if user is logged in, see PMASA-2016-48 - issue [security] Bypass URL redirection protection, see PMASA-2016-49 - issue [security] Referrer leak, see PMASA-2016-50 - issue [security] Reflected File Download, see PMASA-2016-51 - issue [security] ArbitraryServerRegexp bypass, see PMASA-2016-52 - issue [security] Denial-of-service attack by entering long password, see PMASA-2016-53 - issue [security] Remote code execution vulnerability when running as CGI, see PMASA-2016-054 - issue [security] Administrators could trigger SQL injection attack against users - issue [security] Denial-of-service attack when PHP uses dbase extension, see PMASA-2016-55 - issue [security] Remove tode execution vulnerability when PHP uses dbase extension, see PMASA-2016-56 - issue [security] Denial-of-service attack by using for loops, see PMASA-2016-46 - issue Include X-Robots-Tag header in responses - issue Enforce numeric field length when creating table - issue Fixed invalid Content-Length in some HTTP responses - issue #12394 Create view should require a view name - issue #12391 Message with 'Change password successfully' displayed, but does not take effect - issue Tighten control on PHP sessions and session cookies - issue #12409 Re-enable overhead on server databases view - issue #12414 Fixed rendering of Original theme - issue #12413 Fixed deleting users in non English locales - issue #12416 Fixed replication status output in Databases listing - issue #12303 Avoid typecasting to float when not needed - issue #12425 Duplicate message variable names in messages.inc.php - issue #12399 Adding index to table shows wrong top navigation - issue #12424 Fixed password change on MariaDB without auth plugin - issue #12339 Do not error on unset server port - issue #12422 Improvements to the original theme - issue #12395 Do not try to load old transformation plugins - issue #12423 Fixed replication status in database listing - issue #12433 Copy table with prefix does not copy the indexes - issue #12375 Search in database: Window content is not scrolling down when clicking first time on Browse link - issue #12346 SQL Editor textareas can have their size increased from the top, distorting the page view @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.104 2016/06/28 13:32:35 taca Exp $ d3 4 a6 4 SHA1 (phpMyAdmin-4.6.4-all-languages.tar.xz) = 9ae9e5a8d917960106f8359ea555e31097e12a77 RMD160 (phpMyAdmin-4.6.4-all-languages.tar.xz) = 445f08b898ad4255e94abfbc4035db3500114f12 SHA512 (phpMyAdmin-4.6.4-all-languages.tar.xz) = 80ee0180c283c6ea139410289f9aa6535077f68812014dd8c7e334bdae0f49171a47b50274172a153d81e5f3145f906fdcda52751ba703fed8158482a924c6b2 Size (phpMyAdmin-4.6.4-all-languages.tar.xz) = 6137016 bytes @ 1.105.4.1 log @Pullup ticket #5179 - requested by taca databases/phpmyadmin: security fix Revisions pulled up: - databases/phpmyadmin/Makefile 1.151 - databases/phpmyadmin/PLIST 1.45 - databases/phpmyadmin/distinfo 1.106 --- Module Name: pkgsrc Committed By: taca Date: Fri Dec 30 04:44:43 UTC 2016 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update phpmyadmin to 4.6.5.2, including security fixes. 4.6.5.2 (2016-12-05) - issue #12765 Fixed SQL export with newlines 4.6.5.1 (2016-11-25) - issue #12735 Incorrect parameters to escapeString in Node.php - issue #12734 Fix PHP error when mbstring is not installed - issue #12736 Don't force partition count to be specified when creating a new table 4.6.5 (2016-11-24) - issue Remove potentionally license problematic sRGB profile - issue #12459 Display read only fields as read only when editing - issue #12384 Fix expanding of navigation pane when clicking on database - issue #12430 Impove partitioning support - issue #12374 Reintroduced simplified PmaAbsoluteUri configuration directive - issue Always use UTC time in HTTP headers - issue #12479 Simplified validation of external links - issue #12483 Fix browsing tables with built in transformations - issue #12485 Do not show warning about short blowfish_secret if none is set - issue #12251 Fixed random logouts due to wrong cookie path - issue #12480 Fixed editing of ENUM/SET/DECIMAL fields structure - issue #12497 Missing escaping of configuration used in SQL (hide_db and only_db) - issue #12476 Add error checking in reading advisory rules file - issue #12477 Add checking missing elements and confirming element types from json_decode - issue #12251 Automatically save SQL query in browser local storage rather than in cookie - issue #12292 Unable to edit transformations - issue #12502 Remove unused paramenter when connecting to MySQLi - issue #12303 Fix number formatting with different settings of precision in PHP - issue #12405 Use single quotes in PHP code - issue #12534 Option for the dropped column is not removed from 'after_field' select, after the column is dropped - issue #12531 Properly detect DROP DATABASE queries - issue #12470 Fix possible race condition in setting URL hash - issue #11924 Remove caching of server information - issue #11628 Proper parsing of INSERT ... ON DUPLICATE KEY queries - issue #12545 Proper parsing of CREATE TABLE ... PARTITION queries - issue #12473 Code can throw unhandled exception - issue #12550 Do not try to keep alive session even after expiry - issue #12512 Fixed rendering BBCode links in setup - issue #12518 Fixed copy of table with generated columns - issue #12221 Fixed export of table with generated columns - issue #12320 Copying a user does not copy usergroup - issue #12272 Adding a new row with default enum goes to no selection when you want to add more then 2 rows - issue #12487 Drag and drop import prevents file dropping to blob column file selector on the insert tab - issue #12554 Absence of scrolling makes it impossible to read longer text values in grid editing - issue #12530 "Edit routine" crashes when the current user is not the definer, even if privileges are adequate - issue #12300 Export selective tables by-default dumps Events also - issue #12298 Fixed export of view definitions - issue #12242 Edit routine detail dialog does not fill "Return length" field in mysql functions - issue #12575 New index Confirm adds whitespace around the field name - issue #12382 Bug in zoom search - issue #12321 Assign LIMIT clause only to syntactically correct queries - issue #12461 Can't Execute SQL With Sub-Query Due To "LIMIT 0,25" Inserted At Wrong Place - issue #12511 Clarify documentation on ArbitraryServerRegexp - issue #12508 Remove duplicate code in SQL escaping - issue #12475 Cleanup code for getting table information - issue #12579 phpMyAdmin's export of a Select statment without a FROM clause generates Wrong SQL - issue #12316 Correct export of complex SELECT statements - issue #12080 Fixed parsing of subselect queries - issue #11740 Fixed handling DELETE ... USING queries - issue #12100 Fixed handling of CASE operator - issue #12455 Query history stores separate entry for every letter typed - issue #12327 Create PHP code no longer works - issue #12179 Fixed bookmarking of query with multiple statements - issue #12419 Wrong description on GRANT OPTION - issue #12615 Fixed regexp for matching browser versions - issue #12569 Avoid showing import errors twice - issue #12362 prefs_manage.php can leave an orphaned temporary file - issue #12619 Unable to export csv when using union select - issue #12625 Broken Edit links in query results of JOIN query - issue #12634 Drop DB error in import if DB doesn't exist - issue #12338 Designer reverts to first saved ER after EACH relation create or delete - issue #12639 'Show trace' in Console generates JS error for functions in query's trace called without any arguments - issue #12366 Fix user creation with certain MariaDB setups - issue #12616 Refuse to work with mbstring.func_overload enabled - issue #12472 Properly report connection without password in setup - issue #12365 Fix records count for large tables - issue #12533 Fix records count for complex queries - issue #12454 Query history not updated in console until page refresh - issue #12344 Fixed parsing of labels in loop - issue #12228 Fixed parsing of BEGIN labels - issue #12637 Fixed editing some timestamp values - issue #12622 Fixed javascript error in designer - issue #12334 Missing page indicator or VIEWs - issue #12610 Export of tables with Timestamp/Datetime/Time columns defined with ON UPDATE clause with precision fails - issue #12661 Error inserting into pma__history after timeout - issue #12195 Row_format = fixed not visible - issue #12665 Cannot add a foreign key - non-indexed fields not listed in InnoDB tables - issue #12674 Allow for proper MySQL-allowed strings as identifiers - issue #12651 Allow for partial dates on table insert page - issue #12681 Fixed designer with tables using special chars - issue #12652 Fixed visual query builder for foreign keys with more fields - issue #12257 Improved search page performance - issue #12322 Avoid selecting default function for foreign keys - issue #12453 Fixed escaping of SQL parts in some corner cases - issue #12542 Missing table name in account privileges editor - issue #12691 Remove ksort call on empty array in PMA_getPlugins function - issue #12443 Check parameter type before processing - issue #12299 Avoid generating too long URLs in search - issue #12361 Fix self SQL injection in table-specific privileges - issue #12698 Add link to release notes and download on new version notification - issue #12712 Error when trying to setup replication (fatal error in call to an old PMA_DBI_connect function) - issue [security] Unsafe generation of $cfg['blowfish_secret'], see PMASA-2016-58 - issue [security] phpMyAdmin's phpinfo functionality is removed, see PMASA-2016-59 - issue [security] AllowRoot and allow/deny rule bypass with specially-crafted username, see PMASA-2016-60 - issue [security] Username matching weaknesses with allow/deny rules, see PMASA-2016-61 - issue [security] Possible to bypass logout timeout, see PMASA-2016-62 - issue [security] Full path disclosure (FPD) weaknesses, see PMASA-2016-63 - issue [security] Multiple XSS weaknesses, see PMASA-2016-64 - issue [security] Multiple denial-of-service (DOS) vulnerabilities, see PMASA-2016-65 - issue [security] Possible to bypass white-list protection for URL redirection, see PMASA-2016-66 - issue [security] BBCode injection to login page, see PMASA-2016-67 - issue [security] Denial-of-service (DOS) vulnerability in table partitioning, see PMASA-2016-68 - issue [security] Multiple SQL injection vulnerabilities, see PMASA-2016-69 - issue [security] Incorrect serialized string parsing, see PMASA-2016-70 - issue [security] CSRF token not stripped from the URL, see PMASA-2016-71 @ text @d1 1 a1 1 $NetBSD$ d3 4 a6 4 SHA1 (phpMyAdmin-4.6.5.2-all-languages.tar.xz) = 0870868690c2f97468cb764a13d5e6b3ffda35c7 RMD160 (phpMyAdmin-4.6.5.2-all-languages.tar.xz) = be40587f74dd1763226764891de38b12c8c30ec6 SHA512 (phpMyAdmin-4.6.5.2-all-languages.tar.xz) = 10fecd5f313b3685b3d4d7c86b20e9466abc54298267f2ed41cf81096fae5bf8472860ac3ebd5ecba8644b43f69eaf944625a8a12beaba637bcefba0940f3a11 Size (phpMyAdmin-4.6.5.2-all-languages.tar.xz) = 6136880 bytes @ 1.104 log @Update phpmyadmin to 4.6.3, including security fixes. pkgsrc change: * Update MASTER_SITES. * Now allow php70. Changes are too many to write here, please refer ChangeLog. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.103 2015/11/03 01:56:25 agc Exp $ d3 4 a6 4 SHA1 (phpMyAdmin-4.6.3-all-languages.tar.xz) = 08f06598de52051d2431aecff330944618a742fd RMD160 (phpMyAdmin-4.6.3-all-languages.tar.xz) = 5c56f83cfa0978df3a4091632418978580c1f616 SHA512 (phpMyAdmin-4.6.3-all-languages.tar.xz) = 6393dc4e03c519dc57bf2b616e5a4ff6efc98feeee84bf864c1d2cc250e19a327967a67497cf0440cec76e9ec11d25c37c61a53f557a867afe53c5a428ad0944 Size (phpMyAdmin-4.6.3-all-languages.tar.xz) = 6111852 bytes @ 1.103 log @Add SHA512 digests for distfiles for databases category Problems found with existing distfiles: distfiles/D6.data.ros.gz distfiles/cstore0.2.tar.gz distfiles/data4.tar.gz distfiles/sphinx-2.2.7-release.tar.gz No changes made to the cstore or mariadb55-client distinfo files. Otherwise, existing SHA1 digests verified and found to be the same on the machine holding the existing distfiles (morden). All existing SHA1 digests retained for now as an audit trail. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.102 2015/03/18 21:25:28 tron Exp $ d3 4 a6 4 SHA1 (phpMyAdmin-4.3.12-all-languages.tar.xz) = bb0c5f440043534145b9db3afb1b62dd05dd42c4 RMD160 (phpMyAdmin-4.3.12-all-languages.tar.xz) = ee53e7daf657641f75f4bc374a61659f3d818fd6 SHA512 (phpMyAdmin-4.3.12-all-languages.tar.xz) = d7bb599ed3f2d5674e0b03df519a8c7a293f8a2814b7d28dab66161e0e3eb40e8e4943f436d113829df5187d1b802cb53dad7495efbeccc64f79d2190df4d688 Size (phpMyAdmin-4.3.12-all-languages.tar.xz) = 5370996 bytes @ 1.102 log @Update "phpmyadmin" package to version 4.3.12. Changes since version 4.3.9: - bug #4746 Right-aligned columns have left-aligned header - bug #4779 PMA_Util::parseEnumSetValues fails on enums with UTF-8 values - bug Undefined index savedsearcheswork - bug #4788 Inline edit of DATE fields with NULL, NULL checkbox is under datepicker - bug #4790 DROP TABLE/VIEW IF EXISTS are not tracked - bug Compatibility with central columns of version 4.4 - bug #4758 Firefox with auth_type to http with multiple server doesn't work anymore - bug #4789 Views aren't dropped when copying a database - bug #4784 Incomplete bookmark saving - bug #4786 SELECT width on relations page - bug [security] Risk of BREACH attack, see PMASA-2015-1 - bug #4774 SQL links are completely wrong - bug #4768 MariaDB: version mismatch - bug #4777 Some images are missing in Designer for original theme - bug #4767 Drizzle: undefined index in mysql_charsets.inc.php - bug #4753 Normal field and multi-line field have different margins - bug #4760 Cannot re-import settings from local storage - bug #4778 SQL error when database list is sorted by additional columns - bug #4780 Notice when timestamp column does not have default value - bug Undefined index navwork - bug #4744 Opening console scroll down the page - bug Remove extra column heading in view structure page - bug Add missing confirmation when deleting central columns - bug Undefined index DisableIS - bug #4763 Database export with more than 512 tables fails - bug #4769 Previously set column aliases are destroyed if returned to the same table - bug #4752 Incorrect page after creating table - bug #4771 Central Columns not working, showing error @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.101 2015/02/18 21:28:10 tron Exp $ d5 1 @ 1.101 log @Update "phpmyadmin" package to version 4.3.9. Changes since version 4.3.6: - bug #4728 Incorrect headings in routine editor - bug #4730 Notice while browsing tables when phpmyadmin pma database exists, but not all the tables - bug #4729 Display original field when using "Relational display column" option and display column is empty - bug #4734 Default values for binary fields do not support binary values - bug #4736 Changing display options breaks query highlighting - bug Undefined index submit_type - bug #4738 Header lose align when scrolling in Firefox - bug #4741 in ./libraries/Advisor.class.php#184 vsprintf(): Too few arguments - bug #4743 Unable to move cursor with keyboard in filter rows box - bug Incorrect link in doc - bug #4745 Tracking does not handle views properly - bug #4706 Schema export doesn't handle dots in db/table name - bug #3935 Table Header not displayed correct (Safari 5.0.5 Mac) - bug #4750 Disable renaming referenced columns - bug #4748 Column name center-aligned instead of left-aligned in Relations - bug Undefined constant PMA_DRIZZLE - bug #4712 Wrongly positioned date-picker while Grid-Editing - bug #4714 Forced ORDER BY for own sql statements - bug #4721 Undefined property: stdClass::$version - bug #4719 'only_db' not working - bug #4700 Error text: Internal Server Error - bug #4722 Incorrect width table summary when favorite tables is disabled - bug #4710 Nav tree error after filtering the tables - bug #4716 Collapse all in navigation panel is sometimes broken - bug #4724 Cannot navigate in filtered table list - bug #4717 Database navigation menu broken when resolution/screen is changing - bug #4727 Collation column missing in database list when DisableIS is true - bug Undefined index central_columnswork - bug Undefined index favorite_tables - bug #4694 js error on marking table as favorite in Safari (in private mode) - bug #4695 Changing $cfg['DefaultTabTable'] doesn't update link and title - bug Undefined index menuswork - bug Undefined index navwork - bug Undefined index central_columnswork - bug #4697 Server Status refresh not behaving as expected - bug Null argument in array_multisort() - bug #4699 Navigation panel should not hide icons based on 'TableNavigationLinksMode' - bug #4703 Unsaved schema page exported as pdf.pdf - bug #4707 Call to undefined method PMA_Schema_PDF::dieSchema() - bug #4702 URL is non RFC-2396 compatible in get_scripts.js.php @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.100 2015/01/12 08:35:37 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.3.9-all-languages.tar.xz) = 9d7149282eea698bef731fe1c4b2638ff7748a64 RMD160 (phpMyAdmin-4.3.9-all-languages.tar.xz) = e5fee143236477ad34b411932ec11fd7b092344d Size (phpMyAdmin-4.3.9-all-languages.tar.xz) = 5442120 bytes @ 1.100 log @Update "phpmyadmin" package to version 4.3.6. Changes since version 4.3.2: - bug Undefined index notices while configuring recent and favorite tables - bug #4687 Designer breaks without configuration storage - bug #4686 Select elements flicker and selects something else - bug #4689 Setup tool creates "pma__favorites" incorrectly - bug #4685 Call to a member function isUserType() on a non-object - bug #4691 Do not include console when no server is selected - bug #4688 File permissions in archive - bug #4692 Dynamic javascripts gives 500 when db selected - bug Auto-configuration: tables were not created automatically - bug #4677 Advanced feature checker does not check for favorite tables feature - bug #4678 Some of the data stored in configuration storage are not deleted upon db or table delete - bug #4679 Setup does not allow providing a name for favorites table - bug #4680 Number of favorite table are not configurable in setup - bug #4681 'Central columns table' field in setup does not have a description - bug #4318 Default connection collation and sorting - bug #4683 Relational data is not properly updated on table rename - bug #4655 Undefined index: collation_connection (second patch) - bug #4682 4.3.3 & 4.3.4 Import sql created by mysqldump fails on foreign keys - bug #4676 Auto-configuration issues - bug #4416 New lines are removed when grid editing (part two: TEXT) - bug #4653 Always connection error was shown, on /setup at tab "configuration storage" - bug #4661 Drag and drop file import always fails - bug #4651 don't open console with esc - bug #4664 select min() displays 1 row, but reports the table amount of rows returned - bug #4666 Undefined indexes in table stucture print view of a view - bug #4663 Export missing back ticks for order table name - bug #4668 Remove from central columns error - bug #4670 CSV import reads both commas and values into first column after first row - bug #4642 phpmyadmin often fails to load due to specific load order - bug #4671 Unable to move all columns - bug #4645 Import of export created with mysqldump - bug #4672 "Distinct values" does not page - bug #4667 Consistency in borders - bug #4658 Illegal string offset (Data_length, Index_length) - bug #4655 Undefined index: collation_connection - bug #4673 Delimiter causing page lock - bug The "Recently used tables" setting should be with Nav panel - bug #4647 Can't disable Favorites - bug #4646 Version Check Broken - bug #4630 AJAX request infinite loop - bug #4649 Attributes field size smaller than others - bug #4622 Cannot remove table ordering on a Mac - bug Fix initial replication configuration - bug Undefined index central_columnswork - bug #4657 Don't have default blowfish_secret - bug #4656 Some error popups fade away too quickly - bug #4648 Consistency in borders - bug $cfg['Error_Handler']['display'] no longer necessary - bug #4659 Leading and trailing whitespace in column name @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.99 2014/12/14 09:16:23 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.3.6-all-languages.tar.xz) = e0c7048212354a7d77cb8ce35f803007ca376637 RMD160 (phpMyAdmin-4.3.6-all-languages.tar.xz) = 41e2a4a07d72fa323ff94aa1c7187706ff0c8f03 Size (phpMyAdmin-4.3.6-all-languages.tar.xz) = 5449548 bytes @ 1.99 log @Update "phpmyadmin" package to version 4.3.2. Changes since version 4.3.1: - bug #4628 PHP error while exporting schema as PDF - bug #4631 Server selector submits two server parameter values - bug #4629 Problem with custom SQL queries using cookie authentication - bug Undefined index central_columnswork - bug #4632 Notice in ./libraries/Util.class.php#1916 Undefined index: query - bug #4633 Wrong parameter in fetchValue - bug #4634 Error reporting creates an infinite loop - bug #4635 Token mismatch while creating configuration storage - bug #4640 Incorrect reference to PHP 6 - bug #3794 failure to handle repeating empty columns when importing ODS - bug #4638 Default Export Method setting broken - bug #4639 Export SQL missing indentation first field - bug #4644 Error when browsing tables - bug #4637 Field Alignment @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.98 2014/12/10 20:34:34 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.3.2-all-languages.tar.xz) = 7fc284fddd21a6d66598e9d49e4aa5d865854821 RMD160 (phpMyAdmin-4.3.2-all-languages.tar.xz) = 6fea5eba19f2f340ea2bdb19f7fbd6e892e8086e Size (phpMyAdmin-4.3.2-all-languages.tar.xz) = 5369772 bytes @ 1.98 log @Update "phpmyadmin" package to version 4.3.1. The major changes in version 4.3.* are: - Smart sorting for int keys - Confirmation message when dropping user(s) - Confirm dialog on accidentally leaving a page - Allow clicking an approximate row count to get a correct one - Support for editing binary fields in hexadecimal - MariaDB 10+ multi-master replication support - Allow saving query charts as images - Use aliases in SQL export for tables and columns - Export with table/column name changes - Dynamic process list - Drag and Drop SQL import - Preview SQL instead of executing it - Run SQL query: Allow rollback for InnoDB tables - Zeroconf PMA tables support - Regexp replace - Avoid session timeout when user is active - MySQL 5.7.5 compatibility - Avoid session timeout when user is active - Multiple-column foreign key relation - Charts for data in format - Range Search Capability - Improvements for the table editor (index creation) - PHP OpenSSL support for cookie encryption/decryption @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.97 2014/12/07 14:27:29 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.3.1-all-languages.tar.xz) = 6bfc87560990af66951eccff0308fd86de36664f RMD160 (phpMyAdmin-4.3.1-all-languages.tar.xz) = 2732fd3d510c528f8e0f7f995cce1c7ba0b81a0e Size (phpMyAdmin-4.3.1-all-languages.tar.xz) = 5370420 bytes @ 1.97 log @Use significantly smaller ".tar.xz" distribution file now that downloads from the master site are working again. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.96 2014/12/07 12:37:54 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.13.1-all-languages.tar.xz) = 5d2d2adb0e4d39dd0a1bab3576ae80ed330d3b3f RMD160 (phpMyAdmin-4.2.13.1-all-languages.tar.xz) = c980e24a01a6df87c79597ae848226539c13b7d9 Size (phpMyAdmin-4.2.13.1-all-languages.tar.xz) = 5205324 bytes @ 1.96 log @Update "phpmyadmin" package to version 4.2.13.1. Changes since version 4.2.12: - bug #4604 Query history not being deleted - bug #4057 db/table query string parameters no longer work - bug #4605 Unseen messages in tracking - bug #4606 Tracking report export as SQL dump does not work - bug #4607 Syntax error during db_copy operation - bug #4608 SELECT permission issues with relations and restricted access - bug #4612 [security] XSS vulnerability in redirection mechanism - bug #4611 [security] DOS attack with long passwords @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.95 2014/11/23 13:17:21 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.13.1-all-languages.tar.gz) = 98b24f6ff0f73356b7b17f398f40fe1aea7d66b1 RMD160 (phpMyAdmin-4.2.13.1-all-languages.tar.gz) = e01931fa8417abe873babc7b0e48c87885244e4b Size (phpMyAdmin-4.2.13.1-all-languages.tar.gz) = 8753670 bytes @ 1.95 log @Update "phpmyadmin" package to version 4.2.12. The following bugs have been fixed since version 4.2.10.1: - bug #4574 Blank/white page when JavaScript disabled - bug #4577 Multi row actions cause full page reloads - bug ReferenceError: targeurl is not defined - bug Incorrect text/icon display in Tracking report - bug #4404 Recordset return from procedure display nothing - bug #4584 Edit dialog for routines is too long for smaller displays - bug #4586 Javascript error after moving a column - bug #4576 Issue with long comments on table columns - bug #4599 Input field unnecessarily selected on focus - bug #4602 Exporting selected rows exports all rows of the query - bug #4444 No insert statement produced in SQL export for queries with alias - bug #4603 Field disabled when internal relations used - bug #4596 [security] XSS through exception stack - bug #4595 [security] Path traversal can lead to leakage of line count - bug #4578 [security] XSS vulnerability in table print view - bug #4579 [security] XSS vulnerability in zoom search page - bug #4594 [security] Path traversal in file inclusion of GIS factory - bug #4598 [security] XSS in multi submit - bug #4597 [security] XSS through pma_fontsize cookie - bug ReferenceError: Table_onover is not defined - bug #4552 Incorrect routines display for database due to case insensitive checks - bug #4259 reCaptcha sound session expired problem - bug #4557 PHP fatal error, undefined function __() - bug #4568 Date displayed incorrectly when charting a timeline - bug #4571 Database Privileges link does not work - bug makegrid.js: where_clause is undefined - bug #4572 missing trailing slash (import and open_basedir) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.94 2014/10/26 07:31:38 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.12-all-languages.tar.xz) = a1111cb2bfec0f1dfb762009a324ab93d451c82c RMD160 (phpMyAdmin-4.2.12-all-languages.tar.xz) = e78a7be7931672179b720734d10e441fb03f3ae7 Size (phpMyAdmin-4.2.12-all-languages.tar.xz) = 5203736 bytes @ 1.94 log @Update "phpmyadmin" package to version 4.2.10.1. The following bugs have been fixed since version 4.2.10: - bug #4562 [security] XSS in debug SQL output - bug #4563 [security] XSS in monitor query analyzer @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.93 2014/10/19 10:43:12 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.10.1-all-languages.tar.xz) = b691659361d40d5777d1f62fb7982cd49469ac4d RMD160 (phpMyAdmin-4.2.10.1-all-languages.tar.xz) = f468c281c9e89211cfdbc61fb7444dadb7e6142c Size (phpMyAdmin-4.2.10.1-all-languages.tar.xz) = 5211604 bytes @ 1.93 log @Update "phpmyadmin" package to version 4.2.10. The following bugs have been fixed since version 4.2.9.1: - bug #4361 Can't change font size (when config.inc.php not present) - bug #4542 Tab key in column name not shown - bug PDF export: title not present in PDF - bug #4543 Changing column name can break saved "order by" clause - bug #4545 trying to favorite table while browser localStorage is disabled throws JS error - bug #4259 reCaptcha sound session expired problem - bug #4548 Inline editing a field converts tab to spaces - bug #4252 Database-level permission bug for db names containing underscores - bug #3120 Events are not exported when using xml - bug #4554 Grid-editing timestamp column forces datepicker - bug #4556 Fast filters for tables, views etc. should be governed by NavigationTreeDisplayItemFilterMinimum @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.92 2014/10/04 15:35:49 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.10-all-languages.tar.xz) = dd53d36a2b2bb006c0dcb1ab273b96791471697d RMD160 (phpMyAdmin-4.2.10-all-languages.tar.xz) = 0fc876d47f0754fedea057420f58ba08907d4cb2 Size (phpMyAdmin-4.2.10-all-languages.tar.xz) = 5139012 bytes @ 1.92 log @Update "phpmyadmin" package to version 4.2.9.1. The following bugs have been fixed since version 4.2.9: - bug #4544 [security] XSS vulnerabilities in table search and table structure pages @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.91 2014/09/23 13:47:31 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.9.1-all-languages.tar.xz) = e314ebf3ec5e6742c79ed6141d44b13f2d5b3491 RMD160 (phpMyAdmin-4.2.9.1-all-languages.tar.xz) = ce62d1eebe65116f22c93243b03b291fd77ccc91 Size (phpMyAdmin-4.2.9.1-all-languages.tar.xz) = 5217840 bytes @ 1.91 log @Update "phpmyadmin" package to version 4.2.9. The following bugs have been fixed since version 4.2.7.1: - bug ajax.js responseHandler: cannot read property of null - bug sql.js: str is undefined - bug #4524 Allow for direct selection of "0" on the "user overview" page - bug #4529 Undefined index: pos - bug #4523 tbl_change.js: insert as new row submit type on multiple selected records does not set all AUTO_INCREMENTs to 0 value - bug ajax.js responseHandler: another "cannot read property" - bug tbl_structure.js "cannot read property" - bug #4530 [security] DOM based XSS that results to a CSRF that creates a ROOT account in certain conditions - bug #4516 Odd export behavior - bug #4519 Uncaught TypeError: Cannot read property 'success' of null - bug #4520 sql.js: cannot read property - bug #4521 Initially allowed chart types do not match selected data - bug #4518 Export to SQL: CREATE TABLE option AUTO_INCREMENT ignored - bug #4522 Duplicate column names while assigning index - bug #4487 Export of partitioned table does not import - bug server_privileges.js: cannot read property - bug #4527 Importing ODS files with column names having trailing spaces fails - bug #4413 Navigation Error in Nav Tree for Search Results Past the First Page - bug functions.js: Cannot read property 'replace' of undefined @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.90 2014/08/27 21:25:44 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.9-all-languages.tar.xz) = 42ee931e87b5ecbe0ff4c9e092ab4ec809044d87 RMD160 (phpMyAdmin-4.2.9-all-languages.tar.xz) = 791dd359c70b6653dfdc0a7f0c4defb0678b9f8d Size (phpMyAdmin-4.2.9-all-languages.tar.xz) = 5148452 bytes @ 1.91.2.1 log @Pullup ticket #4515 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.135 - databases/phpmyadmin/distinfo 1.92 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sat Oct 4 15:35:49 UTC 2014 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 4.2.9.1. The following bugs have been fixed since version 4.2.9: - bug #4544 [security] XSS vulnerabilities in table search and table structure pages To generate a diff of this commit: cvs rdiff -u -r1.134 -r1.135 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.91 -r1.92 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.91 2014/09/23 13:47:31 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.9.1-all-languages.tar.xz) = e314ebf3ec5e6742c79ed6141d44b13f2d5b3491 RMD160 (phpMyAdmin-4.2.9.1-all-languages.tar.xz) = ce62d1eebe65116f22c93243b03b291fd77ccc91 Size (phpMyAdmin-4.2.9.1-all-languages.tar.xz) = 5217840 bytes @ 1.91.2.2 log @Pullup ticket #4530 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.136-1.137 - databases/phpmyadmin/distinfo 1.93-1.94 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sun Oct 19 10:43:12 UTC 2014 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 4.2.10. The following bugs have been fixed since version 4.2.9.1: - bug #4361 Can't change font size (when config.inc.php not present) - bug #4542 Tab key in column name not shown - bug PDF export: title not present in PDF - bug #4543 Changing column name can break saved "order by" clause - bug #4545 trying to favorite table while browser localStorage is disabled throws JS error - bug #4259 reCaptcha sound session expired problem - bug #4548 Inline editing a field converts tab to spaces - bug #4252 Database-level permission bug for db names containing underscor= es - bug #3120 Events are not exported when using xml - bug #4554 Grid-editing timestamp column forces datepicker - bug #4556 Fast filters for tables, views etc. should be governed by NavigationTreeDisplayItemFilterMinimum To generate a diff of this commit: cvs rdiff -u -r1.135 -r1.136 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.92 -r1.93 pkgsrc/databases/phpmyadmin/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sun Oct 26 07:31:38 UTC 2014 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 4.2.10.1. The following bugs have been fixed since version 4.2.10: - bug #4562 [security] XSS in debug SQL output - bug #4563 [security] XSS in monitor query analyzer To generate a diff of this commit: cvs rdiff -u -r1.136 -r1.137 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.93 -r1.94 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.91.2.1 2014/10/10 12:43:11 spz Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.10.1-all-languages.tar.xz) = b691659361d40d5777d1f62fb7982cd49469ac4d RMD160 (phpMyAdmin-4.2.10.1-all-languages.tar.xz) = f468c281c9e89211cfdbc61fb7444dadb7e6142c Size (phpMyAdmin-4.2.10.1-all-languages.tar.xz) = 5211604 bytes @ 1.91.2.3 log @Pullup ticket #4554 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.138 - databases/phpmyadmin/distinfo 1.95 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sun Nov 23 13:17:21 UTC 2014 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 4.2.12. The following bugs have been fixed since version 4.2.10.1: - bug #4574 Blank/white page when JavaScript disabled - bug #4577 Multi row actions cause full page reloads - bug ReferenceError: targeurl is not defined - bug Incorrect text/icon display in Tracking report - bug #4404 Recordset return from procedure display nothing - bug #4584 Edit dialog for routines is too long for smaller displays - bug #4586 Javascript error after moving a column - bug #4576 Issue with long comments on table columns - bug #4599 Input field unnecessarily selected on focus - bug #4602 Exporting selected rows exports all rows of the query - bug #4444 No insert statement produced in SQL export for queries with ali= as - bug #4603 Field disabled when internal relations used - bug #4596 [security] XSS through exception stack - bug #4595 [security] Path traversal can lead to leakage of line count - bug #4578 [security] XSS vulnerability in table print view - bug #4579 [security] XSS vulnerability in zoom search page - bug #4594 [security] Path traversal in file inclusion of GIS factory - bug #4598 [security] XSS in multi submit - bug #4597 [security] XSS through pma_fontsize cookie - bug ReferenceError: Table_onover is not defined - bug #4552 Incorrect routines display for database due to case insensitive checks - bug #4259 reCaptcha sound session expired problem - bug #4557 PHP fatal error, undefined function __() - bug #4568 Date displayed incorrectly when charting a timeline - bug #4571 Database Privileges link does not work - bug makegrid.js: where_clause is undefined - bug #4572 missing trailing slash (import and open_basedir) To generate a diff of this commit: cvs rdiff -u -r1.137 -r1.138 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.94 -r1.95 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.91.2.2 2014/11/02 20:27:55 spz Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.12-all-languages.tar.xz) = a1111cb2bfec0f1dfb762009a324ab93d451c82c RMD160 (phpMyAdmin-4.2.12-all-languages.tar.xz) = e78a7be7931672179b720734d10e441fb03f3ae7 Size (phpMyAdmin-4.2.12-all-languages.tar.xz) = 5203736 bytes @ 1.91.2.4 log @Pullup ticket #4567 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.139-1.140 - databases/phpmyadmin/distinfo 1.96-1.97 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sun Dec 7 12:37:54 UTC 2014 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 4.2.13.1. Changes since version 4.2.= 12: - bug #4604 Query history not being deleted - bug #4057 db/table query string parameters no longer work - bug #4605 Unseen messages in tracking - bug #4606 Tracking report export as SQL dump does not work - bug #4607 Syntax error during db_copy operation - bug #4608 SELECT permission issues with relations and restricted access - bug #4612 [security] XSS vulnerability in redirection mechanism - bug #4611 [security] DOS attack with long passwords To generate a diff of this commit: cvs rdiff -u -r1.138 -r1.139 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.95 -r1.96 pkgsrc/databases/phpmyadmin/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sun Dec 7 14:27:29 UTC 2014 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Use significantly smaller ".tar.xz" distribution file now that downloads =66rom the master site are working again. To generate a diff of this commit: cvs rdiff -u -r1.139 -r1.140 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.96 -r1.97 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.91.2.3 2014/11/23 23:27:36 spz Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.13.1-all-languages.tar.xz) = 5d2d2adb0e4d39dd0a1bab3576ae80ed330d3b3f RMD160 (phpMyAdmin-4.2.13.1-all-languages.tar.xz) = c980e24a01a6df87c79597ae848226539c13b7d9 Size (phpMyAdmin-4.2.13.1-all-languages.tar.xz) = 5205324 bytes @ 1.90 log @Update "phpmyadmin" package to version 4.2.7.1. The following bugs have been fixed since version 4.2.7: - bug #4501 [security] XSS in table browse page - bug #4502 [security] Self-XSS in enum value editor - bug #4503 [security] Self-XSSes in monitor - bug #4504 [security] Self-XSS in query charts - bug #4505 [security] XSS in view operations page - bug #4517 [security] XSS in relation view @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.89 2014/08/06 20:23:10 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.7.1-all-languages.tar.xz) = 2d1fe1190fc039822a3b79f405d14a94def21ef5 RMD160 (phpMyAdmin-4.2.7.1-all-languages.tar.xz) = bced5f50d2cfe02467fde90046140dca1339e757 Size (phpMyAdmin-4.2.7.1-all-languages.tar.xz) = 5138420 bytes @ 1.89 log @Update "phpmyadmin" package to version 4.2.7. The following bugs have been fixed since version 4.2.6: - bug Broken links on home page - bug #4494 Overlap in navigation panel - bug #4427 Action icons not in horizontal order - bug #4493 s_attention.png is missing - bug #4499 Uncaught TypeError: Cannot call method 'substr' of undefined - bug #4498 PMA 4.2.x and HHVM - bug #4500 mysql_doc_template is not defined @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.88 2014/07/26 10:33:02 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.7-all-languages.tar.xz) = 3e4458f61edd6d4d8207d61cade49ae79730e126 RMD160 (phpMyAdmin-4.2.7-all-languages.tar.xz) = 8b85c1f062f7f974b802b0ce2b7123042aeb3f7e Size (phpMyAdmin-4.2.7-all-languages.tar.xz) = 5137872 bytes @ 1.88 log @Update "phpmyadmin" package to version 4.2.6. The following bugs have been fixed since version 4.2.5: - bug #4471 Undefined index warning with referenced column. - bug #4027 $cfg['MaxExactCount'] is ignored when BROWSING is back - bug #4482 Multi Column sorting (improved user experience) - bug #4478 Server validation does not work while in setup/mysqli - bug Undefined variable when grid editing a foreign key column - bug #4481 mult_submits.inc.php Undefined variable Error - bug #4485 Sorting breaks the copy column feature - bug #4440 Javascript error when renaming table - bug #4483 'New window' link (selflink) disappears, causing Javascript error - bug #4489 Incorrect detection of privileges for routine creation - bug #4459 First few characters of database name aren't clickable when expanded - bug #4486 [security] XSS injection due to unescaped table comment - bug #4488 [security] XSS injection due to unescaped table name (triggers) - bug #4492 [security] XSS in AJAX confirmation messages - bug #4491 [security] Missing validation for accessing User groups feature @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.87 2014/07/13 07:39:04 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.6-all-languages.tar.xz) = 8cf175f19ed820444501a68f94c3349be607941a RMD160 (phpMyAdmin-4.2.6-all-languages.tar.xz) = 7695fc90c3d33bfa1908a06eaa93066f2a76110f Size (phpMyAdmin-4.2.6-all-languages.tar.xz) = 5134224 bytes @ 1.87 log @Update "phpmyadmin" package to version 4.2.5. The following bugs have been fixed since version 4.2.3: - bug #4467 shell_exec() has been disabled for security reasons - bug #4470 Error while submitting empty query - bug #4463 Fatal error: Class 'PMA_DatabaseInterface' not found - bug #4469 Fixed cookie based login for installations without mcrypt - bug #4473 incorrect result count when having clause is used - mcrypt: remove the requirement (64-bit) and the related warning - bug #4449 Mediawiki export does not produce table header row; also fix related PHP warnings - bug #4442 New lines are added to query every time - bug #4445 Fatal error on SQL Export of join query - bug #4448 Dump binary columns in hexadecimal notation not working - Regenerate cookie encryption IV for every session - bug #4405 Cannot import (open_basedir): fix another case - bug #4457 SQL tab - Insert queries not showing affected row count - bug Missing warning about existing account, on multi-server config - bug #4435 WHERE clause can be undefined - bug SQL export views as tables option getting ignored - bug #4464 [security] XSS injection due to unescaped db/table name in navigation hiding - bug #4465 [security] XSS injection due to unescaped db/table name in recent/favorite tables @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.86 2014/06/09 17:30:56 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.5-all-languages.tar.xz) = 5fb995b9e8d0239ad2d2f7f536bb67f7ca46177f RMD160 (phpMyAdmin-4.2.5-all-languages.tar.xz) = 2dff82dcba61cdadad9d29e57a47734654b7e0b3 Size (phpMyAdmin-4.2.5-all-languages.tar.xz) = 5200328 bytes @ 1.86 log @Update "phpmyadmin" package to version 4.2.3. Changes since version 4.2.2: - bug #4423 Moving fields not working - bug #4424 Table indexes disappear after altering field - bug #4432 Error while displaying chart at server level - bug #4405 Cannot import (open_basedir) - bug #4396 Problem copying constraints (such as Sakila) - bug #4433 Missing privileges submenu - bug #4394 Drop db confirmation message when dropping a user - bug #4436 Insert form numeric field with function drop-down list - bug #4437 Problems due to missing enforcement of the minimum supported MySQL version + Add enforcement of the minimum supported PHP version (5.3.0) - bug Query error on submitting a column change form containing a disabled input field - bug Incorrect menu tab generation from usergroups - bug Missing space in index creation/edit generated query - bug #4434 Unchecking 'Show SQL queries' results NaN @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.85 2014/06/04 20:40:33 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.3-all-languages.tar.xz) = cb2fd0a238fea7de25bd8020bfc23cc1ca801572 RMD160 (phpMyAdmin-4.2.3-all-languages.tar.xz) = 1cfbc0c0f046cdd91b781ded82ddf2cfa6ccc5d4 Size (phpMyAdmin-4.2.3-all-languages.tar.xz) = 5092112 bytes @ 1.86.2.1 log @Pullup ticket #4451 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.130 - databases/phpmyadmin/distinfo 1.87 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sun Jul 13 07:39:04 UTC 2014 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 4.2.5. The following bugs have been fixed since version 4.2.3: - bug #4467 shell_exec() has been disabled for security reasons - bug #4470 Error while submitting empty query - bug #4463 Fatal error: Class 'PMA_DatabaseInterface' not found - bug #4469 Fixed cookie based login for installations without mcrypt - bug #4473 incorrect result count when having clause is used - mcrypt: remove the requirement (64-bit) and the related warning - bug #4449 Mediawiki export does not produce table header row; also fix related PHP warnings - bug #4442 New lines are added to query every time - bug #4445 Fatal error on SQL Export of join query - bug #4448 Dump binary columns in hexadecimal notation not working - Regenerate cookie encryption IV for every session - bug #4405 Cannot import (open_basedir): fix another case - bug #4457 SQL tab - Insert queries not showing affected row count - bug Missing warning about existing account, on multi-server config - bug #4435 WHERE clause can be undefined - bug SQL export views as tables option getting ignored - bug #4464 [security] XSS injection due to unescaped db/table name in navigation hiding - bug #4465 [security] XSS injection due to unescaped db/table name in recent/favorite tables To generate a diff of this commit: cvs rdiff -u -r1.129 -r1.130 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.86 -r1.87 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.86 2014/06/09 17:30:56 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.5-all-languages.tar.xz) = 5fb995b9e8d0239ad2d2f7f536bb67f7ca46177f RMD160 (phpMyAdmin-4.2.5-all-languages.tar.xz) = 2dff82dcba61cdadad9d29e57a47734654b7e0b3 Size (phpMyAdmin-4.2.5-all-languages.tar.xz) = 5200328 bytes @ 1.86.2.2 log @Pullup ticket #4464 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.131 - databases/phpmyadmin/PLIST 1.37 - databases/phpmyadmin/distinfo 1.88 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sat Jul 26 10:33:02 UTC 2014 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 4.2.6. The following bugs have been fixed since version 4.2.5: - bug #4471 Undefined index warning with referenced column. - bug #4027 $cfg['MaxExactCount'] is ignored when BROWSING is back - bug #4482 Multi Column sorting (improved user experience) - bug #4478 Server validation does not work while in setup/mysqli - bug Undefined variable when grid editing a foreign key column - bug #4481 mult_submits.inc.php Undefined variable Error - bug #4485 Sorting breaks the copy column feature - bug #4440 Javascript error when renaming table - bug #4483 'New window' link (selflink) disappears, causing Javascript err= or - bug #4489 Incorrect detection of privileges for routine creation - bug #4459 First few characters of database name aren't clickable when expanded - bug #4486 [security] XSS injection due to unescaped table comment - bug #4488 [security] XSS injection due to unescaped table name (triggers) - bug #4492 [security] XSS in AJAX confirmation messages - bug #4491 [security] Missing validation for accessing User groups feature To generate a diff of this commit: cvs rdiff -u -r1.130 -r1.131 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.36 -r1.37 pkgsrc/databases/phpmyadmin/PLIST cvs rdiff -u -r1.87 -r1.88 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.86.2.1 2014/07/15 06:53:41 spz Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.6-all-languages.tar.xz) = 8cf175f19ed820444501a68f94c3349be607941a RMD160 (phpMyAdmin-4.2.6-all-languages.tar.xz) = 7695fc90c3d33bfa1908a06eaa93066f2a76110f Size (phpMyAdmin-4.2.6-all-languages.tar.xz) = 5134224 bytes @ 1.86.2.3 log @Pullup ticket #4490 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.132-1.133 - databases/phpmyadmin/PLIST 1.38 - databases/phpmyadmin/distinfo 1.89-1.90 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Wed Aug 6 20:23:10 UTC 2014 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 4.2.7. The following bugs have been fixed since version 4.2.6: - bug Broken links on home page - bug #4494 Overlap in navigation panel - bug #4427 Action icons not in horizontal order - bug #4493 s_attention.png is missing - bug #4499 Uncaught TypeError: Cannot call method 'substr' of undefined - bug #4498 PMA 4.2.x and HHVM - bug #4500 mysql_doc_template is not defined To generate a diff of this commit: cvs rdiff -u -r1.131 -r1.132 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.37 -r1.38 pkgsrc/databases/phpmyadmin/PLIST cvs rdiff -u -r1.88 -r1.89 pkgsrc/databases/phpmyadmin/distinfo ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Wed Aug 27 21:25:44 UTC 2014 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 4.2.7.1. The following bugs have been fixed since version 4.2.7: - bug #4501 [security] XSS in table browse page - bug #4502 [security] Self-XSS in enum value editor - bug #4503 [security] Self-XSSes in monitor - bug #4504 [security] Self-XSS in query charts - bug #4505 [security] XSS in view operations page - bug #4517 [security] XSS in relation view To generate a diff of this commit: cvs rdiff -u -r1.132 -r1.133 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.89 -r1.90 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.86.2.2 2014/07/27 06:37:19 spz Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.7.1-all-languages.tar.xz) = 2d1fe1190fc039822a3b79f405d14a94def21ef5 RMD160 (phpMyAdmin-4.2.7.1-all-languages.tar.xz) = bced5f50d2cfe02467fde90046140dca1339e757 Size (phpMyAdmin-4.2.7.1-all-languages.tar.xz) = 5138420 bytes @ 1.86.2.4 log @Pullup ticket #4502 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.134 - databases/phpmyadmin/PLIST 1.39 - databases/phpmyadmin/distinfo 1.91 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Tue Sep 23 13:47:31 UTC 2014 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 4.2.9. The following bugs have been fixed since version 4.2.7.1: - bug ajax.js responseHandler: cannot read property of null - bug sql.js: str is undefined - bug #4524 Allow for direct selection of "0" on the "user overview" page - bug #4529 Undefined index: pos - bug #4523 tbl_change.js: insert as new row submit type on multiple selected records does not set all AUTO_INCREMENTs to 0 value - bug ajax.js responseHandler: another "cannot read property" - bug tbl_structure.js "cannot read property" - bug #4530 [security] DOM based XSS that results to a CSRF that creates a ROOT account in certain conditions - bug #4516 Odd export behavior - bug #4519 Uncaught TypeError: Cannot read property 'success' of null - bug #4520 sql.js: cannot read property - bug #4521 Initially allowed chart types do not match selected data - bug #4518 Export to SQL: CREATE TABLE option AUTO_INCREMENT ignored - bug #4522 Duplicate column names while assigning index - bug #4487 Export of partitioned table does not import - bug server_privileges.js: cannot read property - bug #4527 Importing ODS files with column names having trailing spaces fa= ils - bug #4413 Navigation Error in Nav Tree for Search Results Past the First = Page - bug functions.js: Cannot read property 'replace' of undefined To generate a diff of this commit: cvs rdiff -u -r1.133 -r1.134 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.38 -r1.39 pkgsrc/databases/phpmyadmin/PLIST cvs rdiff -u -r1.90 -r1.91 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.86.2.3 2014/08/27 22:57:04 spz Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.9-all-languages.tar.xz) = 42ee931e87b5ecbe0ff4c9e092ab4ec809044d87 RMD160 (phpMyAdmin-4.2.9-all-languages.tar.xz) = 791dd359c70b6653dfdc0a7f0c4defb0678b9f8d Size (phpMyAdmin-4.2.9-all-languages.tar.xz) = 5148452 bytes @ 1.85 log @Update "phpmyadmin" package to version 4.2.2: This release contains several improvements and bug fixes. This version removes support for the deprecated PHP extension "mysql". Some highlights include: - Added the ability to save and load queries in Query By Example. - Navigation tabs are now fixed and don't scroll off screen. - Easily add a function to all rows when inserting several rows at once. - Added a favorite tables feature for quick access to often-used tables. - Quick filter displayed rows. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.84 2014/04/28 19:56:40 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.2.2-all-languages.tar.xz) = 59661c47d73b8b96fffc4358bc82190c7ae083ea RMD160 (phpMyAdmin-4.2.2-all-languages.tar.xz) = 8d42c8a5470a2dc24be6598e514f0193d6d00313 Size (phpMyAdmin-4.2.2-all-languages.tar.xz) = 5156760 bytes @ 1.84 log @Update "phpmyadmin" package to version 4.1.14. The following bugs were fixed since version 4.1.13: - bug #4365 Creating bookmark with multiple queries not working - bug #4372 Changing browser transformation results in unnecessary table rebuild - bug #4375 Group two DB, one's name is the prefix of the other one - bug #4376 [interface] Login fields show in separate line @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.83 2014/04/13 17:56:12 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.1.14-all-languages.tar.xz) = 320b58e586ca7d4fcd86c5dbc3ef23a2a4123a93 RMD160 (phpMyAdmin-4.1.14-all-languages.tar.xz) = 712a9db8e563aeb400e78e5e1ad67108f73994fa Size (phpMyAdmin-4.1.14-all-languages.tar.xz) = 4810240 bytes @ 1.83 log @Update "phpmyadmin" package to version 4.1.13. The following bugs were fixed since version 4.1.12: - bug #4279 CTRL + up or down moves 2 fields - bug #4336 List server css style wrong - bug Missing value on the Status > Server page - bug #4347 Fixed PHP Parse error in Advisor - bug #4350 Deleting the DB if it is renamed by the same name - bug #4353 makeProfilingChart is not defined - bug #4355 Precision specifier for DOUBLE type is truncated - bug #4346 Incorrect "Export incomplete" message - bug #4359 Notices on create table page - bug #4356 GROUPed selects show number of rows as if not grouped - bug #4357 JS Form submitted on "enter" even if focus is inside a select field @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.82 2014/04/09 19:52:15 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.1.13-all-languages.tar.xz) = 0b949a1095536a6175a6edecd542eadfbf7ce11b RMD160 (phpMyAdmin-4.1.13-all-languages.tar.xz) = 71f0ffc6ac113eb3d79aee8f4f6c022f680fc856 Size (phpMyAdmin-4.1.13-all-languages.tar.xz) = 4811348 bytes @ 1.82 log @Update "phpmyadmin" package to version 4.1.12. The following bugs were fixed since version 4.1.9: - bug #4334 Add event : datepicker won't open - bug #4338 Fix missing value error while executing SQL query - TCPDF library is now optional dependency - bug #4326 Cannot find the import plugins which start with uppercase 'I' - bug #4301 Grid edit: "SELECT" query is replaced by "UPDATE" query after edit - bug #4278 reCaptcha re-login requires double effort - bug #4324 Datepicker not showing up on insert page - bug #3991 Problem selecting item in select boxes with the ENTER keystroke in some browsers - bug #4323 QueryWindow ignores CodeMirror - bug None of the live charts shown on "Status -> Monitor" (Chrome) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.81 2014/03/08 13:07:42 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.1.12-all-languages.tar.xz) = 0f8fc7c559f0f507948a7eff981f119bebcefaec RMD160 (phpMyAdmin-4.1.12-all-languages.tar.xz) = 373dcb879349a9fa294f07ba4ffaf8bf2fc28e4d Size (phpMyAdmin-4.1.12-all-languages.tar.xz) = 4872100 bytes @ 1.81 log @Update "phpmyadmin" package to version 4.1.9. The following bugs have been fixed since the release of version 4.1.7: - bug #4279 CTRL + up or down moves two fields (part one) - bug #4294 output as text radio clickable for "OpenDocument Text" export - bug #4297 DROP DATABASE tick box in export no longer works - bug #4291 Unable to export comments in OpenDocument text format - bug #4299 Deletion even when the user says "No" to the confirmation message - bug #4303 "New" link in navi panel is shown even if no privileges - bug #4302 Some params are being omitted from microhistory - bug #4298 Missing validation on Import CSV: "Columns enclosed with" and "Columns escaped with" - bug #4040 Fatal error while resetting settings - bug #4305 JS error when editing procedure from nav panel - bug #4308 Edit routine form submitting when pressing enter - bug #4307 Nav: "Columns" won't expand with specific schema - bug #4276 Login loop on session expiry - bug #4249 Incorrect number of result rows for SQL with subqueries - bug #4275 Broken Link to php extension manual - bug #4053 List of procedures is not displayed after executing with Enter - bug #4081 Setup page content shifted to the right edge of its tabs - bug #4284 Reordering a column erases comments for other columns - bug #4286 Open "Browse" in a new tab - bug #4287 Printview - Always one column too much - bug #4288 Expand database (+ icon) after timeout doesn't do anything - bug #4285 Fixed CSS for setup - Fixed altering table to DOUBLE/FLOAT field - bug #4292 Success message and failure message being shown together - bug #4293 opening new tab (using selflink) for import.php based actions results in error and logout @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.80 2014/02/22 11:14:57 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.1.9-all-languages.tar.xz) = f069e4c0ceae7d2ad585d81297cc30ea187d9197 RMD160 (phpMyAdmin-4.1.9-all-languages.tar.xz) = c2490ef58b9e05370a6bba8aff6684aecb8cb43c Size (phpMyAdmin-4.1.9-all-languages.tar.xz) = 4869148 bytes @ 1.80 log @Update "phpmyadmin" package to version 4.1.7. Changes since version 4.0.10: - This release contains many improvements and bug fixes. With this release the minimum supported PHP version is now 5.3 and the minimum MySQL version is 5.5. - Allow specifying a port when connecting to the controlhost - User interface improvements to server privileges, view creation, the Operations tab, Relation View, and when creating new users - Added support for AES_ENCRYPT on BLOB columns - Added support for relations with ndbcluser - Added optional ReCAPTCHA support during login - Added support for fractional seconds in time, datetime, and timestamp columns - Added find and replace by column - Added the Error Reporting Component, an optional feature allowing users to report certain errors directly to the phpMyAdmin bug team - Added configurable menus (so an administrator can hide certain features) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.79 2013/12/06 18:34:54 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.1.7-all-languages.tar.xz) = a31116d0c971650938689043a84a22d8c20eb305 RMD160 (phpMyAdmin-4.1.7-all-languages.tar.xz) = 4a7df2b7cf0bc4f6f8cd802fc81ee42908cf33c5 Size (phpMyAdmin-4.1.7-all-languages.tar.xz) = 4807196 bytes @ 1.79 log @Update "phpmyadmin" package to version 4.0.10. The following bugs were fixed since version 4.0.9: - bug #4150 Clicking database name in query window opens a new tab - bug #4141 Wrong page is shown after editing; also, do not show a modal dialog for multi-row edit - bug #3939 PHP NavigationTree error when paging through list - bug #4075 Support A10 Networks load balancer - bug #4083 row deleting isn't binlogs friendly - bug #4163 Setup script does not recognize manually-configured server - bug #4158 Events page says no privileges with ALL PRIVILEGES @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.78 2013/11/07 08:29:44 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.0.10-all-languages.tar.xz) = 2002e954471b3c76eddd5ffc14c224089bc08d26 RMD160 (phpMyAdmin-4.0.10-all-languages.tar.xz) = c78ea8b17fd01472df3eb7d25a8a0ef6a94eb6d0 Size (phpMyAdmin-4.0.10-all-languages.tar.xz) = 4774280 bytes @ 1.79.2.1 log @Resolve the vunerability reported in PMASA-2014-1. Based on GIT commit https://github.com/phpmyadmin/phpmyadmin/commit/968d5d5f486820bfa30af046f063b9f23304e14a RT ticket 4333. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.79 2013/12/06 18:34:54 tron Exp $ a5 1 SHA1 (patch-import.php) = 134dd0d6364c4903012b7d3b826b463706f9d71a @ 1.78 log @Update "phpmyadmin" package to version 4.0.9. The following bugs were fixed since the release of version 4.0.8: - bug #4104 Can't edit updatable view when searching - bug #4108 Missing refresh by deleting databases - bug #3995 Drizzle server charset notice - bug #3911 Filtering database names includes empty groupings - bug #3678 Does not display or manipulate bit(64) fields appropriately - bug #4129 Unneeded navi panel refresh - bug #4120 SSL redirects to port 80 - bug #4144 DROP DATABASE displays wrong database name - bug #4059 Running delete query asks for confirmation but says it was already executed - bug #4147 Accessibility: Images without Alt nor title attribute @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.77 2013/10/10 17:52:35 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.0.9-all-languages.tar.xz) = 065f4c650655ed7e3ce5a414bc10df98366cdd79 RMD160 (phpMyAdmin-4.0.9-all-languages.tar.xz) = cb7bef81dc412d3f3550766b68461717a29b96f2 Size (phpMyAdmin-4.0.9-all-languages.tar.xz) = 4773892 bytes @ 1.77 log @Update "phpmyadmin" package to version 4.0.8. The following bugs were fixed since the release of version 4.0.7: - bug #3988 Rename view is not working - bug #4041 Interaction between linkified fields and grid editing - bug #3975 Table grouping isn't implemented properly - bug #4060 Browser tries to remember wrong password when creating new user - bug #4002 Edit Index on big table doesn't show "Loading" or any message - bug #4098 Default table tab is ignored - bug #4099 Server/library difference warning: setting is ignored - bug #4100 table tree group strategy - bug #4102 ALTER TABLE ORDER BY and InnoDB - bug #4103 Tracking report: cannot delete a statement - bug #3996 Drizzle navigation doesn't expand - bug #4074 GIS column editor: point not displayed - bug #4109 Drizzle tables in navigation are shown as views - bug #4095 NUL symbols added to the end of database dump file - bug #4105 More disappears in table Structure - bug #3992 Multi-row edit doesn't clear values when checking NULL @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.76 2013/09/28 07:52:43 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.0.8-all-languages.tar.xz) = 93e68fe13fd340f946c65b85dd5fe9f63a96258a RMD160 (phpMyAdmin-4.0.8-all-languages.tar.xz) = 66bfcb7587fb5518eaaec2622ece2ecb6d690671 Size (phpMyAdmin-4.0.8-all-languages.tar.xz) = 4692284 bytes @ 1.76 log @Update "phpmyadmin" package to version 4.0.7. Changes since 4.0.6: - bug #3993 Sorting in database overview with statistics doesn't work - bug Handle the situation where PHP_SELF is not set - bug #4080 Overwrite existing file not obeyed - bug #3929 Database-specific privileges are not copied when cloning user - bug #3997 Error handling in case MySQL extension is missing - bug #4089 Moving Columns will alter column definition - bug #4091 Insert ignore option does not work - bug #4090 Downloading BLOB downloads page template - bug #4092 Clicking on table name in view of information_schema redirects to wrong page - bug #4079 Copy Table Add AUTO_INCREMENT value checkbox not working - bug #4088 MySQL server version at index.php incorrect w/ controlhost - bug #4001 Import error: Class 'ImportOds' not found - bug #3986 Missing DROP VIEW button Approved by Thomas Klausner. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.75 2013/09/18 22:20:04 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.0.7-all-languages.tar.xz) = 45fdb27dc6d6649e64714b381b9fc8d9a2c7102b RMD160 (phpMyAdmin-4.0.7-all-languages.tar.xz) = 49d44dfb174c07c43f5eff4eabba99b95d37acd9 Size (phpMyAdmin-4.0.7-all-languages.tar.xz) = 4768812 bytes @ 1.75 log @Update "phpmyadmin" package to version 4.0.6. The major changes since version 3.5.* are: - HTML frames are gone. - The navigation panel now presents a tree. - Javascript now required - Documentation has a new look. - Many bug fixes and smaller new features This update also fixes the security vulnerability reported in PMASA-2013-10. Approved by Thomas Klausner. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.74 2013/07/29 20:01:02 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-4.0.6-all-languages.tar.xz) = 9aa00254e3dc8106f4554f361c7eb6c566f7c9fa RMD160 (phpMyAdmin-4.0.6-all-languages.tar.xz) = c127a52ef63827b40c0be6c327831e7b2e7c6040 Size (phpMyAdmin-4.0.6-all-languages.tar.xz) = 4753244 bytes @ 1.74 log @Update "phpmyadmin" package to version 3.5.8.2. Changes since 3.5.8.1: - [security] Fix self-XSS in "Showing rows", see PMASA-2013-8 - [security] Fix self-XSS in Display chart, see PMASA-2013-9 - [security] Fix stored XSS in Server status monitor, see PMASA-2013-9 - [security] Fix stored XSS in navigation panel logo link, see PMASA-2013-9 - [security] Fix self-XSS in setup, trusted proxies validation, see PMASA-2013-9 + [security] JSON content type header for version_check.php, see PMASA-2013-9 + [security] Backport fix for jQuery issue #9521 from jQuery 1.6.3, see PMASA-2013-9 + [security] Fix full path disclosure, see PMASA-2013-12 + [security] Fix control user SQL injection in pmd_pdf.php, see PMASA-2013-15 + [security] Fix control user SQL injection in schema_export.php, see PMASA-2013-15 - [security] Fix self-XSS in schema export, see PMASA-2013-14 - [security] Fix unencoded json object, see PMASA-2013-11 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.73 2013/04/24 20:06:02 tron Exp $ d3 4 a6 4 SHA1 (phpMyAdmin-3.5.8.2-all-languages.tar.xz) = d64d0274881513782fac3ad4fd4096c9842dec52 RMD160 (phpMyAdmin-3.5.8.2-all-languages.tar.xz) = b507c62bb5d6c962ba6335a13fa7565d4336b6a0 Size (phpMyAdmin-3.5.8.2-all-languages.tar.xz) = 3743436 bytes SHA1 (patch-libraries_vendor_config.php) = 00e60e3ef59f8e4984bab0ad95e8fbdb82decb75 @ 1.73 log @Update "phpmyadmin" package to version 3.5.8.1. Changes since 3.5.8: - [security] Remote code execution (preg_replace), reported by Janek Vind (see PMASA-2013-2) - [security] Locally Saved SQL Dump File Multiple File Extension Remote Code Execution, reported by Janek Vind (see PMASA-2013-3) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.72 2013/04/09 07:07:05 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.8.1-all-languages.tar.xz) = 9ea89659d8ef44badfe51604653991bb4b66eb6b RMD160 (phpMyAdmin-3.5.8.1-all-languages.tar.xz) = 6743651f90a8f586f89445a1eea899d4f9b2238a Size (phpMyAdmin-3.5.8.1-all-languages.tar.xz) = 3744808 bytes @ 1.73.2.1 log @Pullup ticket #4191 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.117 - databases/phpmyadmin/PLIST 1.33 - databases/phpmyadmin/distinfo 1.74 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Mon Jul 29 20:01:02 UTC 2013 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 3.5.8.2. Changes since 3.5.8.1: - [security] Fix self-XSS in "Showing rows", see PMASA-2013-8 - [security] Fix self-XSS in Display chart, see PMASA-2013-9 - [security] Fix stored XSS in Server status monitor, see PMASA-2013-9 - [security] Fix stored XSS in navigation panel logo link, see PMASA-2013-9 - [security] Fix self-XSS in setup, trusted proxies validation, see PMASA-2= 013-9 + [security] JSON content type header for version_check.php, see PMASA-2013= -9 + [security] Backport fix for jQuery issue #9521 from jQuery 1.6.3, see PMA= SA-2013-9 + [security] Fix full path disclosure, see PMASA-2013-12 + [security] Fix control user SQL injection in pmd_pdf.php, see PMASA-2013-= 15 + [security] Fix control user SQL injection in schema_export.php, see PMASA= -2013-15 - [security] Fix self-XSS in schema export, see PMASA-2013-14 - [security] Fix unencoded json object, see PMASA-2013-11 To generate a diff of this commit: cvs rdiff -u -r1.116 -r1.117 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.32 -r1.33 pkgsrc/databases/phpmyadmin/PLIST cvs rdiff -u -r1.73 -r1.74 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.73 2013/04/24 20:06:02 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.8.2-all-languages.tar.xz) = d64d0274881513782fac3ad4fd4096c9842dec52 RMD160 (phpMyAdmin-3.5.8.2-all-languages.tar.xz) = b507c62bb5d6c962ba6335a13fa7565d4336b6a0 Size (phpMyAdmin-3.5.8.2-all-languages.tar.xz) = 3743436 bytes @ 1.72 log @Update "phpmyadmin" package to version 3.5.8. Changes since 3.5.7: - bug #3828 MariaDB reported as MySQL - bug #3854 Incorrect header for Safari 6.0 - bug #3705 Attempt to open trigger for edit gives NULL - Use HTML5 DOCTYPE - [security] Self-XSS on GIS visualisation page, reported by Janek Vind - bug #3800 Incorrect keyhandler behaviour #2 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.71 2013/02/18 19:01:37 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.8-all-languages.tar.xz) = ce3c83f6d4ad1dd03c3a87452f583e425057e3e4 RMD160 (phpMyAdmin-3.5.8-all-languages.tar.xz) = 5857ff048ec63a738a74973f484e4fa2994204af Size (phpMyAdmin-3.5.8-all-languages.tar.xz) = 3744780 bytes @ 1.71 log @Update "phpmyadmin" package to version 3.5.7. Changes since 3.5.6: - bug #3779 [core] Problem with backslash in enum fields - bug #3816 Missing server_processlist.php - bug #3821 Safari: white page - Correct detection of the Chrome browser @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.70 2013/02/13 19:03:56 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.7-all-languages.tar.xz) = 959547cf91e72791fffdb8b19a4c58d745822ab8 RMD160 (phpMyAdmin-3.5.7-all-languages.tar.xz) = 35dc401d931c613cf789e078fff0f29c6294d8cb Size (phpMyAdmin-3.5.7-all-languages.tar.xz) = 3753896 bytes @ 1.71.2.1 log @Pullup ticket #4113 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.114 - databases/phpmyadmin/distinfo 1.72 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Tue Apr 9 07:07:05 UTC 2013 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 3.5.8. Changes since 3.5.7: - bug #3828 MariaDB reported as MySQL - bug #3854 Incorrect header for Safari 6.0 - bug #3705 Attempt to open trigger for edit gives NULL - Use HTML5 DOCTYPE - [security] Self-XSS on GIS visualisation page, reported by Janek Vind - bug #3800 Incorrect keyhandler behaviour #2 To generate a diff of this commit: cvs rdiff -u -r1.113 -r1.114 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.71 -r1.72 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.71 2013/02/18 19:01:37 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.8-all-languages.tar.xz) = ce3c83f6d4ad1dd03c3a87452f583e425057e3e4 RMD160 (phpMyAdmin-3.5.8-all-languages.tar.xz) = 5857ff048ec63a738a74973f484e4fa2994204af Size (phpMyAdmin-3.5.8-all-languages.tar.xz) = 3744780 bytes @ 1.71.2.2 log @Pullup ticket #4126 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.115 - databases/phpmyadmin/distinfo 1.73 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Wed Apr 24 20:06:02 UTC 2013 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 3.5.8.1. Changes since 3.5.8: - [security] Remote code execution (preg_replace), reported by Janek Vind (see PMASA-2013-2) - [security] Locally Saved SQL Dump File Multiple File Extension Remote Code Execution, reported by Janek Vind (see PMASA-2013-3) To generate a diff of this commit: cvs rdiff -u -r1.114 -r1.115 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.72 -r1.73 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.71.2.1 2013/04/20 19:08:30 spz Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.8.1-all-languages.tar.xz) = 9ea89659d8ef44badfe51604653991bb4b66eb6b RMD160 (phpMyAdmin-3.5.8.1-all-languages.tar.xz) = 6743651f90a8f586f89445a1eea899d4f9b2238a Size (phpMyAdmin-3.5.8.1-all-languages.tar.xz) = 3744808 bytes @ 1.70 log @Update "phpmyadmin" package to version 3.5.6. Changes since 3.5.5: - bug #3593604 [status] Erroneous advisor rule - bug #3596070 [status] localStorage broken in server status monitor - bug #3598736 [routines] Editing a procedure with special characters - bug #3600322 [core] Visualize GIS data throws Fatal Error - bug #3599362 [core] Double-escaped error message - bug #3776 [cookies] Login without auth on second server @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.69 2012/12/22 10:31:31 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.6-all-languages.tar.xz) = d8b0f4d8cfd2c799dd604bb2b25e068ea880b852 RMD160 (phpMyAdmin-3.5.6-all-languages.tar.xz) = 3bc0b432ff2effc72b0a5332d9beedb6a210f160 Size (phpMyAdmin-3.5.6-all-languages.tar.xz) = 3730872 bytes @ 1.69 log @Update "phpmyadmin" package to version 3.5.5. Changes since 3.5.4: - bug #3563824 [export] Support Apache's mod_deflate - bug #3585523 [interface] Inline query editing broken after row update - bug #3586389 [setup] Cannot switch language in /setup - bug #3585695 [CSS] Font size in inline query editor is way too big - bug #3588354 [l10n] Portuguese Language not displaying correctly - bug #3591412 [status] Live charts don't work for non-default server - bug [core] Proxy ajax calls to pma.net to avoid browser notices - bug #3593534 [tracking] Structure Snapshot on tracked view renders invalid SQL - bug #3544366 [events] Event comments not saved Approved by Thomas Klausner. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.68 2012/11/18 13:58:00 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.5-all-languages.tar.xz) = 0855b85a4c97397a83c16876c9ea4107f8d5da2e RMD160 (phpMyAdmin-3.5.5-all-languages.tar.xz) = 8866e79caf7b8fcfe460f1e3b8288cf270415aa2 Size (phpMyAdmin-3.5.5-all-languages.tar.xz) = 3689664 bytes @ 1.68 log @Update "phpmyadmin" package to version 3.5.4. Changes since 3.5.3: - bug #3570212 [edit] uuid_short() is a no-arguments function - bug #3569577 [edit] Add routine parameter headers not valid for "function" - bug #3575799 [search] Various search operators not working as expected - bug #3576322 [search] Invalid select query generated for tables with ENUM fields - bug #3577468 [display] Incorrect imagejpeg Syntax Breaks Image Transformation - bug #3578776 [search] Editing SQL not possible when no records found - bug #3571970 [interface] Display chart and number of rows to plot - bug #3582631 [core] Wrong redirect url caused cookies error with ForceSSL @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.67 2012/10/17 18:35:06 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.4-all-languages.tar.xz) = 2c2eee3b63b240fc6c7fefbf2be80bbd4a22be5d RMD160 (phpMyAdmin-3.5.4-all-languages.tar.xz) = 3300b72b4b26de3e1f94685e845ba2d1b41ed573 Size (phpMyAdmin-3.5.4-all-languages.tar.xz) = 3689072 bytes @ 1.67 log @Update "phpmyadmin" package to version 3.5.3. Changes since 3.5.2.2: - bug #3539044 [interface] Browse mode "Show" button gives blank page if no results anymore - bug #3534979 [interface] Copy Database Ajax feedback vanishes long before copying is done - bug #3527531 [interface] GC-maxlifetime warning incorrectly displayed - bug #3526916 [interface] Search fails with JS error when tooltips disabled - bug #3544366 [interface] Event comments not saved - bug #3549084 [edit] Can't enter date directly when editing inline - bug #3548491 [interface] Inline query editor doesn't work from search results - bug #3547825 [edit] BLOB download no longer works - bug #3541966 [config] Error in generated configuration arrray - bug #3553551 [GUI] Invalid HTML code in multi submits confirmation form - [interface] Designer sometimes places tables on the top menu - bug #3546277 [core] Call to undefined function __() when config file has wrong permissions - bug #3540922 [edit] Error searching table with many fields - bug #3555104 [edit] Cannot copy a DB with table & views - bug #3559925 [privileges] Incorrect updating of the list of users - bug #3561224 [edit] cell edit date field with empty date fills in current date - bug #3559955 [edit] current_date from function drop down fails on update - bug #3562472 add support for Solaris and FreeBSD system load and memory display in server status - bug #3553068 [import] Table import from XML file fails - replace Highcharts with jqplot for Display chart - bug #3567684 [edit] Pasting value doesn't clear null checkbox - bug #3570786 [edit] Datepicker for date and datetime fields is broken @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.66 2012/08/29 17:38:39 dholland Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.3-all-languages.tar.xz) = df6b6438157d7cf423a60ee9f8df045a52602db8 RMD160 (phpMyAdmin-3.5.3-all-languages.tar.xz) = faba4759b004cfe67abff9d63f5d6f9b1c952dbd Size (phpMyAdmin-3.5.3-all-languages.tar.xz) = 3663564 bytes @ 1.66 log @Update checksum of patch-libraries_vendor_config.php for previous commit. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.65 2012/08/27 17:11:34 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.2.2-all-languages.tar.xz) = 0772385c8133e7b0becaa6c81df7f76bdb9d3bf2 RMD160 (phpMyAdmin-3.5.2.2-all-languages.tar.xz) = 26e247336fa2876c939afa0fa842cc67ee7c38f3 Size (phpMyAdmin-3.5.2.2-all-languages.tar.xz) = 3654332 bytes @ 1.66.2.1 log @Pullup ticket #3950 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.108 - databases/phpmyadmin/PLIST 1.31 - databases/phpmyadmin/distinfo 1.67 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Wed Oct 17 18:35:06 UTC 2012 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 3.5.3. Changes since 3.5.2.2: - bug #3539044 [interface] Browse mode "Show" button gives blank page if no results anymore - bug #3534979 [interface] Copy Database Ajax feedback vanishes long before copying is done - bug #3527531 [interface] GC-maxlifetime warning incorrectly displayed - bug #3526916 [interface] Search fails with JS error when tooltips disabled - bug #3544366 [interface] Event comments not saved - bug #3549084 [edit] Can't enter date directly when editing inline - bug #3548491 [interface] Inline query editor doesn't work from search res= ults - bug #3547825 [edit] BLOB download no longer works - bug #3541966 [config] Error in generated configuration arrray - bug #3553551 [GUI] Invalid HTML code in multi submits confirmation form - [interface] Designer sometimes places tables on the top menu - bug #3546277 [core] Call to undefined function __() when config file has wrong permissions - bug #3540922 [edit] Error searching table with many fields - bug #3555104 [edit] Cannot copy a DB with table & views - bug #3559925 [privileges] Incorrect updating of the list of users - bug #3561224 [edit] cell edit date field with empty date fills in current date - bug #3559955 [edit] current_date from function drop down fails on update - bug #3562472 add support for Solaris and FreeBSD system load and memory display in server status - bug #3553068 [import] Table import from XML file fails - replace Highcharts with jqplot for Display chart - bug #3567684 [edit] Pasting value doesn't clear null checkbox - bug #3570786 [edit] Datepicker for date and datetime fields is broken To generate a diff of this commit: cvs rdiff -u -r1.107 -r1.108 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.30 -r1.31 pkgsrc/databases/phpmyadmin/PLIST cvs rdiff -u -r1.66 -r1.67 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.66 2012/08/29 17:38:39 dholland Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.3-all-languages.tar.xz) = df6b6438157d7cf423a60ee9f8df045a52602db8 RMD160 (phpMyAdmin-3.5.3-all-languages.tar.xz) = faba4759b004cfe67abff9d63f5d6f9b1c952dbd Size (phpMyAdmin-3.5.3-all-languages.tar.xz) = 3663564 bytes @ 1.65 log @Improve setup and configuration file handling: 1.) Install PHP script in the "setup" directory. 2.) Use Vendor override to set the location of the configuration file. It is now possible to use phpMyAdmin's setup for configuration. Based on a suggestion by Peter Avalos in private e-mail. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.64 2012/08/17 23:08:21 tron Exp $ d6 1 a6 1 SHA1 (patch-libraries_vendor_config.php) = 4840b0ba666b4dd9869045859d380cd9e9e50571 @ 1.64 log @Updatep "phpmyadmin" package to version 3.5.2.2. Changes since 3.5.2.1: - [security] Fixed XSS vulnerabilities, see PMASA-2012-4 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.63 2012/08/08 07:17:00 tron Exp $ d6 1 @ 1.63 log @Update "phpmyadmin" package to version 3.5.2.1. Changes since 3.5.2: - [security] Fixed local path disclosure vulnerability, see PMASA-2012-3 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.62 2012/07/15 13:02:32 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.2.1-all-languages.tar.xz) = 353f6749c048c8b5199c2d81b828bec4fddbb0b6 RMD160 (phpMyAdmin-3.5.2.1-all-languages.tar.xz) = 3200d260f8a6ea028d9cdf4679af398bc8939896 Size (phpMyAdmin-3.5.2.1-all-languages.tar.xz) = 3654120 bytes @ 1.62 log @Update "phpmyadmin" package to version 3.5.2. Changes since 3.5.1: - bug #3521416 [interface] JS error when editing index - bug #3521313 [core] Call to undefined function __() - bug #3521016 [edit] NOW() function incorrectly selected - bug [GUI] Invalid HTML code on transformation_overview.php - bug #3522930 [browse] Missing validation in Ajax mode - bug Fix popup message on build SQL of import - bug #3523499 [core] Make X-WebKit-CSP work better - replace Highcharts with jqplot for query profiling, zoom search - bug #3531584 [interface] No form validation in change password dialog - bug #3531585 [interface] Broken password validation in copy user form - bug #3531586 [unterface] Add user form prints JSON when user presses enter - bug #3534121 [config] duplicate line in config.sample.inc.php - bug #3534311 [interface] Grid editing incorrectly parses ENUM/SET values - bug #3510196 [core] More clever URL rewriting with ForceSSL @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.61 2012/05/06 09:01:10 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.2-all-languages.tar.xz) = 0ee13d510c9f673255ca16af3c1c02b4817ff02b RMD160 (phpMyAdmin-3.5.2-all-languages.tar.xz) = e53adf2e67c6abe0903c8be1501aa5b6e53f9c38 Size (phpMyAdmin-3.5.2-all-languages.tar.xz) = 3653780 bytes @ 1.61 log @Update "phpmyadmin" package to version 3.5.1. Major changes since 3.4.*: - browse-mode improvements - grid editing - remember recent tables - remember last sort order by table - flexible column width - reorder columns - more compact navigation bar - AJAXification of many operations - reorganised server status page, with server monitoring - improved support for stored routines, events and triggers - openGIS support - zoom-search in table search - Drizzle support - improved ENUM/SET editor @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.60 2012/04/15 11:56:27 tron Exp $ d3 3 a5 4 SHA1 (phpMyAdmin-3.5.1-all-languages.tar.xz) = f61c477e0ed394a10c10c3c1f8e73d1449432b1b RMD160 (phpMyAdmin-3.5.1-all-languages.tar.xz) = a2ebd6ca3e70a5c0f8b4cefa03e508ee0c4fd910 Size (phpMyAdmin-3.5.1-all-languages.tar.xz) = 3590204 bytes SHA1 (patch-libraries_header_http.inc.php) = 523b2d961d1591291c85b9e381a20f59ce332aa1 @ 1.61.2.1 log @Pullup ticket #3889 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.102-1.103 - databases/phpmyadmin/PLIST 1.28 - databases/phpmyadmin/distinfo 1.62-1.63 - databases/phpmyadmin/patches/patch-libraries_header_http.inc.php deleted ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sun Jul 15 13:02:32 UTC 2012 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Removed Files: pkgsrc/databases/phpmyadmin/patches: patch-libraries_header_http.inc.php Log Message: Update "phpmyadmin" package to version 3.5.2. Changes since 3.5.1: - bug #3521416 [interface] JS error when editing index - bug #3521313 [core] Call to undefined function __() - bug #3521016 [edit] NOW() function incorrectly selected - bug [GUI] Invalid HTML code on transformation_overview.php - bug #3522930 [browse] Missing validation in Ajax mode - bug Fix popup message on build SQL of import - bug #3523499 [core] Make X-WebKit-CSP work better - replace Highcharts with jqplot for query profiling, zoom search - bug #3531584 [interface] No form validation in change password dialog - bug #3531585 [interface] Broken password validation in copy user form - bug #3531586 [unterface] Add user form prints JSON when user presses enter - bug #3534121 [config] duplicate line in config.sample.inc.php - bug #3534311 [interface] Grid editing incorrectly parses ENUM/SET values - bug #3510196 [core] More clever URL rewriting with ForceSSL To generate a diff of this commit: cvs rdiff -u -r1.101 -r1.102 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.27 -r1.28 pkgsrc/databases/phpmyadmin/PLIST cvs rdiff -u -r1.61 -r1.62 pkgsrc/databases/phpmyadmin/distinfo cvs rdiff -u -r1.1 -r0 \ pkgsrc/databases/phpmyadmin/patches/patch-libraries_header_http.inc.php ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Wed Aug 8 07:17:00 UTC 2012 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 3.5.2.1. Changes since 3.5.2: - [security] Fixed local path disclosure vulnerability, see PMASA-2012-3 To generate a diff of this commit: cvs rdiff -u -r1.102 -r1.103 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.62 -r1.63 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.61 2012/05/06 09:01:10 tron Exp $ d3 4 a6 3 SHA1 (phpMyAdmin-3.5.2.1-all-languages.tar.xz) = 353f6749c048c8b5199c2d81b828bec4fddbb0b6 RMD160 (phpMyAdmin-3.5.2.1-all-languages.tar.xz) = 3200d260f8a6ea028d9cdf4679af398bc8939896 Size (phpMyAdmin-3.5.2.1-all-languages.tar.xz) = 3654120 bytes @ 1.61.2.2 log @Pullup ticket #3901 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.104 - databases/phpmyadmin/distinfo 1.64 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Fri Aug 17 23:08:21 UTC 2012 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Updatep "phpmyadmin" package to version 3.5.2.2. Changes since 3.5.2.1: - [security] Fixed XSS vulnerabilities, see PMASA-2012-4 To generate a diff of this commit: cvs rdiff -u -r1.103 -r1.104 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.63 -r1.64 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.61.2.1 2012/08/08 18:39:21 spz Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.5.2.2-all-languages.tar.xz) = 0772385c8133e7b0becaa6c81df7f76bdb9d3bf2 RMD160 (phpMyAdmin-3.5.2.2-all-languages.tar.xz) = 26e247336fa2876c939afa0fa842cc67ee7c38f3 Size (phpMyAdmin-3.5.2.2-all-languages.tar.xz) = 3654332 bytes @ 1.60 log @Update "phpmyadmin" package to version 3.4.11. Changes since 3.4.10.1: - bug #3486970 [import] Exception on XML import - bug #3488777 [navi] $cfg['ShowTooltipAliasTB'] and blank names in navigation - bug #3512565 [navi] Fixed missing word "Rows" in table list tooltip after cli - [security] Fixed local path disclosure vulnerability, see PMASA-2012-2 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.59 2012/02/18 23:04:44 tron Exp $ d3 4 a6 3 SHA1 (phpMyAdmin-3.4.11-all-languages.tar.bz2) = 2a693f2795e2a403ed67d42bc114970afaf06eb8 RMD160 (phpMyAdmin-3.4.11-all-languages.tar.bz2) = e74590b3266f27fdab792132a6ef281ca97698fc Size (phpMyAdmin-3.4.11-all-languages.tar.bz2) = 4787560 bytes @ 1.59 log @pdatep "phpmyadmin" package to version 3.4.10.1. Changes since 3.4.10: - [security] XSS in replication setup, see PMASA-2012-1 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.58 2012/02/16 20:19:25 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.10.1-all-languages.tar.bz2) = d83a517310b47bbe5d7b00c42b86121dfb3db485 RMD160 (phpMyAdmin-3.4.10.1-all-languages.tar.bz2) = cdfdd41d769f978bda3653477edc30d36c27f9d9 Size (phpMyAdmin-3.4.10.1-all-languages.tar.bz2) = 4722083 bytes @ 1.59.2.1 log @Pullup ticket #3739 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.99 - databases/phpmyadmin/PLIST 1.26 - databases/phpmyadmin/distinfo 1.60 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sun Apr 15 11:56:28 UTC 2012 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 3.4.11. Changes since 3.4.10.1: - bug #3486970 [import] Exception on XML import - bug #3488777 [navi] $cfg['ShowTooltipAliasTB'] and blank names in navigation - bug #3512565 [navi] Fixed missing word "Rows" in table list tooltip after cli - [security] Fixed local path disclosure vulnerability, see PMASA-2012-2 To generate a diff of this commit: cvs rdiff -u -r1.98 -r1.99 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.25 -r1.26 pkgsrc/databases/phpmyadmin/PLIST cvs rdiff -u -r1.59 -r1.60 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD$ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.11-all-languages.tar.bz2) = 2a693f2795e2a403ed67d42bc114970afaf06eb8 RMD160 (phpMyAdmin-3.4.11-all-languages.tar.bz2) = e74590b3266f27fdab792132a6ef281ca97698fc Size (phpMyAdmin-3.4.11-all-languages.tar.bz2) = 4787560 bytes @ 1.58 log @Update "phpmyadmin" package to version 3.4.10. Changes since 3.4.9: - bug #3460090 [interface] TextareaAutoSelect feature broken - patch #3375984 [export] PHP Array export might generate invalid php code - bug #3049209 [import] Import from ODS ignores cell that is the same as cell before - bug #3463933 [display] SELECT DISTINCT displays wrong total records found - patch #3458944 [operations] copy table data missing SET SQL_MODE='NO_AUTO_VALUE_ON_ZERO' - bug #3469254 [edit] Setting data to NULL and drop-downs - bug #3477063 [edit] Missing set fields and values in generated INSERT query - bug #3460867 [libraries] license issue with TCPDF (updated to 5.9.145) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.57 2011/12/23 08:07:44 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.10-all-languages.tar.bz2) = 68815057c0d06fac98ba6807302ccbd3f8184e69 RMD160 (phpMyAdmin-3.4.10-all-languages.tar.bz2) = f3c875aadc36eddbc79b5557bf2787e52e6aef16 Size (phpMyAdmin-3.4.10-all-languages.tar.bz2) = 4722438 bytes @ 1.57 log @Update "phpmyadmin" package to version 3.4.9. Changes since 3.4.8: - bug #3442028 [edit] Inline editing enum fields with null shows no dropdown - bug #3442004 [interface] DB suggestion not correct for user with underscore - bug #3438420 [core] Magic quotes removed in PHP 5.4 - bug #3398788 [session] No feedback when result is empty (signon auth_type) - bug #3384035 [display] Problems regarding ShowTooltipAliasTB - bug #3306875 [edit] Can't rename a database that contains views - bug #3452506 [edit] Unable to move tables with triggers - bug #3449659 [navi] Fast filter broken with table tree - bug #3448485 [GUI] Firefox favicon frameset regression - [core] Better compatibility with mysql extension - [security] Self-XSS on export options (export server/database/table), see PMASA-2011-20 - [security] Self-XSS in setup (host parameter), see PMASA-2011-19 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.56 2011/12/02 23:39:30 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.9-all-languages.tar.bz2) = 4ac4f15fb305ef243b88b17e405e9d451bd56de9 RMD160 (phpMyAdmin-3.4.9-all-languages.tar.bz2) = 2bec1bd147af6ff00cdb999a35800b95f986a518 Size (phpMyAdmin-3.4.9-all-languages.tar.bz2) = 4666051 bytes @ 1.57.2.1 log @Pullup ticket #3686 - requested by tron databases/phpmyadmin security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.97-1.98 - databases/phpmyadmin/PLIST 1.25 - databases/phpmyadmin/distinfo 1.58-1.59 --- Module Name: pkgsrc Committed By: tron Date: Thu Feb 16 20:19:25 UTC 2012 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 3.4.10. Changes since 3.4.9: - bug #3460090 [interface] TextareaAutoSelect feature broken - patch #3375984 [export] PHP Array export might generate invalid php code - bug #3049209 [import] Import from ODS ignores cell that is the same as cell before - bug #3463933 [display] SELECT DISTINCT displays wrong total records found - patch #3458944 [operations] copy table data missing SET SQL_MODE='NO_AUTO_VALUE_ON_ZERO' - bug #3469254 [edit] Setting data to NULL and drop-downs - bug #3477063 [edit] Missing set fields and values in generated INSERT query - bug #3460867 [libraries] license issue with TCPDF (updated to 5.9.145) --- Module Name: pkgsrc Committed By: tron Date: Sat Feb 18 23:04:45 UTC 2012 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: pdatep "phpmyadmin" package to version 3.4.10.1. Changes since 3.4.10: - [security] XSS in replication setup, see PMASA-2012-1 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.57 2011/12/23 08:07:44 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.10.1-all-languages.tar.bz2) = d83a517310b47bbe5d7b00c42b86121dfb3db485 RMD160 (phpMyAdmin-3.4.10.1-all-languages.tar.bz2) = cdfdd41d769f978bda3653477edc30d36c27f9d9 Size (phpMyAdmin-3.4.10.1-all-languages.tar.bz2) = 4722083 bytes @ 1.56 log @Update "phpmyadmin" package to version 3.4.8. Changes since 3.4.7.1: - bug #3425230 [interface] enum data split at space char (more space to edit) - bug #3426840 [interface] ENUM/SET editor can't handle commas in values - bug #3427256 [interface] no links to browse/empty views and tables - bug #3430377 [interface] Deleted search results remain visible - bug #3428627 [import] ODS import ignores memory limits - bug #3426836 [interface] Visual column separation - bug #3428065 [parser] TRUE not recognized by parser + patch #3433770 [config] Make location of php-gettext configurable - patch #3430291 [import] Handle conflicts in some open_basedir situations - bug #3431427 [display] Dropdown results - setting NULL does not work - patch #3428764 [edit] Inline edit on multi-server configuration - patch #3437354 [core] Notice: Array to string conversion in PHP 5.4 - [interface] When ShowTooltipAliasTB is true, VIEW is wrongly shown as the view name in main panel db Structure page - bug #3439292 [core] Fail to synchronize column with name of keyword - bug #3425156 [interface] Add column after drop - [interface] Avoid showing the password in phpinfo()'s output - bug #3441572 [GUI] 'newer version of phpMyAdmin' message not shown in IE8 - bug #3407235 [interface] Entering the key through a lookup window does not reset NULL - [security] Self-XSS on database names (Synchronize), see PMASA-2011-18 - [security] Self-XSS on database names (Operations/rename), see PMASA-2011-18 - [security] Self-XSS on column type (Create index), see PMASA-2011-18 - [security] Self-XSS on column type (table Search), see PMASA-2011-18 - [security] Self-XSS on invalid query (table overview), see PMASA-2011-18 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.55 2011/11/13 09:10:25 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.8-all-languages.tar.bz2) = 4c7b564788a31c4b697247f497dbcc4cf0f1f8e8 RMD160 (phpMyAdmin-3.4.8-all-languages.tar.bz2) = 8c82438248c766995e41003ed1dbd44c7c3573cb Size (phpMyAdmin-3.4.8-all-languages.tar.bz2) = 4610153 bytes @ 1.55 log @Updatep "phpmyadmin" package to version 3.4.7.1. Changes since 3.4.7: - [security] Fixed possible local file inclusion in XML import (CVE-2011-4107). @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.54 2011/10/24 07:14:48 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.7.1-all-languages.tar.bz2) = e77765f04a6ea842417ea9ae7f02b125c2f75638 RMD160 (phpMyAdmin-3.4.7.1-all-languages.tar.bz2) = ad2c495a304b30667ee1b785bbebab5a9882085f Size (phpMyAdmin-3.4.7.1-all-languages.tar.bz2) = 4605472 bytes @ 1.54 log @Update "phpmyadmin" package to version 3.4.7. Changes since version 3.4.6: - bug #3418610 [interface] Links in navigation when $cfg['MainPageIconic'] = false - bug #3418849 [interface] Inline edit shows dropdowns even after closing - bug [view] View renaming did not work - bug [navi] Wrong icon for view (MySQL 5.5) - bug #3420229 [doc] Missing documentation section - bug #3423725 [pdf] Broken PDF file when exporting database to PDF - [core] Allow to set language in URL - bug #3425184 [doc] Fix links to PHP documentation - bug #3426031 [export] Export to bzip2 is not working @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.53 2011/10/18 14:58:28 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.7-all-languages.tar.bz2) = 7fc8b9a8ae2a3fcaf7f46862b716f673d3ce2d21 RMD160 (phpMyAdmin-3.4.7-all-languages.tar.bz2) = c095a357409b8c9b7dfaf2307dedd94cfb5d66dd Size (phpMyAdmin-3.4.7-all-languages.tar.bz2) = 4604198 bytes @ 1.53 log @Update "phpmyadmin" package to version 3.4.6. Changes since version 3.4.5: Welcome to phpMyAdmin 3.4.6, a bugfix and minor security release. Please refer to the upcoming PMASA-2011-15 and -16 announcements on http://www.phpmyadmin.net/home_page/security/. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.52 2011/09/14 22:25:27 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.6-all-languages.tar.bz2) = 28659a49b30fd010396a952b57046beb2d65e5a2 RMD160 (phpMyAdmin-3.4.6-all-languages.tar.bz2) = 6155eda46145dc7bfdc39be490abc5bf1de56fbc Size (phpMyAdmin-3.4.6-all-languages.tar.bz2) = 4602509 bytes @ 1.52 log @Update "phpmyadmin" package to version 3.4.5. Chances since version 3.4.4: - bug #3375325 [interface] Page list in navigation frame looks odd - bug #3313235 [interface] Error div misplaced - bug #3374802 [interface] Comment on a column breaks inline editing - patch #3383711 [display] Order by a column in a view doesn't work in some cases - bug #3386434 [interface] Add missing space to server status - [core] Remove library PHPExcel, due to license issues - [export] Remove native Excel export modules (xls and xlsx formats) - [import] Remove native Excel import modules (xls and xlsx formats) - bug #3392920 [edit] BLOB emptied after editing another column - [security] Fixed XSS in Inline Edit on save action, see PMASA-2011-14 - [security] Fixed XSS with db/table/column names, see PMASA-2011-14 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.51 2011/08/25 20:40:24 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.5-all-languages.tar.bz2) = abf66d2eb3cac8ac98622663fc11100b0fd479d3 RMD160 (phpMyAdmin-3.4.5-all-languages.tar.bz2) = e3edec81945b886217a8c16a50c4364ebdbe39dc Size (phpMyAdmin-3.4.5-all-languages.tar.bz2) = 4592593 bytes @ 1.52.2.1 log @Pullup ticket #3569 - requested by tron databases/phpmyadmin security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.92 - databases/phpmyadmin/distinfo 1.53 --- Module Name: pkgsrc Committed By: tron Date: Tue Oct 18 14:58:28 UTC 2011 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 3.4.6. Changes since version 3.4.5: Welcome to phpMyAdmin 3.4.6, a bugfix and minor security release. Please refer to the upcoming PMASA-2011-15 and -16 announcements on http://www.phpmyadmin.net/home_page/security/. @ text @d1 1 a1 1 $NetBSD$ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.6-all-languages.tar.bz2) = 28659a49b30fd010396a952b57046beb2d65e5a2 RMD160 (phpMyAdmin-3.4.6-all-languages.tar.bz2) = 6155eda46145dc7bfdc39be490abc5bf1de56fbc Size (phpMyAdmin-3.4.6-all-languages.tar.bz2) = 4602509 bytes @ 1.52.2.2 log @Pullup ticket #3602 - requested by tron databases/phpmyadmin security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.93-1.94 - databases/phpmyadmin/distinfo 1.54-1.55 --- Module Name: pkgsrc Committed By: tron Date: Mon Oct 24 07:14:48 UTC 2011 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 3.4.7. Changes since version 3.4.6: - bug #3418610 [interface] Links in navigation when $cfg['MainPageIconic'] = false - bug #3418849 [interface] Inline edit shows dropdowns even after closing - bug [view] View renaming did not work - bug [navi] Wrong icon for view (MySQL 5.5) - bug #3420229 [doc] Missing documentation section - bug #3423725 [pdf] Broken PDF file when exporting database to PDF - [core] Allow to set language in URL - bug #3425184 [doc] Fix links to PHP documentation - bug #3426031 [export] Export to bzip2 is not working --- Module Name: pkgsrc Committed By: tron Date: Sun Nov 13 09:10:25 UTC 2011 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Updatep "phpmyadmin" package to version 3.4.7.1. Changes since 3.4.7: - [security] Fixed possible local file inclusion in XML import (CVE-2011-4107). @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.52.2.1 2011/10/18 21:37:59 sbd Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.7.1-all-languages.tar.bz2) = e77765f04a6ea842417ea9ae7f02b125c2f75638 RMD160 (phpMyAdmin-3.4.7.1-all-languages.tar.bz2) = ad2c495a304b30667ee1b785bbebab5a9882085f Size (phpMyAdmin-3.4.7.1-all-languages.tar.bz2) = 4605472 bytes @ 1.52.2.3 log @Pullup ticket #3618 - requested by tron databases/phpmyadmin: security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.95 - databases/phpmyadmin/distinfo 1.56 ------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Fri Dec 2 23:39:30 UTC 2011 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 3.4.8. Changes since 3.4.7.1: - bug #3425230 [interface] enum data split at space char (more space to edi= t) - bug #3426840 [interface] ENUM/SET editor can't handle commas in values - bug #3427256 [interface] no links to browse/empty views and tables - bug #3430377 [interface] Deleted search results remain visible - bug #3428627 [import] ODS import ignores memory limits - bug #3426836 [interface] Visual column separation - bug #3428065 [parser] TRUE not recognized by parser + patch #3433770 [config] Make location of php-gettext configurable - patch #3430291 [import] Handle conflicts in some open_basedir situations - bug #3431427 [display] Dropdown results - setting NULL does not work - patch #3428764 [edit] Inline edit on multi-server configuration - patch #3437354 [core] Notice: Array to string conversion in PHP 5.4 - [interface] When ShowTooltipAliasTB is true, VIEW is wrongly shown as the view name in main panel db Structure page - bug #3439292 [core] Fail to synchronize column with name of keyword - bug #3425156 [interface] Add column after drop - [interface] Avoid showing the password in phpinfo()'s output - bug #3441572 [GUI] 'newer version of phpMyAdmin' message not shown in IE8 - bug #3407235 [interface] Entering the key through a lookup window does no= t reset NULL - [security] Self-XSS on database names (Synchronize), see PMASA-2011-18 - [security] Self-XSS on database names (Operations/rename), see PMASA-2011= -18 - [security] Self-XSS on column type (Create index), see PMASA-2011-18 - [security] Self-XSS on column type (table Search), see PMASA-2011-18 - [security] Self-XSS on invalid query (table overview), see PMASA-2011-18 To generate a diff of this commit: cvs rdiff -u -r1.94 -r1.95 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.55 -r1.56 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD$ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.8-all-languages.tar.bz2) = 4c7b564788a31c4b697247f497dbcc4cf0f1f8e8 RMD160 (phpMyAdmin-3.4.8-all-languages.tar.bz2) = 8c82438248c766995e41003ed1dbd44c7c3573cb Size (phpMyAdmin-3.4.8-all-languages.tar.bz2) = 4610153 bytes @ 1.52.2.4 log @Pullup ticket #3636 - requested by tron databases/phpmyadmin security update Revisions pulled up: - databases/phpmyadmin/Makefile 1.96 - databases/phpmyadmin/distinfo 1.57 --- Module Name: pkgsrc Committed By: tron Date: Fri Dec 23 08:07:44 UTC 2011 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 3.4.9. Changes since 3.4.8: - bug #3442028 [edit] Inline editing enum fields with null shows no dropdown - bug #3442004 [interface] DB suggestion not correct for user with underscore - bug #3438420 [core] Magic quotes removed in PHP 5.4 - bug #3398788 [session] No feedback when result is empty (signon auth_type) - bug #3384035 [display] Problems regarding ShowTooltipAliasTB - bug #3306875 [edit] Can't rename a database that contains views - bug #3452506 [edit] Unable to move tables with triggers - bug #3449659 [navi] Fast filter broken with table tree - bug #3448485 [GUI] Firefox favicon frameset regression - [core] Better compatibility with mysql extension - [security] Self-XSS on export options (export server/database/table), see PMASA-2011-20 - [security] Self-XSS in setup (host parameter), see PMASA-2011-19 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.52.2.3 2011/12/04 07:17:10 spz Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.9-all-languages.tar.bz2) = 4ac4f15fb305ef243b88b17e405e9d451bd56de9 RMD160 (phpMyAdmin-3.4.9-all-languages.tar.bz2) = 2bec1bd147af6ff00cdb999a35800b95f986a518 Size (phpMyAdmin-3.4.9-all-languages.tar.bz2) = 4666051 bytes @ 1.51 log @Update "phpmyadmin" package to version 3.4.4. Changes since version 3.4.3.2: - bug #3323060 [parser] SQL parser breaks AJAX requests if query has unclosed quotes - bug #3323101 [parser] Invalid escape sequence in SQL parser - bug #3348995 [config] $cfg['Export']['asfile'] set to false does not select asText option - bug #3340151 [export] Working SQL query exports error page - bug #3353649 [interface] "Create an index on X columns" form not validated - bug #3350790 [interface] JS error in Table->Structure->Index->Edit - bug #3353811 [interface] Info message has "error" class - bug #3357837 [interface] TABbing through a NULL field in the inline mode resets NULL - remove version number in /setup - bug #3367993 [usability] Missing "Generate Password" button - bug #3363221 [display] Missing Server Parameter on inline sql query - bug #3367986 [navi] Drop field -> lost active table - remove misleading comment on the "Rename database" interface - bug #3374374 [interface] Fix footnote for inexact count while browsing - bug #3372807 [interface] Fix security warning link in setup - bug #3374347 [display] Backquotes in normal text on import page - bug #3358750 [core] With Suhosin, urls are too long in edit links - [security] Missing sanitization on the table, column and index names leads to XSS vulnerabilities, see PMASA-2011-13 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.50 2011/07/29 17:21:20 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.4-all-languages.tar.bz2) = 48af9356c9dbeb45b3062560b535de30af9a7dd4 RMD160 (phpMyAdmin-3.4.4-all-languages.tar.bz2) = f7165df94b9e0449b4758d481ff8e985363c6881 Size (phpMyAdmin-3.4.4-all-languages.tar.bz2) = 4954436 bytes @ 1.50 log @Update "phpmyadmin" package to version 3.4.3.2. This is major feature update which requires at least PHP 5.2.0 and MySQL 5.0. It features a new user interface and uses MySQL for authentication and access control. The update was necessary as "phpmyadmin" 2.11 is no longer supported: http://sourceforge.net/news/?group_id=23067&id=301992 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.49 2011/02/13 16:11:11 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-3.4.3.2-all-languages.tar.bz2) = 4a6b2bd7da67be9cdf45799dcb3e46f4d1a8397a RMD160 (phpMyAdmin-3.4.3.2-all-languages.tar.bz2) = 39c1192bab3907a2a9ff67082c24d97cc6f6e8d3 Size (phpMyAdmin-3.4.3.2-all-languages.tar.bz2) = 4924912 bytes @ 1.49 log @Update "phpmyadmin" package to version 2.11.11.3. This version fixes the script insertion reported in CVE-2011-0987. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.48 2011/02/10 16:48:09 tron Exp $ d3 3 a5 7 SHA1 (phpMyAdmin-2.11.11.3-all-languages.tar.bz2) = 6cb39194ec848b8697de087f6d94e1a9aca74563 RMD160 (phpMyAdmin-2.11.11.3-all-languages.tar.bz2) = f4677040807f28a2362ce4b8acdafdab2201ea4b Size (phpMyAdmin-2.11.11.3-all-languages.tar.bz2) = 3118923 bytes SHA1 (patch-CVE-2010-4480-1) = e2a36a254e573406bc8aeb027935b1dde5717c03 SHA1 (patch-CVE-2010-4480-2) = 650f0a8d60a1ad1e1a14c8c66c715d4304138433 SHA1 (patch-CVE-2010-4480-3) = 403dbfdd099e5928f38fa1a9beac210b26e8ab89 SHA1 (patch-CVE-2010-4481) = 3bbf3576d8c39df22613ac2560cadb6f890f534e @ 1.48 log @Update "phpmyadmin" package to version 2.11.11.2. This version fixes the information leak reported in PMASA-2011-1. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.47 2011/01/27 13:45:55 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.11.2-all-languages.tar.bz2) = 7f7597b348ae5e021cc7a7075ad961a146b2f794 RMD160 (phpMyAdmin-2.11.11.2-all-languages.tar.bz2) = cd9fd5b45137b232366886703b9842f0552fb59d Size (phpMyAdmin-2.11.11.2-all-languages.tar.bz2) = 3119454 bytes @ 1.47 log @Add fixes for the security vulnerabilities reported in CVE-2010-4480 and CVE-2010-4481 taken from the phpMyAdmin GIT repository. Thanks a lot to Tim Zingelman for pointing out that the fixes had finally been made available. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.46 2010/11/29 19:13:30 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.11.1-all-languages.tar.bz2) = da1b74626a24dd296ed0ccad04ad8d1e49b7c398 RMD160 (phpMyAdmin-2.11.11.1-all-languages.tar.bz2) = bda8a90444df683eea585769a186df42498a96cf Size (phpMyAdmin-2.11.11.1-all-languages.tar.bz2) = 3122604 bytes @ 1.46 log @Update "phpmyadmin" package to versino 2.11.11.1. Changes since 2.11.11: Fix XSS vulnerability reported in PMASA-2010-8 (CVE-2010-4329?). @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.45 2010/09/07 22:44:07 tron Exp $ d6 4 @ 1.46.2.1 log @Pullup ticket #3338 - requested by tron Security patch for "phpmyadmin" package Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.86 - pkgsrc/databases/phpmyadmin/PLIST 1.22 - pkgsrc/databases/phpmyadmin/distinfo 1.47 - pkgsrc/databases/phpmyadmin/patches/patch-CVE-2010-4480-1 1.1 - pkgsrc/databases/phpmyadmin/patches/patch-CVE-2010-4480-2 1.1 - pkgsrc/databases/phpmyadmin/patches/patch-CVE-2010-4480-3 1.1 - pkgsrc/databases/phpmyadmin/patches/patch-CVE-2010-4481 1.1 ------------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Thu Jan 27 13:45:56 UTC 2011 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Added Files: pkgsrc/databases/phpmyadmin/patches: patch-CVE-2010-4480-1 patch-CVE-2010-4480-2 patch-CVE-2010-4480-3 patch-CVE-2010-4481 Log Message: Add fixes for the security vulnerabilities reported in CVE-2010-4480 and CVE-2010-4481 taken from the phpMyAdmin GIT repository. Thanks a lot to Tim Zingelman for pointing out that the fixes had finally been made available. To generate a diff of this commit: cvs rdiff -u -r1.85 -r1.86 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.21 -r1.22 pkgsrc/databases/phpmyadmin/PLIST cvs rdiff -u -r1.46 -r1.47 pkgsrc/databases/phpmyadmin/distinfo cvs rdiff -u -r0 -r1.1 \ pkgsrc/databases/phpmyadmin/patches/patch-CVE-2010-4480-1 \ pkgsrc/databases/phpmyadmin/patches/patch-CVE-2010-4480-2 \ pkgsrc/databases/phpmyadmin/patches/patch-CVE-2010-4480-3 \ pkgsrc/databases/phpmyadmin/patches/patch-CVE-2010-4481 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.47 2011/01/27 13:45:55 tron Exp $ a5 4 SHA1 (patch-CVE-2010-4480-1) = e2a36a254e573406bc8aeb027935b1dde5717c03 SHA1 (patch-CVE-2010-4480-2) = 650f0a8d60a1ad1e1a14c8c66c715d4304138433 SHA1 (patch-CVE-2010-4480-3) = 403dbfdd099e5928f38fa1a9beac210b26e8ab89 SHA1 (patch-CVE-2010-4481) = 3bbf3576d8c39df22613ac2560cadb6f890f534e @ 1.46.2.2 log @Pullup ticket #3350 - requested by tron Security update for "phpmyadmin" package Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.87 - pkgsrc/databases/phpmyadmin/distinfo 1.48 ------------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Thu Feb 10 16:48:09 UTC 2011 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.11.2. This version fixes the information leak reported in PMASA-2011-1. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.46.2.1 2011/01/27 21:18:32 sbd Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.11.2-all-languages.tar.bz2) = 7f7597b348ae5e021cc7a7075ad961a146b2f794 RMD160 (phpMyAdmin-2.11.11.2-all-languages.tar.bz2) = cd9fd5b45137b232366886703b9842f0552fb59d Size (phpMyAdmin-2.11.11.2-all-languages.tar.bz2) = 3119454 bytes @ 1.46.2.3 log @Pullup ticket 3352 - requested by tron security update Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.88 - pkgsrc/databases/phpmyadmin/distinfo 1.49 ------------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sun Feb 13 16:11:11 UTC 2011 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.11.3. This version fixes the script insertion reported in CVE-2011-0987. To generate a diff of this commit: cvs rdiff -u -r1.87 -r1.88 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.48 -r1.49 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.49 2011/02/13 16:11:11 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.11.3-all-languages.tar.bz2) = 6cb39194ec848b8697de087f6d94e1a9aca74563 RMD160 (phpMyAdmin-2.11.11.3-all-languages.tar.bz2) = f4677040807f28a2362ce4b8acdafdab2201ea4b Size (phpMyAdmin-2.11.11.3-all-languages.tar.bz2) = 3118923 bytes @ 1.45 log @Update "phpmyadmin" package to version 2.11.11. Changes since 2.11.10.1: - [core] Fix broken cleanup of $_GET - bug #3054458 [core] Fixed displaying number of rows. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.44 2010/08/21 07:50:01 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.11-all-languages.tar.bz2) = dc24e4550f2f81b1422d79424bc93c526e356304 RMD160 (phpMyAdmin-2.11.11-all-languages.tar.bz2) = 68654dbee5652e24e554e1dff10083ded53383e0 Size (phpMyAdmin-2.11.11-all-languages.tar.bz2) = 3121351 bytes @ 1.45.2.1 log @Pullup ticket #3288 - requested by tron Security update for "phpmyadmin" package Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.85 - pkgsrc/databases/phpmyadmin/distinfo 1.46 ------------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Mon Nov 29 19:13:30 UTC 2010 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to versino 2.11.11.1. Changes since 2.11.11: Fix XSS vulnerability reported in PMASA-2010-8 (CVE-2010-4329?). To generate a diff of this commit: cvs rdiff -u -r1.84 -r1.85 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.45 -r1.46 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.46 2010/11/29 19:13:30 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.11.1-all-languages.tar.bz2) = da1b74626a24dd296ed0ccad04ad8d1e49b7c398 RMD160 (phpMyAdmin-2.11.11.1-all-languages.tar.bz2) = bda8a90444df683eea585769a186df42498a96cf Size (phpMyAdmin-2.11.11.1-all-languages.tar.bz2) = 3122604 bytes @ 1.44 log @Update "phpmyadmin" package to version 2.11.10.1. Changes since version 2.11.10: - [setup] Fixed output sanitizing in setup script, see PMASA-2010-4 for more details. - [core] Fixed various XSS issues, see PMASA-2010-5 for more details. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.43 2010/01/26 12:04:37 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.10.1-all-languages.tar.bz2) = 13fd6c8fafd6dea3c2a5947ffa1b08784538d17a RMD160 (phpMyAdmin-2.11.10.1-all-languages.tar.bz2) = 24a49b3c5c6e10e2ee8f05f877eb73b968ebcc90 Size (phpMyAdmin-2.11.10.1-all-languages.tar.bz2) = 3073771 bytes @ 1.43 log @Update "phpmyadmin" package to version 2.11.10. Changes since version 2.11.9.6: - [core] safer handling of temporary files with open_basedir (thanks to Thijs Kinkhorst) - [core] do not automatically set and create TempDir, it might lead to security issue (thanks to Thijs Kinkhorst) - [setup] avoid usage of (un)serialize, what might be unsafe in some cases This fixes the security vulnerabilities reported in PMASA-2010-1, PMASA-2010-2 and PMASA-2010-3. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.42 2009/12/03 12:05:10 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.10-all-languages.tar.bz2) = 907f6323cf577b32d70d166361b8eff03f33ef50 RMD160 (phpMyAdmin-2.11.10-all-languages.tar.bz2) = 59edc1a04edc1fb1170ea51bdc9da4ea776e07e5 Size (phpMyAdmin-2.11.10-all-languages.tar.bz2) = 3113953 bytes @ 1.43.4.1 log @Pullup ticket 3212 - requested by tron security update Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.83 - pkgsrc/databases/phpmyadmin/distinfo 1.44 ------------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Sat Aug 21 07:50:02 UTC 2010 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.10.1. Changes since version 2.11.10: - [setup] Fixed output sanitizing in setup script, see PMASA-2010-4 for more details. - [core] Fixed various XSS issues, see PMASA-2010-5 for more details. To generate a diff of this commit: cvs rdiff -u -r1.82 -r1.83 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.43 -r1.44 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.44 2010/08/21 07:50:01 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.10.1-all-languages.tar.bz2) = 13fd6c8fafd6dea3c2a5947ffa1b08784538d17a RMD160 (phpMyAdmin-2.11.10.1-all-languages.tar.bz2) = 24a49b3c5c6e10e2ee8f05f877eb73b968ebcc90 Size (phpMyAdmin-2.11.10.1-all-languages.tar.bz2) = 3073771 bytes @ 1.42 log @Update "phpmyadmin" package to version 2.11.9.6. Changes since 2.11.9.5: - [security] XSS and SQL injection, thanks to Herman van Rink @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.41 2009/04/17 09:40:13 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.9.6-all-languages.tar.bz2) = 004841bbc1438b7df31f06a645b5d5aaea6c10d5 RMD160 (phpMyAdmin-2.11.9.6-all-languages.tar.bz2) = c81901044e062b05d1e6931bb55d798110e52576 Size (phpMyAdmin-2.11.9.6-all-languages.tar.bz2) = 3113128 bytes @ 1.42.2.1 log @Pullup ticket 2972 - requested by tron security update Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.81 - pkgsrc/databases/phpmyadmin/distinfo 1.43 ------------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Tue Jan 26 12:04:37 UTC 2010 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.10. Changes since version 2.11.9.6: - [core] safer handling of temporary files with open_basedir (thanks to Thijs Kinkhorst) - [core] do not automatically set and create TempDir, it might lead to security issue (thanks to Thijs Kinkhorst) - [setup] avoid usage of (un)serialize, what might be unsafe in some cases This fixes the security vulnerabilities reported in PMASA-2010-1, PMASA-2010-2 and PMASA-2010-3. To generate a diff of this commit: cvs rdiff -u -r1.80 -r1.81 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.42 -r1.43 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.43 2010/01/26 12:04:37 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.10-all-languages.tar.bz2) = 907f6323cf577b32d70d166361b8eff03f33ef50 RMD160 (phpMyAdmin-2.11.10-all-languages.tar.bz2) = 59edc1a04edc1fb1170ea51bdc9da4ea776e07e5 Size (phpMyAdmin-2.11.10-all-languages.tar.bz2) = 3113953 bytes @ 1.41 log @Update "phpmyadmin" package to version 2.11.9.5. This fixes the remote code execution vulnerability reported in PMASA-2009-3 / CVE-2009-1151. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.40 2008/12/15 09:11:49 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.9.5-all-languages.tar.bz2) = 2415a41c1eb800df494086f963581de3ff5b5e86 RMD160 (phpMyAdmin-2.11.9.5-all-languages.tar.bz2) = c5d5f54283e1d47e3bd26abad672a533ab40727a Size (phpMyAdmin-2.11.9.5-all-languages.tar.bz2) = 3110303 bytes @ 1.41.4.1 log @Pullup ticket 2944 - requested by tron security update Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.80 - pkgsrc/databases/phpmyadmin/distinfo 1.42 ------------------------------------------------------------------------- Module Name: pkgsrc Committed By: tron Date: Thu Dec 3 12:05:10 UTC 2009 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.9.6. Changes since 2.11.9.5: - [security] XSS and SQL injection, thanks to Herman van Rink To generate a diff of this commit: cvs rdiff -u -r1.79 -r1.80 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.41 -r1.42 pkgsrc/databases/phpmyadmin/distinfo ------------------------------------------------------------------------- @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.42 2009/12/03 12:05:10 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.9.6-all-languages.tar.bz2) = 004841bbc1438b7df31f06a645b5d5aaea6c10d5 RMD160 (phpMyAdmin-2.11.9.6-all-languages.tar.bz2) = c81901044e062b05d1e6931bb55d798110e52576 Size (phpMyAdmin-2.11.9.6-all-languages.tar.bz2) = 3113128 bytes @ 1.40 log @Update "phpmyadmin" package to version 2.11.9.4. Changes since 2.11.9.3: - [security] possible XSRF on several pages @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.39 2008/11/01 19:50:41 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.9.4-all-languages.tar.bz2) = ebbd34e91fd1baae400ecbd75622c93a30288604 RMD160 (phpMyAdmin-2.11.9.4-all-languages.tar.bz2) = 8bed9f7f3a84b8181cc75dbebfbc9d03dcc7941c Size (phpMyAdmin-2.11.9.4-all-languages.tar.bz2) = 3110278 bytes @ 1.40.4.1 log @Pullup ticket 2741 - requested by tron Security fix Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.79 - pkgsrc/databases/phpmyadmin/distinfo 1.41 Module Name: pkgsrc Committed By: tron Date: Fri Apr 17 09:40:13 UTC 2009 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.9.5. This fixes the remote code execution vulnerability reported in PMASA-2009-3 / CVE-2009-1151. To generate a diff of this commit: cvs rdiff -u -r1.78 -r1.79 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.40 -r1.41 pkgsrc/databases/phpmyadmin/distinfo @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.41 2009/04/17 09:40:13 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.9.5-all-languages.tar.bz2) = 2415a41c1eb800df494086f963581de3ff5b5e86 RMD160 (phpMyAdmin-2.11.9.5-all-languages.tar.bz2) = c5d5f54283e1d47e3bd26abad672a533ab40727a Size (phpMyAdmin-2.11.9.5-all-languages.tar.bz2) = 3110303 bytes @ 1.39 log @Update "phpmyadmin" package to version 2.11.9.3. Changes since 2.11.9.1: - [security] XSS in MSIE using NUL byte - [security] XSS in a Designer component @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.38 2008/09/18 14:33:35 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.9.3-all-languages.tar.bz2) = b440cad76a9aab2b676acc6cc15dcf53632b25d1 RMD160 (phpMyAdmin-2.11.9.3-all-languages.tar.bz2) = bae8874d7dc5ef7143857d68e5ea23674acbb813 Size (phpMyAdmin-2.11.9.3-all-languages.tar.bz2) = 3110391 bytes @ 1.38 log @Update "phpmyadmin" package to version 2.11.9.1. Changes since 2.11.8.1: - bug #2031221 [auth] Links to version number on login screen - bug #2032707 [core] PMA does not start if ini_set() is disabled - bug #2004915 [bookmarks] Saved queries greater than 1000 chars not displayed - bug #2037381 [export] Export type "replace" does not work - bug #2037375 [export] DROP PROCEDURE needs IF EXISTS - bug #2045512 [export] Numbers in Excel export + [lang] Norwegian UTF-8 original file remerged - bug #2074250 [parser] Undefined variable seen_from - [security] Code execution vulnerability This update fixes the security vulnerability reported in PMASA-2008-7. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.37 2008/07/29 18:59:51 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.9.1-all-languages.tar.bz2) = 6f77da40f5f85cda76059a3c0a3d17ead8f4eee6 RMD160 (phpMyAdmin-2.11.9.1-all-languages.tar.bz2) = 1184180b016d6429c70607404e349480489f9fd4 Size (phpMyAdmin-2.11.9.1-all-languages.tar.bz2) = 3110561 bytes @ 1.38.2.1 log @pullup ticket #2566 - requested by tron phpmyadmin: update package for security fixes revisions pulled up: pkgsrc/databases/phpmyadmin/Makefile 1.76 pkgsrc/databases/phpmyadmin/distinfo 1.39 Module Name: pkgsrc Committed By: tron Date: Sat Nov 1 19:50:41 UTC 2008 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.9.3. Changes since 2.11.9.1: - [security] XSS in MSIE using NUL byte - [security] XSS in a Designer component @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.38 2008/09/18 14:33:35 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.9.3-all-languages.tar.bz2) = b440cad76a9aab2b676acc6cc15dcf53632b25d1 RMD160 (phpMyAdmin-2.11.9.3-all-languages.tar.bz2) = bae8874d7dc5ef7143857d68e5ea23674acbb813 Size (phpMyAdmin-2.11.9.3-all-languages.tar.bz2) = 3110391 bytes @ 1.38.2.2 log @pullup ticket #2609 - requested by tron phpmyadmin: update package revisions pulled up: pkgsrc/databases/phpmyadmin/Makefile 1.78 pkgsrc/databases/phpmyadmin/distinfo 1.40 Module Name: pkgsrc Committed By: tron Date: Mon Dec 15 09:11:49 UTC 2008 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.9.4. Changes since 2.11.9.3: - [security] possible XSRF on several pages @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.38.2.1 2008/11/02 23:47:33 rtr Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.9.4-all-languages.tar.bz2) = ebbd34e91fd1baae400ecbd75622c93a30288604 RMD160 (phpMyAdmin-2.11.9.4-all-languages.tar.bz2) = 8bed9f7f3a84b8181cc75dbebfbc9d03dcc7941c Size (phpMyAdmin-2.11.9.4-all-languages.tar.bz2) = 3110278 bytes @ 1.37 log @Update "phpmyadmin" package to version 2.11.8.1. Changes since 2.11.7.1: - patch #1987593 [interface] Table list pagination in navi - bug #1989081 [profiling] Profiling causes query to be executed again (really causes a problem in case of INSERT/UPDATE) - bug #1990342 [import] SQL file import very slow on Windows - bug [XHTML] problem with tabindex and radio fields - bug #1971221 [interface] tabindex not set correctly - bug [views] VIEW name created via the GUI was not protected with backquotes - bug #1989813 [interface] Deleting multiple views (space in name) - bug #1992628 [parser] SQL parser removes essential space - bug #1989281 [export] CSV for MS Excel incorrect escaping of double quotes - bug #1959855 [interface] Font size option problem when no config file - bug #1982489 [relation] Relationship view should check for changes - bug [history] Do not save too big queries in history - [security] Do not show version info on login screen - bug #2018595 [import] Potential data loss on import resubmit - patch #2020630 [export] Safari and timedate - bug #2022182 [import, export] Import/Export fails because of Mac files - [security] protection against cross-frame scripting and new directive AllowThirdPartyFraming - [security] possible XSS during setup - [interface] revert language changing problem introduced with 2.11.7.1 - small fix for notice about "lang" This update fixes the security vulnerability reported in PMASA-2008-6. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.36 2008/07/17 15:55:16 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.8.1-all-languages.tar.bz2) = 5a2134c296b2a0a72c8aaee71a19060cfcde1ec9 RMD160 (phpMyAdmin-2.11.8.1-all-languages.tar.bz2) = b348cad6216fdd8c302f03774f248fbe0a031a97 Size (phpMyAdmin-2.11.8.1-all-languages.tar.bz2) = 3110388 bytes @ 1.36 log @Updatep "phpmyadmin" package to version 2.11.7.1. Changes since 2.11.7: - bug #1908719 [interface] New field cannot be auto-increment and primary key - [dbi] Incorrect interpretation for some mysqli field flags - bug #1910621 [display] part 1: do not display a TEXT utf8_bin as BLOB (fixed for mysqli extension only) - [interface] sanitize the after_field parameter, thanks to Norman Hippert - [structure] do not remove the BINARY attribute in drop-down - bug #1955386 [session] Overriding session.hash_bits_per_character - [interface] sanitize the table comments in table print view, thanks to Norman Hippert - bug #1939031 Auto_Increment selected for TimeStamp by Default - patch #1957998 [display] No tilde for InnoDB row counter when we know it for sure, thanks to Vladyslav Bakayev - dandy76 - bug #1955572 [display] alt text causes duplicated strings - bug #1762029 [interface] Cannot upload BLOB into existing row - bug #1981043 [export] HTML in exports getting corrupted, thanks to Jason Judge - jasonjudge - bug #1936761 [interface] BINARY not treated as BLOB: update/delete issues - protection against XSS when register_globals is on and .htaccess has no effect, thanks to Tim Starling - bug #1996943 [export] Firefox 3 and .sql.gz (corrupted); detect Gecko 1.9, thanks to Juergen Wind - (2.11.7.1) [security] XSRF/CSRF by manipulating the db, convcharset and collation_connection parameters, thanks to YGN Ethical Hacker Group This update fixes the security vulnerability reported in PMASA-2008-5. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.35 2008/06/28 11:11:15 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.7.1-all-languages.tar.bz2) = 1e5b4e6b1127b41ebbd986b030b4dda00fe90edc RMD160 (phpMyAdmin-2.11.7.1-all-languages.tar.bz2) = 2e9adb438c9212ae4e1be44ed9d10f8b981d8b6e Size (phpMyAdmin-2.11.7.1-all-languages.tar.bz2) = 3098663 bytes @ 1.35 log @Update "phpmyadmin" package to version 2.11.7. Changes since 2.11.6: - bug #1908719 [interface] New field cannot be auto-increment and primary key - [dbi] Incorrect interpretation for some mysqli field flags - bug #1910621 [display] part 1: do not display a TEXT utf8_bin as BLOB (fixed for mysqli extension only) - [interface] sanitize the after_field parameter, thanks to Norman Hippert - [structure] do not remove the BINARY attribute in drop-down - bug #1955386 [session] Overriding session.hash_bits_per_character - [interface] sanitize the table comments in table print view, thanks to Norman Hippert - bug #1939031 Auto_Increment selected for TimeStamp by Default - patch #1957998 [display] No tilde for InnoDB row counter when we know it for sure, thanks to Vladyslav Bakayev - dandy76 - bug #1955572 [display] alt text causes duplicated strings - bug #1762029 [interface] Cannot upload BLOB into existing row - bug #1981043 [export] HTML in exports getting corrupted, thanks to Jason Judge - jasonjudge - bug #1936761 [interface] BINARY not treated as BLOB: update/delete issues - protection against XSS when register_globals is on and .htaccess has no effect, thanks to Tim Starling - bug #1996943 [export] Firefox 3 and .sql.gz (corrupted); detect Gecko 1.9, thanks to Juergen Wind @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.34 2008/06/08 14:15:28 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.7-all-languages.tar.bz2) = 4663b6cd45471ba8547e35e47b10fc8fd1622052 RMD160 (phpMyAdmin-2.11.7-all-languages.tar.bz2) = 117ce8dd3a6f932e80a2355a221623d68e38eb36 Size (phpMyAdmin-2.11.7-all-languages.tar.bz2) = 3098110 bytes @ 1.35.4.1 log @pullup ticket #2451 requested by tron phpmyadmin: package update for bug and security fixes revisions pulled up: pkgsrc/databases/phpmyadmin/Makefile 1.73 pkgsrc/databases/phpmyadmin/distinfo 1.36 Module Name: pkgsrc Committed By: tron Date: Thu Jul 17 15:55:16 UTC 2008 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Updatep "phpmyadmin" package to version 2.11.7.1. Changes since 2.11.7: - bug #1908719 [interface] New field cannot be auto-increment and primary key - [dbi] Incorrect interpretation for some mysqli field flags - bug #1910621 [display] part 1: do not display a TEXT utf8_bin as BLOB (fixed for mysqli extension only) - [interface] sanitize the after_field parameter, thanks to Norman Hippert - [structure] do not remove the BINARY attribute in drop-down - bug #1955386 [session] Overriding session.hash_bits_per_character - [interface] sanitize the table comments in table print view, thanks to Norman Hippert - bug #1939031 Auto_Increment selected for TimeStamp by Default - patch #1957998 [display] No tilde for InnoDB row counter when we know it for sure, thanks to Vladyslav Bakayev - dandy76 - bug #1955572 [display] alt text causes duplicated strings - bug #1762029 [interface] Cannot upload BLOB into existing row - bug #1981043 [export] HTML in exports getting corrupted, thanks to Jason Judge - jasonjudge - bug #1936761 [interface] BINARY not treated as BLOB: update/delete issues - protection against XSS when register_globals is on and .htaccess has no effect, thanks to Tim Starling - bug #1996943 [export] Firefox 3 and .sql.gz (corrupted); detect Gecko 1.9, thanks to Juergen Wind - (2.11.7.1) [security] XSRF/CSRF by manipulating the db, convcharset and collation_connection parameters, thanks to YGN Ethical Hacker Group This update fixes the security vulnerability reported in PMASA-2008-5. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.35 2008/06/28 11:11:15 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.7.1-all-languages.tar.bz2) = 1e5b4e6b1127b41ebbd986b030b4dda00fe90edc RMD160 (phpMyAdmin-2.11.7.1-all-languages.tar.bz2) = 2e9adb438c9212ae4e1be44ed9d10f8b981d8b6e Size (phpMyAdmin-2.11.7.1-all-languages.tar.bz2) = 3098663 bytes @ 1.35.4.2 log @pullup ticket #2467 - requested by tron phpmyadmin: update for security fixes revisions pulled up: pkgsrc/databases/phpmyadmin/Makefile 1.74 pkgsrc/databases/phpmyadmin/distinfo 1.37 Module Name: pkgsrc Committed By: tron Date: Tue Jul 29 18:59:51 UTC 2008 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.8.1. Changes since 2.11.7.1: - patch #1987593 [interface] Table list pagination in navi - bug #1989081 [profiling] Profiling causes query to be executed again (really causes a problem in case of INSERT/UPDATE) - bug #1990342 [import] SQL file import very slow on Windows - bug [XHTML] problem with tabindex and radio fields - bug #1971221 [interface] tabindex not set correctly - bug [views] VIEW name created via the GUI was not protected with backquotes - bug #1989813 [interface] Deleting multiple views (space in name) - bug #1992628 [parser] SQL parser removes essential space - bug #1989281 [export] CSV for MS Excel incorrect escaping of double quotes - bug #1959855 [interface] Font size option problem when no config file - bug #1982489 [relation] Relationship view should check for changes - bug [history] Do not save too big queries in history - [security] Do not show version info on login screen - bug #2018595 [import] Potential data loss on import resubmit - patch #2020630 [export] Safari and timedate - bug #2022182 [import, export] Import/Export fails because of Mac files - [security] protection against cross-frame scripting and new directive AllowThirdPartyFraming - [security] possible XSS during setup - [interface] revert language changing problem introduced with 2.11.7.1 - small fix for notice about "lang" This update fixes the security vulnerability reported in PMASA-2008-6. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.35.4.1 2008/07/18 10:05:00 rtr Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.8.1-all-languages.tar.bz2) = 5a2134c296b2a0a72c8aaee71a19060cfcde1ec9 RMD160 (phpMyAdmin-2.11.8.1-all-languages.tar.bz2) = b348cad6216fdd8c302f03774f248fbe0a031a97 Size (phpMyAdmin-2.11.8.1-all-languages.tar.bz2) = 3110388 bytes @ 1.35.4.3 log @pullup ticket #2530 - requested by tron phpmyadmin: update package for security fixes revisions pulled up: pkgsrc/databases/phpmyadmin/Makefile 1.75 pkgsrc/databases/phpmyadmin/distinfo 1.38 Module Name: pkgsrc Committed By: tron Date: Thu Sep 18 14:33:35 UTC 2008 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.9.1. Changes since 2.11.8.1: - bug #2031221 [auth] Links to version number on login screen - bug #2032707 [core] PMA does not start if ini_set() is disabled - bug #2004915 [bookmarks] Saved queries greater than 1000 chars not displayed - bug #2037381 [export] Export type "replace" does not work - bug #2037375 [export] DROP PROCEDURE needs IF EXISTS - bug #2045512 [export] Numbers in Excel export + [lang] Norwegian UTF-8 original file remerged - bug #2074250 [parser] Undefined variable seen_from - [security] Code execution vulnerability This update fixes the security vulnerability reported in PMASA-2008-7. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.35.4.2 2008/07/30 10:03:25 rtr Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.9.1-all-languages.tar.bz2) = 6f77da40f5f85cda76059a3c0a3d17ead8f4eee6 RMD160 (phpMyAdmin-2.11.9.1-all-languages.tar.bz2) = 1184180b016d6429c70607404e349480489f9fd4 Size (phpMyAdmin-2.11.9.1-all-languages.tar.bz2) = 3110561 bytes @ 1.34 log @Update "phpmyadmin" package to version 2.11.6. Changes since 2.11.5.2: - bug #1903724 [interface] Displaying of very large queries in error message - bug #1905711 [compatibility] Functions deprecated in PHP 5.3: is_a() and get_magic_quotes_gpc() - bug [lang] catalan wrong accented characters - bug #1893034 [Export] SET NAMES for importing with command-line client + [lang] Russian update - bug #1910485 [core] Unsetting the whitelist during the loop - bug #1906980 [Export] Import of VIEWs fails if temp table exists - bug #1812763 [Copy] Table copy when server is in ANSI_QUOTES sql_mode - bug #1918531 [compatibility] Navigation isn't w3.org valid - bug #1926357 [data] BIT defaults displayed incorrectly - patch #1930057 [auth] colon in password prevents HTTP login on CGI/IIS - patch #1929553 [lang] Don't output BOM character in Swedish language file - patch #1895796 [lang] Typo in Japanese lang files - bug #1935652 [auth] Access denied (show warning about mcrypt on login page) - bug #1906983 [export] Reimport of FUNCTION fails - bug #1919808 [operations] Renaming a database fails to handle functions - bug #1934401 [core] Cannot force a language - bug #1944077 [core] Config file containing a BOM - bug #1947189 [scripts] Missing head tag in scripts/signon.php + [lang] Romanian update @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.33 2008/04/27 14:59:10 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.6-all-languages.tar.bz2) = 9accdabc5a4fe1b1a6dee8d26df1089d4c7ad484 RMD160 (phpMyAdmin-2.11.6-all-languages.tar.bz2) = 047af054af40350612e396d2ddc630d9fe073561 Size (phpMyAdmin-2.11.6-all-languages.tar.bz2) = 3097302 bytes @ 1.33 log @Update "phpmyadmin" package to version 2.11.5.2. This update fixes the security problem reported in PMASA-2008-3 (CVE-2008-1924). @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.32 2008/04/01 16:11:21 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.5.2-all-languages.tar.bz2) = 13eae6eb086da00ff64720f473fe2ed9fcfd874b RMD160 (phpMyAdmin-2.11.5.2-all-languages.tar.bz2) = 5b034c1c75da11cb05f4e9a5e9109f8383787cd7 Size (phpMyAdmin-2.11.5.2-all-languages.tar.bz2) = 3093323 bytes @ 1.32 log @Update "phpmyadmin" package to version 2.11.5.1. The new version fixes a credentials disclosure on shared hosts via session data reported in security announcement PMASA-2008-2. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.31 2008/03/03 16:47:47 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.5.1-all-languages.tar.bz2) = f6fd9e7ef6e469fa850903efa156e11b2be8f7f8 RMD160 (phpMyAdmin-2.11.5.1-all-languages.tar.bz2) = 4a72fb1c7becb6d0ffa7d0d69f3c735d3277d6af Size (phpMyAdmin-2.11.5.1-all-languages.tar.bz2) = 3092857 bytes @ 1.32.2.1 log @pullup ticket #2352 - requested by tron update for security problem Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.68 - pkgsrc/databases/phpmyadmin/distinfo 1.33 Module Name: pkgsrc Committed By: tron Date: Sun Apr 27 14:59:10 UTC 2008 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.5.2. This update fixes the security problem reported in PMASA-2008-3 (CVE-2008-1924). @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.32 2008/04/01 16:11:21 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.5.2-all-languages.tar.bz2) = 13eae6eb086da00ff64720f473fe2ed9fcfd874b RMD160 (phpMyAdmin-2.11.5.2-all-languages.tar.bz2) = 5b034c1c75da11cb05f4e9a5e9109f8383787cd7 Size (phpMyAdmin-2.11.5.2-all-languages.tar.bz2) = 3093323 bytes @ 1.32.2.2 log @pullup ticket 2437 requested by tron phpmyadmin: bug fixes many pkgsrc/databases/phpmyadmin/Makefile 1.71,1.72 pkgsrc/databases/phpmyadmin/distinfo 1.34,1.35 Module Name: pkgsrc Committed By: tron Date: Sun Jun 8 14:15:28 UTC 2008 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.6. Changes since 2.11.5.2: - bug #1903724 [interface] Displaying of very large queries in error message - bug #1905711 [compatibility] Functions deprecated in PHP 5.3: is_a() and get_magic_quotes_gpc() - bug [lang] catalan wrong accented characters - bug #1893034 [Export] SET NAMES for importing with command-line client + [lang] Russian update - bug #1910485 [core] Unsetting the whitelist during the loop - bug #1906980 [Export] Import of VIEWs fails if temp table exists - bug #1812763 [Copy] Table copy when server is in ANSI_QUOTES sql_mode - bug #1918531 [compatibility] Navigation isn't w3.org valid - bug #1926357 [data] BIT defaults displayed incorrectly - patch #1930057 [auth] colon in password prevents HTTP login on CGI/IIS - patch #1929553 [lang] Don't output BOM character in Swedish language file - patch #1895796 [lang] Typo in Japanese lang files - bug #1935652 [auth] Access denied (show warning about mcrypt on login page) - bug #1906983 [export] Reimport of FUNCTION fails - bug #1919808 [operations] Renaming a database fails to handle functions - bug #1934401 [core] Cannot force a language - bug #1944077 [core] Config file containing a BOM - bug #1947189 [scripts] Missing head tag in scripts/signon.php + [lang] Romanian update ------------------------------------------------------------------------ Module Name: pkgsrc Committed By: tron Date: Sat Jun 28 11:11:15 UTC 2008 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.7. Changes since 2.11.6: - bug #1908719 [interface] New field cannot be auto-increment and primary key - [dbi] Incorrect interpretation for some mysqli field flags - bug #1910621 [display] part 1: do not display a TEXT utf8_bin as BLOB (fixed for mysqli extension only) - [interface] sanitize the after_field parameter, thanks to Norman Hippert - [structure] do not remove the BINARY attribute in drop-down - bug #1955386 [session] Overriding session.hash_bits_per_character - [interface] sanitize the table comments in table print view, thanks to Norman Hippert - bug #1939031 Auto_Increment selected for TimeStamp by Default - patch #1957998 [display] No tilde for InnoDB row counter when we know it for sure, thanks to Vladyslav Bakayev - dandy76 - bug #1955572 [display] alt text causes duplicated strings - bug #1762029 [interface] Cannot upload BLOB into existing row - bug #1981043 [export] HTML in exports getting corrupted, thanks to Jason Judge - jasonjudge - bug #1936761 [interface] BINARY not treated as BLOB: update/delete issues - protection against XSS when register_globals is on and .htaccess has no effect, thanks to Tim Starling - bug #1996943 [export] Firefox 3 and .sql.gz (corrupted); detect Gecko 1.9, thanks to Juergen Wind @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.32.2.1 2008/04/28 10:41:30 rtr Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.7-all-languages.tar.bz2) = 4663b6cd45471ba8547e35e47b10fc8fd1622052 RMD160 (phpMyAdmin-2.11.7-all-languages.tar.bz2) = 117ce8dd3a6f932e80a2355a221623d68e38eb36 Size (phpMyAdmin-2.11.7-all-languages.tar.bz2) = 3098110 bytes @ 1.31 log @Update "phpmyadmin" package to version 2.11.5. The new version fixes several bugs including the cross site scripting vulnerability reported in PMASA-2007-8 and the SQL inject vulnerability report in PMASA-2008-1. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.30 2007/11/12 14:05:26 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.5-all-languages.tar.bz2) = 922a5ce40a0139aa3013e95eb6ee9176a7aa2785 RMD160 (phpMyAdmin-2.11.5-all-languages.tar.bz2) = 54c92b29b896cef10fe3f88c9ae9ad609da8de6c Size (phpMyAdmin-2.11.5-all-languages.tar.bz2) = 3092821 bytes @ 1.30 log @Update "phpmyadmin" package to version 2.11.2.1. Change since version 2.10.2: - creating VIEWs from query results - managing triggers, procedures and functions - supports MySQL 5.0.37 query profiling - improved interface for servers hosting thousands of databases and tables. - security fixes for PMASA-2007-5, PMASA-2007-6 and PMASA-2007-7 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.29 2007/07/03 14:18:14 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.2.1-all-languages.tar.bz2) = a73e5438f041233838e2e940fce14b5b4230133e RMD160 (phpMyAdmin-2.11.2.1-all-languages.tar.bz2) = 9478445bb7a0431412944b2a97314162a455a1b1 Size (phpMyAdmin-2.11.2.1-all-languages.tar.bz2) = 3083390 bytes @ 1.29 log @Update "phpmyadmin" package to version 2.10.2. The new version fixes several bugs and addresses the security vulerability reported in PMASA-2007-4. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.28 2007/03/20 14:17:16 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.10.2-all-languages.tar.bz2) = b213ecd9605ed248f37a7c19bc41282f7d92a233 RMD160 (phpMyAdmin-2.10.2-all-languages.tar.bz2) = 5858f46aa912e0cb5e6206802746679d68776d14 Size (phpMyAdmin-2.10.2-all-languages.tar.bz2) = 2996012 bytes @ 1.29.2.1 log @Pullup ticket 2225 - requested by tron security update for phpmyadmin - pkgsrc/databases/phpmyadmin/Makefile 1.62 - pkgsrc/databases/phpmyadmin/PLIST 1.18 - pkgsrc/databases/phpmyadmin/distinfo 1.30 Module Name: pkgsrc Committed By: tron Date: Mon Nov 12 14:05:26 UTC 2007 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 2.11.2.1. Change since version 2.10.2: - creating VIEWs from query results - managing triggers, procedures and functions - supports MySQL 5.0.37 query profiling - improved interface for servers hosting thousands of databases and tables. - security fixes for PMASA-2007-5, PMASA-2007-6 and PMASA-2007-7 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.29 2007/07/03 14:18:14 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.11.2.1-all-languages.tar.bz2) = a73e5438f041233838e2e940fce14b5b4230133e RMD160 (phpMyAdmin-2.11.2.1-all-languages.tar.bz2) = 9478445bb7a0431412944b2a97314162a455a1b1 Size (phpMyAdmin-2.11.2.1-all-languages.tar.bz2) = 3083390 bytes @ 1.28 log @Update "phpmyadmin" package to version 2.10.0.2: - Fix for PMASA-2007-3 (PHP Executor Deep Recursion Stack Overflow) - New graphical relation manager, called Designer, available in database view @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.27 2007/01/10 12:50:04 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.10.0.2-all-languages.tar.bz2) = 004bd9b3d86b5ced31671b780fba656c59678cee RMD160 (phpMyAdmin-2.10.0.2-all-languages.tar.bz2) = 432f8c4e2b7b3f36a0994182f1bd90401c807db3 Size (phpMyAdmin-2.10.0.2-all-languages.tar.bz2) = 3020505 bytes @ 1.28.4.1 log @Pullup ticket 2135 - requested by tron security update for phpmyadmin - pkgsrc/databases/phpmyadmin/Makefile 1.60 - pkgsrc/databases/phpmyadmin/distinfo 1.29 Module Name: pkgsrc Committed By: tron Date: Tue Jul 3 14:18:14 UTC 2007 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.10.2. The new version fixes several bugs and addresses the security vulerability reported in PMASA-2007-4. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.28 2007/03/20 14:17:16 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.10.2-all-languages.tar.bz2) = b213ecd9605ed248f37a7c19bc41282f7d92a233 RMD160 (phpMyAdmin-2.10.2-all-languages.tar.bz2) = 5858f46aa912e0cb5e6206802746679d68776d14 Size (phpMyAdmin-2.10.2-all-languages.tar.bz2) = 2996012 bytes @ 1.27 log @Update "phpmyadmin" package to version 2.9.2rc1. Changes since version 2.9.1.1 (literal quote from the home page): Version 2.9.2-rc1 contains some security fixes (an advisory will be published when releasing 2.9.2) and other fixes. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.26 2006/11/19 15:55:54 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.9.2-rc1-all-languages.tar.bz2) = 9f7384dbdf4a89d18198c147ccb135668044468d RMD160 (phpMyAdmin-2.9.2-rc1-all-languages.tar.bz2) = dfda0cb145b5ec8f7f3cc20090224bd903b5c72d Size (phpMyAdmin-2.9.2-rc1-all-languages.tar.bz2) = 2352924 bytes @ 1.26 log @Update "phpmyadmin" package to version 2.9.1.1. Changes since version 2.9.0.3: - Security fixes - Wrong import when ;; is at buffer boundary - Duplicate id for checkbox on table Operations page - Better behavior on the Add new fields page - Export: csv/cvs typo - Renaming a db containing a view - Automated timestamp values - Import: correctly fail if file is too short - Default font family on original theme @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.25 2006/11/04 15:50:37 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.9.1.1-all-languages.tar.bz2) = d00fade0a7832c986cb6f8af19f5d15b60a3c626 RMD160 (phpMyAdmin-2.9.1.1-all-languages.tar.bz2) = 7b4a232656c09a2216795b347c529d4b2ec07338 Size (phpMyAdmin-2.9.1.1-all-languages.tar.bz2) = 2350018 bytes @ 1.26.2.1 log @Pullup ticket 1984 - requested by tron security update for phpmyadmin - pkgsrc/databases/phpmyadmin/Makefile 1.57 - pkgsrc/databases/phpmyadmin/distinfo 1.27 Module Name: pkgsrc Committed By: tron Date: Wed Jan 10 12:50:04 UTC 2007 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.9.2rc1. Changes since version 2.9.1.1 (literal quote from the home page): Version 2.9.2-rc1 contains some security fixes (an advisory will be published when releasing 2.9.2) and other fixes. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.26 2006/11/19 15:55:54 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.9.2-rc1-all-languages.tar.bz2) = 9f7384dbdf4a89d18198c147ccb135668044468d RMD160 (phpMyAdmin-2.9.2-rc1-all-languages.tar.bz2) = dfda0cb145b5ec8f7f3cc20090224bd903b5c72d Size (phpMyAdmin-2.9.2-rc1-all-languages.tar.bz2) = 2352924 bytes @ 1.26.2.2 log @Pullup ticket 2054 - requested by tron security update for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.58 - pkgsrc/databases/phpmyadmin/PLIST 1.17 - pkgsrc/databases/phpmyadmin/distinfo 1.28 Module Name: pkgsrc Committed By: tron Date: Tue Mar 20 14:17:16 UTC 2007 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 2.10.0.2: - Fix for PMASA-2007-3 (PHP Executor Deep Recursion Stack Overflow) - New graphical relation manager, called Designer, available in database view @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.28 2007/03/20 14:17:16 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.10.0.2-all-languages.tar.bz2) = 004bd9b3d86b5ced31671b780fba656c59678cee RMD160 (phpMyAdmin-2.10.0.2-all-languages.tar.bz2) = 432f8c4e2b7b3f36a0994182f1bd90401c807db3 Size (phpMyAdmin-2.10.0.2-all-languages.tar.bz2) = 3020505 bytes @ 1.25 log @Update "phpmyadmin" package to version 2.9.0.3. This version fixes the XSS vulnerability reported in PMASA-2006-6. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.24 2006/10/14 11:22:32 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.9.0.3-all-languages.tar.bz2) = d1338b03de57eece1c6f22325396605984ad5787 RMD160 (phpMyAdmin-2.9.0.3-all-languages.tar.bz2) = b9ecdd0aa0f79587ed0644fc46d87a43355cc881 Size (phpMyAdmin-2.9.0.3-all-languages.tar.bz2) = 2347243 bytes @ 1.24 log @Update "phpmyadmin" package to version 2.9.0.2. Changes since version 2.8.2.4: - Fixed for security vulnerability reported in PMASA-2006-5 - New export options - A lot of bug fixes @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.23 2006/08/29 09:01:30 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.9.0.2.tar.bz2) = 64a0f6bfdf1d4f0de1456d4b5d8f9dc9d76e6b63 RMD160 (phpMyAdmin-2.9.0.2.tar.bz2) = d344a2a5c84bcfe4b915d151e7bfb8a60d4e1712 Size (phpMyAdmin-2.9.0.2.tar.bz2) = 2041197 bytes @ 1.23 log @Update "phpmyadmin" package to version 2.8.2.4. This release fixes some bugs found since version 2.8.2 hasn been released. This update was provided by Martin Wilke in PR pkg/34314. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.22 2006/07/08 10:26:29 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.8.2.4.tar.bz2) = 82cee19e7fabc3a4efb0813751ca217ba6abcc09 RMD160 (phpMyAdmin-2.8.2.4.tar.bz2) = e15d76200c8c2935d837ff7de7723ed0da312bab Size (phpMyAdmin-2.8.2.4.tar.bz2) = 2014789 bytes @ 1.23.2.1 log @Pullup ticket 1868 - requested by tron security update for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.53 - pkgsrc/databases/phpmyadmin/PLIST 1.16 - pkgsrc/databases/phpmyadmin/distinfo 1.24 Module Name: pkgsrc Committed By: tron Date: Sat Oct 14 11:22:32 UTC 2006 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 2.9.0.2. Changes since version 2.8.2.4: - Fixed for security vulnerability reported in PMASA-2006-5 - New export options - A lot of bug fixes @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.24 2006/10/14 11:22:32 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.9.0.2.tar.bz2) = 64a0f6bfdf1d4f0de1456d4b5d8f9dc9d76e6b63 RMD160 (phpMyAdmin-2.9.0.2.tar.bz2) = d344a2a5c84bcfe4b915d151e7bfb8a60d4e1712 Size (phpMyAdmin-2.9.0.2.tar.bz2) = 2041197 bytes @ 1.23.2.2 log @Pullup ticket 1900 - requested by tron security update for phpmyadmin - pkgsrc/databases/phpmyadmin/Makefile 1.54 - pkgsrc/databases/phpmyadmin/distinfo 1.25 Module Name: pkgsrc Committed By: tron Date: Sat Nov 4 15:50:37 UTC 2006 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.9.0.3. This version fixes the XSS vulnerability reported in PMASA-2006-6. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.25 2006/11/04 15:50:37 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.9.0.3-all-languages.tar.bz2) = d1338b03de57eece1c6f22325396605984ad5787 RMD160 (phpMyAdmin-2.9.0.3-all-languages.tar.bz2) = b9ecdd0aa0f79587ed0644fc46d87a43355cc881 Size (phpMyAdmin-2.9.0.3-all-languages.tar.bz2) = 2347243 bytes @ 1.23.2.3 log @Pullup ticket 1916 - requested by tron security update for phpmyadmin - pkgsrc/databases/phpmyadmin/Makefile 1.55 - pkgsrc/databases/phpmyadmin/distinfo 1.26 Module Name: pkgsrc Committed By: tron Date: Sun Nov 19 15:55:54 UTC 2006 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.9.1.1. Changes since version 2.9.0.3: - Security fixes - Wrong import when ;; is at buffer boundary - Duplicate id for checkbox on table Operations page - Better behavior on the Add new fields page - Export: csv/cvs typo - Renaming a db containing a view - Automated timestamp values - Import: correctly fail if file is too short - Default font family on original theme @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.23.2.2 2006/11/04 16:47:01 ghen Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.9.1.1-all-languages.tar.bz2) = d00fade0a7832c986cb6f8af19f5d15b60a3c626 RMD160 (phpMyAdmin-2.9.1.1-all-languages.tar.bz2) = 7b4a232656c09a2216795b347c529d4b2ec07338 Size (phpMyAdmin-2.9.1.1-all-languages.tar.bz2) = 2350018 bytes @ 1.22 log @Update "phpmyadmin" package to version 2.8.2. Changes since version 2.8.0.4: - XSS vulnerability from requests not containing a token - Reenable XML option in Export - State in documentation that your browser must accept cookies - CVS link was broken on main page - Adding a user with password containing a backslash - Removing a default value - Setup script: compatibility with security tokens - Setup script: detection of writable config - Reading the database list with MySQL wildcards @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.21 2006/05/13 09:56:36 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.8.2.tar.bz2) = 1af7caee3c90e64e456fcc226d68f3ed88581289 RMD160 (phpMyAdmin-2.8.2.tar.bz2) = 56bf381358333f806d738c42891370d3b74d5d6e Size (phpMyAdmin-2.8.2.tar.bz2) = 2013981 bytes @ 1.21 log @Update "phpmyadmin" package to version 2.8.0.4. This version fixes the security vulnerability reported in PMASA-2006-2 and CVE-2006-2031. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.20 2006/04/07 12:01:15 tron Exp $ d3 3 a5 4 SHA1 (phpMyAdmin-2.8.0.4.tar.bz2) = 51d29a0f5008dde8e1b9bf88e8cefc954df14e00 RMD160 (phpMyAdmin-2.8.0.4.tar.bz2) = 05d175d72c2ed25ef070bee56b69c1dd7d81665c Size (phpMyAdmin-2.8.0.4.tar.bz2) = 1993879 bytes SHA1 (patch-aa) = 102a2dd335ca453fd764c0b3a5abcdb4023503e8 @ 1.21.2.1 log @Pullup ticket 1722 - requested by tron security update for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.51 - pkgsrc/databases/phpmyadmin/distinfo 1.22 - pkgsrc/databases/phpmyadmin/patches/patch-aa removed Module Name: pkgsrc Committed By: tron Date: Sat Jul 8 10:26:29 UTC 2006 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Removed Files: pkgsrc/databases/phpmyadmin/patches: patch-aa Log Message: Update "phpmyadmin" package to version 2.8.2. Changes since version 2.8.0.4: - XSS vulnerability from requests not containing a token - Reenable XML option in Export - State in documentation that your browser must accept cookies - CVS link was broken on main page - Adding a user with password containing a backslash - Removing a default value - Setup script: compatibility with security tokens - Setup script: detection of writable config - Reading the database list with MySQL wildcards @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.22 2006/07/08 10:26:29 tron Exp $ d3 4 a6 3 SHA1 (phpMyAdmin-2.8.2.tar.bz2) = 1af7caee3c90e64e456fcc226d68f3ed88581289 RMD160 (phpMyAdmin-2.8.2.tar.bz2) = 56bf381358333f806d738c42891370d3b74d5d6e Size (phpMyAdmin-2.8.2.tar.bz2) = 2013981 bytes @ 1.20 log @Update "phpmyadmin" package to version 2.8.0.3. Changes since version 2.8.0.2: - XSS vulnerability (set_theme) - mysqli problems with zend.ze1_compatibility_mode enabled - setup script did not save the mysql/mysqli extension - XSS vulnerability (calling directly css files under themes) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.19 2006/03/26 17:55:28 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.8.0.3.tar.bz2) = 81e46598fe033092228b3476b88d196bfdfe0c5a RMD160 (phpMyAdmin-2.8.0.3.tar.bz2) = d40d236c4041c16a1d06e1c158f14707938ab16c Size (phpMyAdmin-2.8.0.3.tar.bz2) = 2011518 bytes @ 1.19 log @Update "phpmyadmin" package to version 2.8.0.2. Changes since version 2.8.0.1: - XSS vulnerability (set_theme) - mysqli problems with zend.ze1_compatibility_mode enabled - setup script did not save the mysql/mysqli extension Package source related changes: - incooperate fix for phpMyAdmin bug #1436279 to make the package usable with Safari under Mac OS X again @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.18 2006/03/09 11:21:22 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.8.0.2.tar.bz2) = fd60fab3ae6609fe54c7edee98192fe7d7002224 RMD160 (phpMyAdmin-2.8.0.2.tar.bz2) = 8c94abbf9479c053848374cefcf4d8046197c262 Size (phpMyAdmin-2.8.0.2.tar.bz2) = 2010290 bytes @ 1.19.2.1 log @Pullup ticket 1342 - requested by tron security update for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.48 - pkgsrc/databases/phpmyadmin/distinfo 1.20 Module Name: pkgsrc Committed By: tron Date: Fri Apr 7 12:01:15 UTC 2006 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.8.0.3. Changes since version 2.8.0.2: - XSS vulnerability (set_theme) - mysqli problems with zend.ze1_compatibility_mode enabled - setup script did not save the mysql/mysqli extension - XSS vulnerability (calling directly css files under themes) @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.20 2006/04/07 12:01:15 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.8.0.3.tar.bz2) = 81e46598fe033092228b3476b88d196bfdfe0c5a RMD160 (phpMyAdmin-2.8.0.3.tar.bz2) = d40d236c4041c16a1d06e1c158f14707938ab16c Size (phpMyAdmin-2.8.0.3.tar.bz2) = 2011518 bytes @ 1.19.2.2 log @Pullup ticket 1571 - requested by tron security update for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.49 - pkgsrc/databases/phpmyadmin/distinfo 1.21 Module Name: pkgsrc Committed By: tron Date: Sat May 13 09:56:36 UTC 2006 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.8.0.4. This version fixes the security vulnerability reported in PMASA-2006-2 and CVE-2006-2031. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.21 2006/05/13 09:56:36 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.8.0.4.tar.bz2) = 51d29a0f5008dde8e1b9bf88e8cefc954df14e00 RMD160 (phpMyAdmin-2.8.0.4.tar.bz2) = 05d175d72c2ed25ef070bee56b69c1dd7d81665c Size (phpMyAdmin-2.8.0.4.tar.bz2) = 1993879 bytes @ 1.18 log @Update "phpmyadmin" package to version 2.8.0.1. Changes since 2.7.0-pl1: - PHP 5.1.2 compatibility - Possibility to hide databases - Configurable memory limit for import/export - Better support for CGI - Web-based setup @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.17 2005/12/09 13:49:22 tron Exp $ d3 4 a6 3 SHA1 (phpMyAdmin-2.8.0.1.tar.bz2) = 0ac033eb69cc73cc5e25c472c9442df9702fe276 RMD160 (phpMyAdmin-2.8.0.1.tar.bz2) = 2731e525072ee18b7085aab1469dc181028241bf Size (phpMyAdmin-2.8.0.1.tar.bz2) = 2012071 bytes @ 1.17 log @Update "phpmyadmin" package to version 2.7.0pl1. Changes since version 2.6.4-pl4: - New plugin-based import module - Some pages now use fieldsets for better look - Better support for information_schema - Upgrade script new options - Better displaying of privileges when there are differences between the various user definition tables - Structure: count unique value for each field - Can now limit the list of shown languages - User-specific upload and save server directories - Remove Drop tab for mysql database - New transformation: SQL pretty printing - Ability to limit maximum size of extended insert - Support for searching in the foreign key window - Can now replace an existing bookmark - New shortcuts for IP rules - Detect lack of privileges for "Create new table" - Wrong display of localized MySQL error messages - Need to select the primary key for MIME-based print view - Handling of ENTER key when adding fields - InnoDB: truncating icon and exact row count - After dropping a db, links were missing - Strict mode and auto-increment fields insertion - Collation change for ENUM and SET - Display problems on special characters in column name - Links for MySQL documentation - Escaping of "_" - Could not edit privileges when different host in db and user - Changing auto-increment value for InnoDB - Correct sort order for foreign-key dropdowns - Group database by rightmost separator - Performance problem when inserting huge BLOBs - Calendar popup and time beginning by 0 This update fixes the security vulnerabilities reported in PMASA-2005-8 and PMASA-2005-9. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.16 2005/11/21 13:47:42 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.7.0-pl1.tar.bz2) = 9cd8b3b5edc3708a8451a39355851306a39bc8da RMD160 (phpMyAdmin-2.7.0-pl1.tar.bz2) = beca913be2a139f87e65a8798b9f3378e224d9ec Size (phpMyAdmin-2.7.0-pl1.tar.bz2) = 1962675 bytes @ 1.17.2.1 log @Pullup ticket 1269 - requested by Matthias Scheler security update for mysqladmin Patch provided by the submitter. Module Name: pkgsrc Committed By: tron Date: Sun Mar 26 17:55:28 UTC 2006 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Added Files: pkgsrc/databases/phpmyadmin/patches: patch-aa Log Message: Update "phpmyadmin" package to version 2.8.0.2. Changes since version 2.8.0.1: - XSS vulnerability (set_theme) - mysqli problems with zend.ze1_compatibility_mode enabled - setup script did not save the mysql/mysqli extension Package source related changes: - incooperate fix for phpMyAdmin bug #1436279 to make the package usable with Safari under Mac OS X again --- Module Name: pkgsrc Committed By: tron Date: Wed Mar 29 14:04:48 UTC 2006 Modified Files: pkgsrc/databases/phpmyadmin: Makefile Log Message: Remove ".orig" files from work directory before installation so they don't get installed. This fixes a package list problem reported by Lubomir Sedlacik in private e-mail. Bump package revision. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.19 2006/03/26 17:55:28 tron Exp $ d3 3 a5 4 SHA1 (phpMyAdmin-2.8.0.2.tar.bz2) = fd60fab3ae6609fe54c7edee98192fe7d7002224 RMD160 (phpMyAdmin-2.8.0.2.tar.bz2) = 8c94abbf9479c053848374cefcf4d8046197c262 Size (phpMyAdmin-2.8.0.2.tar.bz2) = 2010290 bytes SHA1 (patch-aa) = 102a2dd335ca453fd764c0b3a5abcdb4023503e8 @ 1.16 log @Update "phpmyadmin" package to version 2.6.4pl4. Changes since version 2.6.4pl3: - css/phpmyadmin.css.php: Do not use common header file, as there is nothing common at all. - libraries/header_http.inc.php: Always send text/html content type. - libraries/db_table_exists.lib.php, libraries/header_http.inc.php, transformation_wrapper.php: Use define rather than variable for conditional paths. This fixes the security vulnerability reported in PMASA-2005-6. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.15 2005/10/30 12:54:35 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.4-pl4.tar.bz2) = 08648cbbbeca1e4cb8487b54094d6c4655be08b1 RMD160 (phpMyAdmin-2.6.4-pl4.tar.bz2) = f8161534d953781d6f9f58f982cee8c10e56aa58 Size (phpMyAdmin-2.6.4-pl4.tar.bz2) = 1722973 bytes @ 1.15 log @Update "phpmyadmin" package to version 2.6.4-pl3. This version fixes the security vulnerability reported in PMASA-2005-5. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.14 2005/10/12 11:51:10 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.4-pl3.tar.bz2) = 03a720670d5025ef26b4c564adb2163f46ebde20 RMD160 (phpMyAdmin-2.6.4-pl3.tar.bz2) = 90cf92b16c9fdaa79727af858821059767096a1b Size (phpMyAdmin-2.6.4-pl3.tar.bz2) = 1722662 bytes @ 1.14 log @Update "phpmyadmin" package to version 2.6.4-pl2. This version fixes the security vulnerability reported in PMASA-2005-4. Addresses PR pkg/31561 by Zafer Aydogan. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.13 2005/08/29 17:09:31 adrianp Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.4-pl2.tar.bz2) = f61207409cebb3ddaa8548ab2e454ce74a3ad15a RMD160 (phpMyAdmin-2.6.4-pl2.tar.bz2) = d25f069ecba6984d2ad935e0d114bcef8d863751 Size (phpMyAdmin-2.6.4-pl2.tar.bz2) = 1722828 bytes @ 1.13 log @Update to 2.6.4-rc1 Security fix for two XSS security issues Lots of other changes, a brief summary includes: > Improvements: > Foreign-key dropdowns can be more customized > Export: configurable filename templates > Display column comments while editing data > Transformations: new hexadecimal mode > HTTP auth: support FastCGI > Themes: can now have different theme per server > OLD_PASSWORD in the list of functions > Better messages when checking numerical input > Allow adding DROP TABLE when copying databases > Better support of information_schema > Various interface CSS improvements > Tree subgroups in left panel database selector > Documentation: links and anchors to every FAQ item > Table comments move to page header > Export: configurable default charset > Removed warning about PmaAbsoluteUri not set > Fixes: > Database search in MySQL 5.0.x on fields without a charset > Invalid "normal" cursor style > Browsing state when deleting multiple rows > Support bigger queries in print view, insert row, export results > Unsaved changes to relations were lost when changing display field > Exporting under IE 6 (Windows XP SP2) > Better catching of parse errors in config file > XSS on the cookie-based login panel > Show all while browsing foreign values > Escaping of special characters in ENUM or SET > XSS on table creation page > Using mysqli extension with MySQL 4.0.x > "empty result set" message was sometimes not returned > Incorrect message "You should define a primary key" > Abide cfg['Lang'] settings even if using MySQL > 4.1.x @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.12 2005/04/04 12:55:16 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.4-rc1.tar.bz2) = 64350681ca04a19e1ab68780ab4904fa9717b0ba RMD160 (phpMyAdmin-2.6.4-rc1.tar.bz2) = 482059d0073636f204056bf5ea44dc28b0136696 Size (phpMyAdmin-2.6.4-rc1.tar.bz2) = 1728180 bytes @ 1.13.2.1 log @Pullup ticket 826 - requested by Matthias Scheler security update for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.36 - pkgsrc/databases/phpmyadmin/PLIST 1.12 - pkgsrc/databases/phpmyadmin/distinfo 1.14 Module Name: pkgsrc Committed By: tron Date: Wed Oct 12 11:51:10 UTC 2005 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 2.6.4-pl2. This version fixes the security vulnerability reported in PMASA-2005-4. Addresses PR pkg/31561 by Zafer Aydogan. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.14 2005/10/12 11:51:10 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.4-pl2.tar.bz2) = f61207409cebb3ddaa8548ab2e454ce74a3ad15a RMD160 (phpMyAdmin-2.6.4-pl2.tar.bz2) = d25f069ecba6984d2ad935e0d114bcef8d863751 Size (phpMyAdmin-2.6.4-pl2.tar.bz2) = 1722828 bytes @ 1.13.2.2 log @Pullup ticket 863 - requested by Matthias Scheler security update for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.37 - pkgsrc/databases/phpmyadmin/distinfo 1.15 Module Name: pkgsrc Committed By: tron Date: Sun Oct 30 12:54:35 UTC 2005 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.6.4-pl3. This version fixes the security vulnerability reported in PMASA-2005-5. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.15 2005/10/30 12:54:35 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.4-pl3.tar.bz2) = 03a720670d5025ef26b4c564adb2163f46ebde20 RMD160 (phpMyAdmin-2.6.4-pl3.tar.bz2) = 90cf92b16c9fdaa79727af858821059767096a1b Size (phpMyAdmin-2.6.4-pl3.tar.bz2) = 1722662 bytes @ 1.13.2.3 log @Pullup ticket 918 - requested by Matthias Scheler security update for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.38 - pkgsrc/databases/phpmyadmin/distinfo 1.16 Module Name: pkgsrc Committed By: tron Date: Mon Nov 21 13:47:42 UTC 2005 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.6.4pl4. Changes since version 2.6.4pl3: - css/phpmyadmin.css.php: Do not use common header file, as there is nothing common at all. - libraries/header_http.inc.php: Always send text/html content type. - libraries/db_table_exists.lib.php, libraries/header_http.inc.php, transformation_wrapper.php: Use define rather than variable for conditional paths. This fixes the security vulnerability reported in PMASA-2005-6. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.16 2005/11/21 13:47:42 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.4-pl4.tar.bz2) = 08648cbbbeca1e4cb8487b54094d6c4655be08b1 RMD160 (phpMyAdmin-2.6.4-pl4.tar.bz2) = f8161534d953781d6f9f58f982cee8c10e56aa58 Size (phpMyAdmin-2.6.4-pl4.tar.bz2) = 1722973 bytes @ 1.13.2.4 log @Pullup ticket 948 - requested by Matthias Scheler security update for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.40 - pkgsrc/databases/phpmyadmin/PLIST 1.13 - pkgsrc/databases/phpmyadmin/distinfo 1.17 Module Name: pkgsrc Committed By: tron Date: Fri Dec 9 13:49:22 UTC 2005 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 2.7.0pl1. Changes since version 2.6.4-pl4: - New plugin-based import module - Some pages now use fieldsets for better look - Better support for information_schema - Upgrade script new options - Better displaying of privileges when there are differences between the various user definition tables - Structure: count unique value for each field - Can now limit the list of shown languages - User-specific upload and save server directories - Remove Drop tab for mysql database - New transformation: SQL pretty printing - Ability to limit maximum size of extended insert - Support for searching in the foreign key window - Can now replace an existing bookmark - New shortcuts for IP rules - Detect lack of privileges for "Create new table" - Wrong display of localized MySQL error messages - Need to select the primary key for MIME-based print view - Handling of ENTER key when adding fields - InnoDB: truncating icon and exact row count - After dropping a db, links were missing - Strict mode and auto-increment fields insertion - Collation change for ENUM and SET - Display problems on special characters in column name - Links for MySQL documentation - Escaping of "_" - Could not edit privileges when different host in db and user - Changing auto-increment value for InnoDB - Correct sort order for foreign-key dropdowns - Group database by rightmost separator - Performance problem when inserting huge BLOBs - Calendar popup and time beginning by 0 This update fixes the security vulnerabilities reported in PMASA-2005-8 and PMASA-2005-9. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.17 2005/12/09 13:49:22 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.7.0-pl1.tar.bz2) = 9cd8b3b5edc3708a8451a39355851306a39bc8da RMD160 (phpMyAdmin-2.7.0-pl1.tar.bz2) = beca913be2a139f87e65a8798b9f3378e224d9ec Size (phpMyAdmin-2.7.0-pl1.tar.bz2) = 1962675 bytes @ 1.12 log @Update "phpmyadmin" to version 2.6.2rc1. Changes sinc version 2.6.1pl2: - MySQL 4.1.x native column comments - MySQL 5.0: Basic detection mechanism for views: o Views are no longer displayed as tables in use o Ability to drop views - MySQL 5.0: Interface fixes and hardcoded virtual relations for information_schema - MySQL 4.1: Better automatic detection for available storage engines - New storage engines overview page o Plugin-like infrastructure for storage engine status monitors o Overview of startup variables and current values o MySQL 5.0 / InnoDB: Buffer pool activity monitor - MySQL 4.1.2+ TIMESTAMP options - Export: Native Microsoft Word 2000 and Excel 2000 formats - PDF schema visual editor: column names now optional - MySQL 5.0.3 new Japanese charsets support (cp932, eucjpms) - Parser: added missing date and time MySQL functions - Documentation: explain all Export options handling - Cookie paths: added / to end of path - Show database comments at more places - Better use of print styles in themes - Bookmarks: sort by label, remove the number before each label - Better protection against possible collation conflicts and out-of-sync errors in PMADB queries - Relation view: removed pmadb-style comments handling (now available just on the Structure page) - FAQ about using HTTP authentication under IIS - New editions for some language files (especially ISO-8859-15) - English messages improvements - Detection of SELECT query to display on multiple submits - PDF schema: missing header - A failed connection was not properly detected - Problem with Japanese language under MySQL 4.1.x - Export o Various errors under mysqli extension o SQL format under Safari browser o Do not offer export modes not available in current MySQL version - Changing the type of a FLOAT unsigned column - Adding field with collation - Calendar popup and TIMESTAMP field under MySQL 4.1.x - PHP 4.1.x: wrong parameter count (mcrypt.lib.php) - Problem when SHOW DATABASES is disabled - Copy table: commands out of sync - User management o Host not changing with editing user o Escaping character removed by error - MySQL 5.0.x: "No database selected" error - Print view: displaying of indexes - Cookie auth: error when blowfish_secret is empty - MySQL 4.1.2: "Reload MySQL" link not seen - MySQL 5 server binlog compatibility - PDF pages generation: wrong documentation - Inserted row id was not always correctly reported - Do not offer unavailable collations - XSS vulnerability on "convcharset" [PMASA-2005-3] - Do not allow to drop information_schema - Undefined offset (on the left panel) - Problem copying InnoDB table with foreign-key constraints to a table in the same database @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.11 2005/02/24 20:52:09 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.2-rc1.tar.bz2) = 2bf06bad9546fc9403c79ee0540ad0bb3fcfd016 RMD160 (phpMyAdmin-2.6.2-rc1.tar.bz2) = 8c31c76c753a474d4478cfe6491b6f6637929921 Size (phpMyAdmin-2.6.2-rc1.tar.bz2) = 1638568 bytes @ 1.12.2.1 log @Pullup ticket 722 - requested by Adrian Portelli security update for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.33 - pkgsrc/databases/phpmyadmin/PLIST 1.11 - pkgsrc/databases/phpmyadmin/distinfo 1.13 Module Name: pkgsrc Committed By: adrianp Date: Mon Aug 29 17:09:31 UTC 2005 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update to 2.6.4-rc1 Security fix for two XSS security issues Lots of other changes, a brief summary includes: > Improvements: > Foreign-key dropdowns can be more customized > Export: configurable filename templates > Display column comments while editing data > Transformations: new hexadecimal mode > HTTP auth: support FastCGI > Themes: can now have different theme per server > OLD_PASSWORD in the list of functions > Better messages when checking numerical input > Allow adding DROP TABLE when copying databases > Better support of information_schema > Various interface CSS improvements > Tree subgroups in left panel database selector > Documentation: links and anchors to every FAQ item > Table comments move to page header > Export: configurable default charset > Removed warning about PmaAbsoluteUri not set > Fixes: > Database search in MySQL 5.0.x on fields without a charset > Invalid "normal" cursor style > Browsing state when deleting multiple rows > Support bigger queries in print view, insert row, export results > Unsaved changes to relations were lost when changing display field > Exporting under IE 6 (Windows XP SP2) > Better catching of parse errors in config file > XSS on the cookie-based login panel > Show all while browsing foreign values > Escaping of special characters in ENUM or SET > XSS on table creation page > Using mysqli extension with MySQL 4.0.x > "empty result set" message was sometimes not returned > Incorrect message "You should define a primary key" > Abide cfg['Lang'] settings even if using MySQL > 4.1.x @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.13 2005/08/29 17:09:31 adrianp Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.4-rc1.tar.bz2) = 64350681ca04a19e1ab68780ab4904fa9717b0ba RMD160 (phpMyAdmin-2.6.4-rc1.tar.bz2) = 482059d0073636f204056bf5ea44dc28b0136696 Size (phpMyAdmin-2.6.4-rc1.tar.bz2) = 1728180 bytes @ 1.11 log @Update "phpmyadmin" to 2.6.1pl2. It fixes a serious regression in 2.6.1pl1 which e.g. completely broke editing entries in a table. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.10 2005/02/24 17:26:03 adrianp Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.1-pl2.tar.bz2) = d482aac86c080b38b7a21b32019f1d9c6e48edef RMD160 (phpMyAdmin-2.6.1-pl2.tar.bz2) = 244ac37b36d90babce3bf6e86121052e07b837f7 Size (phpMyAdmin-2.6.1-pl2.tar.bz2) = 1541665 bytes @ 1.11.2.1 log @Pullup ticket 422 - requested by Matthias Scheler security fix for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.30 - pkgsrc/databases/phpmyadmin/PLIST 1.10 - pkgsrc/databases/phpmyadmin/distinfo 1.12 Module Name: pkgsrc Committed By: tron Date: Mon Apr 4 12:55:16 UTC 2005 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" to version 2.6.2rc1. Changes since version 2.6.1pl2: - MySQL 4.1.x native column comments - MySQL 5.0: Basic detection mechanism for views: o Views are no longer displayed as tables in use o Ability to drop views - MySQL 5.0: Interface fixes and hardcoded virtual relations for information_schema - MySQL 4.1: Better automatic detection for available storage engines - New storage engines overview page o Plugin-like infrastructure for storage engine status monitors o Overview of startup variables and current values o MySQL 5.0 / InnoDB: Buffer pool activity monitor - MySQL 4.1.2+ TIMESTAMP options - Export: Native Microsoft Word 2000 and Excel 2000 formats - PDF schema visual editor: column names now optional - MySQL 5.0.3 new Japanese charsets support (cp932, eucjpms) - Parser: added missing date and time MySQL functions - Documentation: explain all Export options handling - Cookie paths: added / to end of path - Show database comments at more places - Better use of print styles in themes - Bookmarks: sort by label, remove the number before each label - Better protection against possible collation conflicts and out-of-sync errors in PMADB queries - Relation view: removed pmadb-style comments handling (now available just on the Structure page) - FAQ about using HTTP authentication under IIS - New editions for some language files (especially ISO-8859-15) - English messages improvements - Detection of SELECT query to display on multiple submits - PDF schema: missing header - A failed connection was not properly detected - Problem with Japanese language under MySQL 4.1.x - Export o Various errors under mysqli extension o SQL format under Safari browser o Do not offer export modes not available in current MySQL version - Changing the type of a FLOAT unsigned column - Adding field with collation - Calendar popup and TIMESTAMP field under MySQL 4.1.x - PHP 4.1.x: wrong parameter count (mcrypt.lib.php) - Problem when SHOW DATABASES is disabled - Copy table: commands out of sync - User management o Host not changing with editing user o Escaping character removed by error - MySQL 5.0.x: "No database selected" error - Print view: displaying of indexes - Cookie auth: error when blowfish_secret is empty - MySQL 4.1.2: "Reload MySQL" link not seen - MySQL 5 server binlog compatibility - PDF pages generation: wrong documentation - Inserted row id was not always correctly reported - Do not offer unavailable collations - XSS vulnerability on "convcharset" [PMASA-2005-3] - Do not allow to drop information_schema - Undefined offset (on the left panel) - Problem copying InnoDB table with foreign-key constraints to a table in the same database @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.12 2005/04/04 12:55:16 tron Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.2-rc1.tar.bz2) = 2bf06bad9546fc9403c79ee0540ad0bb3fcfd016 RMD160 (phpMyAdmin-2.6.2-rc1.tar.bz2) = 8c31c76c753a474d4478cfe6491b6f6637929921 Size (phpMyAdmin-2.6.2-rc1.tar.bz2) = 1638568 bytes @ 1.10 log @- Update from 2.6.1-rc1 to 2.6.1-pl1 - Addresses known security issues as well as numerious other changes - ok'ed tron@@ > ---------------------- > phpMyAdmin - Changelog > ---------------------- > > $Id: ChangeLog,v 2.871.2.21 2005/02/24 01:20:35 lem9 Exp $ > $Source: /cvsroot/phpmyadmin/phpMyAdmin/ChangeLog,v $ > > 2005-02-23 Marc Delisle > * libraries/auth/cookie.auth.lib.php: bug1149373, error when > blowfish_secret is empty > ### 2.6.1-pl1 released > > 2005-02-23 Alexander M. Turek > * libraries/grab_globals.lib.php: More hotfixes against bug1149381. > * libraries/mysql_charsets.lib.php: Detection for new Japanese charsets > (cp932 and eucjpms) that will be introduced with MySQL 5.0.3. > > 2005-02-22 Alexander M. Turek > * libraries/grab_globals.lib.php: Hotfix against bug1149381 and parts > of bug1149383. > > 2005-02-07 Alexander M. Turek > * libraries/mcrypt.lib.php: bug1117907 ("wrong parameter count" with > php 4.1.x). > > 2005-02-03 Alexander M. Turek > * tbl_addfield.php: bug1040682 (adding field with collation). > > 2005-01-29 Alexander M. Turek > * lang/japanese-utf-8.inc.php: bug1111855 ("Undefined index" when using > the Janapese language file under MySQL 4.1. > > 2005-01-28 Marc Delisle > * libraries/dbi/mysqli.dbi.lib.php: bug1111706, call to undefined > function PMA_reloadNavigation(). A failed connection was not properly > detected > > 2005-01-23 Marc Delisle > * tbl_query_box.php: bug1107937, undefined $fields_list > * lang/estonian: Update thanks to Alvar Soome - finsoft. > ### 2.6.1 released > > 2005-01-23 Michal Cihar > * export.php: Back to Content-Type application/x-bzip2 on bzip2 export > (bug1106652). > > 2005-01-23 Alexander M. Turek > * libraries/sqlparser.data.php: Added some keywords. > > 2005-01-22 Marc Delisle > * libraries/bookmark.lib.php: bug1103289, num_rows and MYSQL_USE_RESULT, > and fix a typo "boommark" > * lang/galician: Updated, thanks to Xosé Calvo. > * lang/serbian: Updated, thanks to Mihailo Stefanovic (mikis). > > 2005-01-17 Michal Cihar > * lang/czech: Fix typos (translation1103785). > > 2005-01-16 Marc Delisle > * libraries/common.lib.php: bug1103201, wrong treatment of MySQL error > 1060 in the logic for error 1062 > > 2005-01-11 Marc Delisle > * libraries/dbi/mysqli.dbi.lib.php: bug1076213, headers sent > on invalid login > > 2005-01-10 Michal Cihar > * lang/czech: Fix typo (translation1099459). > > 2005-01-10 Olivier Mueller > * README: copyright, we're in 2005 > > 2005-01-09 Marc Delisle > * lang/danish: Updated, thanks to AlleyKat - dk_alleykat. > * lang/catalan update, thanks to Xavier Navarro (xavin). > * lang/japanese: updated, thanks to Tadashi Jokagi (elf2000) > * lang/dutch: Updates, thanks to Ivo Teel. > * lang/indonesian: Update thanks to Rachim Tamsjadi - tamsy. > * lang/galician: Updated, thanks to Xosé Calvo. > * lang/spanish: Updated, thanks to Daniel Hinostroza (hinostroza). > ### 2.6.1-rc2 released > > 2005-01-07 Marc Delisle > * tbl_addfield.php: bug1082680, undefined $field_charset when adding > a FLOAT field in MySQL 4.1.x > > 2005-01-07 Michal Cihar > * Documentation.html, tbl_change.php, tbl_properties.inc.php, > libraries/functions.js, libraries/tbl_change.js, > libraries/keyhandler.js: Use Option key for Safari for moving (bug > 1094137), move key handler function to separate file so we have only > one, make movement work correctly in vertical display of properties. > * libraries/common.lib.php: Fix timestamp in uva condition with MySQL 4.1 > (bug1097593). > > 2005-01-06 Marc Delisle > * tbl_change.php: removed old PHP3-workaround that caused problems > with field names like '000' > > 2005-01-05 Michal Cihar > * tbl_properties_operations.php: Fix changning table parameters if it has > no auto increment (bug1096246). > > 2005-01-04 Alexander M. Turek > * lang/german-*.inc.php: > - Updates and small corrections; > - Synchronized translation with the German MySQL documentation. > > 2005-01-03 Michal Cihar > * export.php: Use standardised mime types and use content encoding for > gzip/bzip2. I hope this will fix double gzip compression as in bug > 1094649. > > 2005-01-01 Michal Cihar > * tbl_alter.php: Don't try to set collation for non text fields (bug > 1094109). > * sql.php: Do not forget reloading when launching multiple queries (bug > 1090818). > > 2004-12-30 Marc Delisle > * lang/swedish: Updated, thanks to Björn T. Hallberg (bth). > * lang/norwegian: Update, thanks to Sven-Erik Andersen > * lang/latvian: Updated, thanks to Sandis Jerics (saaa2002). > > 2004-12-30 Michal Cihar > * libraries/fpdf/ufpdf.php: Fix some warnings. > > 2004-12-29 Michal Cihar > * libraries/export/sql.php: Fix typo. > * server_databases.php: Use same sort order as in left frame (bug > 1087244), allow sorting even if not showing stats. > * pdf_schema.php, libraries/fpdf/fpdf.php, libraries/fpdf/ufpdf.php, > libraries/fpdf/font/FreeSans*: Added support for PDF output in utf-8, > uses UFPDF class from http://www.acko.net/node/56. NOTE: We now have a > bit modified FPDF class. (bug1046051) > * Documentation.html: Added info about UFPDF library. > * lang/czech, lang/english: Improved some texts, also bug1009667. > > 2004-12-28 Michal Cihar > * libraries/tbl_move_copy.php: Fix constraints copying (bug1085900). > * config.inc.php, lang/*, libraries/common.lib.php, > libraries/config_import.lib.php, libraries/display_export.lib.php, > libraries/export/sql.php: Support for selecting SQL export compatibility > (RFE1060040). > * libraries/tbl_change.js: Faster navigation in calendar (RFE1090315). > * mult_submits.inc.php, tbl_row_delete.php: Fix % escaping (bug1082954). > * read_dump.php: Fix database name extraction from use statement (bug > 1084777). > * css/phpmyadmin.css.php, libraries/common.lib.php: Disabled theme manager > still allows to select theme in configuration (bug1084712). > * tbl_replace.php: Remove unused code. > * main.php, lang/*, libraries/string.lib.php: Added warnings about > mbstring - one to disable function overloading and one for requesting > mbstring for multibyte charsets (bugs 1063149 and 1063821). > * tbl_change.php, tbl_replace.php, lang/*, libraries/common.lib.php: > Support for editing next entry (when numeric primary key) (RFE1074906). > > 2004-12-26 Marc Delisle > * libraries/database_interface.lib.php: bug1085647, wrong parameters > for strpos(), thanks to Meithar - meithar > * libraries/select_server.lib.php, bug1073056, unable to submit selected server, > thanks to jamaz - jamaz > * tbl_change.php: bug1090608, undefined variable, thanks to peterinsb > * scripts/upgrade_tables_mysql_4_1_2+.sql: bug1084426, misleading comments > * tbl_create.php: bug1085494, illegal length value for LONGTEXT, thanks to mjec > > 2004-12-16 Marc Delisle > * libraries/blowfish.php: bug1085997, undefined variables, > patch thanks to Chandrakumar Muthaiah - sudhach > > 2004-12-14 Alexander M. Turek > * libraries/sqlparser.data.php: Added keywords NAMES and VIEW. > > 2004-12-13 Michal Cihar > * libraries/tbl_change.js: Do not catch Alt and Shift keys (bug1082315). > * libraries/export/sql.php: Do not duplicate constraints when exporting > multiple databases (bug1084459). @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.9 2005/02/23 16:33:08 agc Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.1-pl1.tar.bz2) = b796a2e4ec6762e8a1812e577f1db1bebc69ce09 RMD160 (phpMyAdmin-2.6.1-pl1.tar.bz2) = 9829d5263ed12e1eb38fee05d97e5131b741794b Size (phpMyAdmin-2.6.1-pl1.tar.bz2) = 1541672 bytes @ 1.9 log @Add RMD160 digests in addition to SHA1 ones. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.8 2004/12/14 20:38:47 adrianp Exp $ d3 3 a5 3 SHA1 (phpMyAdmin-2.6.1-rc1.tar.bz2) = 944ce58619c3e23f30da5fffd15925ef00ade2c0 RMD160 (phpMyAdmin-2.6.1-rc1.tar.bz2) = b2ca7aaebfa45f5e3b4da6d7ffd659d686d837f5 Size (phpMyAdmin-2.6.1-rc1.tar.bz2) = 1311277 bytes @ 1.8 log @- Update phpmyadmin to 2.6.1-rc1 - Fix permissions on config file as it could contain sensitive data - Fix missing ChangeLog link - Lots of bugfixes and updates, see ChangeLog for all the details - Inclues security update for PMASA-2004-4 @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.7 2004/11/06 13:28:32 jdolecek Exp $ d4 1 @ 1.8.2.1 log @Pullup ticket 309 - requested by Adrian Portelli security fix for phpmyadmin Revisions pulled up: - pkgsrc/databases/phpmyadmin/Makefile 1.26-1.29 - pkgsrc/databases/phpmyadmin/PLIST 1.9 - pkgsrc/databases/phpmyadmin/distinfo 1.10-1.11 Module Name: pkgsrc Committed By: adrianp Date: Thu Feb 24 17:26:03 UTC 2005 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: - Update from 2.6.1-rc1 to 2.6.1-pl1 - Addresses known security issues as well as numerious other changes - ok'ed tron@@ [ Changelog skipped] --- Module Name: pkgsrc Committed By: tron Date: Thu Feb 24 17:50:43 UTC 2005 Modified Files: pkgsrc/databases/phpmyadmin: Makefile Log Message: Add dependence on "php-mbstring" package because phpMyAdmin complains about the lack of multibyte support otherwise. --- Module Name: pkgsrc Committed By: tron Date: Thu Feb 24 20:52:09 UTC 2005 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" to 2.6.1pl2. It fixes a serious regression in 2.6.1pl1 which e.g. completely broke editing entries in a table. @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.11 2005/02/24 20:52:09 tron Exp $ d3 2 a4 2 SHA1 (phpMyAdmin-2.6.1-pl2.tar.bz2) = d482aac86c080b38b7a21b32019f1d9c6e48edef Size (phpMyAdmin-2.6.1-pl2.tar.bz2) = 1541665 bytes @ 1.7 log @Update phpMyAdmin package to 2.6.0-pl2. Changes since 2.5.7 seem to be only UI changes according to release announcements. While here, introduce some package changes: * handle config.inc.php via CONF_FILES mechanism instead of PLIST magick, the symlink config.inc.php -> ${PKG_SYSCONFDIR}/config.inc.php is now included in PLIST * use NO_BUILD, NO_CONFIGURE * Apache config fragment file is now installed as ${EXDIR}/apache.conf, not copied to ${PKG_SYSCONFDIR} and MESSAGE points to the ${EXDIR} location * do not install any *.sh files - they are developer stuff only * use INSTALL_DATA for all files except scripts/convertcfg.pl @ text @d1 1 a1 1 $NetBSD: distinfo,v 1.6 2004/08/07 11:31:14 adrianp Exp $ d3 2 a4 2 SHA1 (phpMyAdmin-2.6.0-pl2.tar.bz2) = 0d3028d7c6cff2a16e9b28bd087ffc2413471434 Size (phpMyAdmin-2.6.0-pl2.tar.bz2) = 1278267 bytes @ 1.6 log @- update to 2.5.7-pl1 - ok'ed tron@@/wiz@@/snj@@ ---------------------- phpMyAdmin - Changelog ---------------------- 2004-06-30 Marc Delisle * left.php: fix against security alert, thanks to Garvin * Documentation.html: FAQ 8.2 for security alert ### 2.5.7-pl1 released 2004-06-30 Alexander M. Turek * libraries/common.lib.php: Fix against $_REQUEST['cfg'] exploits. 2004-06-09 Alexander M. Turek ### 2.5.7 released 2004-06-08 Alexander M. Turek * server_privileges.php: typo. * Documentation.html, translators.html: Updated from HEAD. 2004-06-07 Alexander M. Turek * db_details_db_info.php, tbl_properties_tbl_info.php: Table type is called "Engine" in MySQL 4.1.2. * lang/*.inc.php, libraries/mysql_charsets.lib.php: The new collation page latin1_spanish_ci (introduced with MySQL 4.1.2) is now described correctly. * lang/french-*: Updates. * scripts/create-release.sh, README: Merged all HEAD changes. 2004-06-07 Michal Cihar * libraries/export/sql.php: Fix handling of multi column foreign keys. * libraries/common.lib.php: When only_db matches no database, do not show any. * lang/sync_lang.sh: I switched to utf-8 so default for czech is utf-8. * export.php: Fixed syntax error. 2004-06-07 Marc Delisle * tbl_change.php, big numbers data entry, thanks to Dmitry (yrtimd) * server_privileges.php: password error when copying a user * server_privileges.php: copying a user with table privs 2004-04-02 Alexander M. Turek * lang/german-*.inc.php: Fixed a typo. 2004-03-10 Michal Cihar * export.php: Correctly report error when export fails, fix buffer length counting, fix error detection. 2004-03-05 Marc Delisle * libraries/sqlparser.lib.php: floating point digit * libraries/sqlparser.lib.php: GRANT...TO 2004-03-03 Marc Delisle * tbl_change.php, tbl_replace_fields.php: invalid escaping of + in ENUM 2004-03-01 Marc Delisle ### 2.5.6 released 2004-02-29 Alexander M. Turek * libraries/common.lib.php: Yet another ungly fix concerning the missing mysql_get_client_info() function. 2004-02-26 Marc Delisle * libraries/sqlparser.lib.php: memory eater, thanks to xuefer 2004-02-24 Marc Delisle * tbl_row_delete.php: mult_submits.inc.php should not be called twice 2004-02-18 Marc Delisle * export.php: undefined variable $save_filename 2004-02-15 Marc Delisle ### 2.5.6-rc2 released 2004-02-15 Alexander M. Turek * config.inc.php, libraries/config_import.lib.php: Added missing Arabic Windows-1256 charset to the default value of $cfg['AvailableCharsets']. * lang/russian-dos-866.inc.php: Wrong charset (Hotfix, better fix in HEAD). 2004-02-14 Alexander M. Turek * libraries/common.lib.php, libraries/defines.lib.php: Hotfix for (Undefined function: mysql_get_client_info() ); bug is already fixed in HEAD branch because of the new DBI libraries. 2004-02-13 Alexander M. Turek * libraries/common.lib.php: (PMA chokes on undefined parser functions if one of the very first queries fails. 2004-02-11 Marc Delisle * server_privileges.php: password not copied * read_dump.php, libraries/display_tbl.lib.php, /bookmark.lib.php: execute stored bookmarks when user is different 2004-02-08 Marc Delisle * lang/spanish: Updated, thanks to Daniel Hinostroza (hinostroza). * lang/serbian: Updated, thanks to Mihailo Stefanovic (mikis). * lang/dutch update, thanks to Ivo Teel * lang/estonian: Updated, thanks to Alvar Soome (finsoft). 2004-02-05 Alexander M. Turek * Documentation.html: Added FAQ 1.17a about error message, "Client does not support authentication protocol". 2004-02-04 Marc Delisle * libraries/sqlparser.lib.php: (was a typo) 2004-02-03 Marc Delisle * tbl_change.php: NULL default value of DATETIME field 2004-02-02 Marc Delisle * export.php: security fix, thanks to Cedric Cochin for the advisory ### 2.5.6-rc1 released * lang/slovak: Updated, thanks to Lubos Klokner (erkac). 2004-02-02 Alexander M. Turek * libraries/mysql_charsets.lib.php: Use PMA_backquote(). 2004-01-30 Alexander M. Turek * lang/german-*.inc.php: Updates. 2004-01-29 Marc Delisle * lang/catalan: Updated, thanks to Xavier Navarro (xavin) * lang/italian: Updated, thanks to Pietro Danesi (danone). * lang/danish: updates, thanks to Finn Sorensen (alleyman01) 2004-01-27 Marc Delisle * main.php: MySQL version check before server choice 2004-01-25 Marc Delisle * tbl_row_delete.php: broken row highlighting * libraries/display_tbl.lib.php: bad sort link 2004-01-23 Alexander M. Turek * Documentation.html: Changed my email address. * header_printview.inc.php: - Don't bypass $cfg['Server']['verbose'] settings; - Include MySQL version in SQL printview headers. * header.inc.php: Avoid sending headers twice. 2004-01-14 Marc Delisle * mult_submits.inc.php: dropping a field with the multi-submit mechanism removes all internal relations of a table, patch thanks to Joosep-Georg Järvemaa (j-georg) 2004-01-12 Marc Delisle * lang/spanish: Updated, thanks to Daniel Hinostroza (hinostroza). * lang/swedish: Updated, thanks to Björn T. Hallberg (bth). * lang/portuguese: Updated, thanks to Lopo Pizarro (lopopizarro). 2004-01-09 Alexander M. Turek * libraries/sqlparser.lib.php: Support for _charset syntax. 2004-01-09 Marc Delisle * libraries/sqlparser.data.php: SQL_CALC_FOUND_ROWS 2004-01-07 Marc Delisle * libraries/display_tbl.lib.php, /display_tbl_links.lib.php: SHOW errors 2004-01-06 Alexander M. Turek * libraries/charset_conversion.lib.php: Skip charset conversion code if input charset and output charset are the same. 2004-01-05 Garvin Hicking * browse_foreigners.php, tbl_change.php: Sort key/value pairs as discussed . Made foreigner window resizable. * libraries/functions.js: Reverted row marker patch. * libraries/display_tbl.lib.php, libraries/display_tbl_links.lib.php, libraries/functions.js: Upon clicking on a result row, de/activate the checkbox next to it. Only makes sense for horizontal mode. Can be deactivated by setting BrowseMarkerColor to an empty string in config.inc.php. 2004-01-05 Alexander M. Turek * tbl_properties_operations.php: Changing a table's charset changed the charset of all fields (MySQL >= 4.1.1). 2004-01-04 Alexander M. Turek * libraries/config_import.lib.php: Added missing compatibility code for $cfg['RecodingEngine']. 2004-01-02 Alexander M. Turek * libraries/mysql_charsets.lib.php, libraries/sqlparser.lib.php: MySQL collations are now parsed and highlighted. * libraries/export/sql.php: Include charset / collation information in db export. 2004-01-02 Marc Delisle * db_details_structure.php: debug code still in place, thanks to Matthias Fichtner (mfichtner) * browse_foreigners.php: paging does not work; obey RepeatCells=0 * libraries/display_tbl.lib.php: SHOW FIELDS 2003-12-30 Michal Cihar * lang/czech: Updated. * lang/*: Fixed typo s/Chech-Slovak/Czech-Slovak/. 2003-12-30 Alexander M. Turek * config.inc.php, db_details_common.php, db_details_structure.php, tbl_properties_operations.php, css/phpmyadmin.css.php, libraries/common.lib.php, libraries/config_import.lib.php, libraries/mysql_charsets.lib.php, libraries/sqlparser.lib.php: - SQL parser detected the character set "binary" as column attribute; - MySQL charsets are now parsed and highlighted - Note: the SQL parser library now has to be included AFTER having connected to the MySQL server; - The default charset of a database may now be changed; - Ensured that the user's connection is used for setting and retreiving charset information. * libraries/defines.lib.php: typo. 2003-12-30 Marc Delisle * tbl_select.php: dropdowns in search page 2003-12-29 Alexander M. Turek * db_details_structure.php, libraries/mysql_charsets.lib.php: - display database collation (MySQL >= 4.1.1); - list collations of all tables. * tbl_properties_strcuture, tbl_properties_table_info.php: - Changed "Charset" label to "Collation" because it fits better; - The column collations weren't displayed with MySQL 5.0. * libraries/sqlparser.data.php: New reserved words: - COLLATE (since MySQL 4.1.0); - RETURN (since MySQL 5.0.0). 2003-12-28 Marc Delisle ### 2.5.5 released 2003-12-27 Alexander M. Turek * Documentation.html, README: I tested phpMyAdmin with MySQL 5.0.0-alpha. 2003-12-25 Marc Delisle * db_details_qbe.php: error when generating joins * Documentation.html: FAQ 6.22: default bookmark execution 2003-12-23 Marc Delisle * css/phpmyadmin.css.php: Patch 864334, preserve white-space between quotes * db_datadict.php, db_printview.php: printing on non-IE browser 2003-12-21 Marc Delisle * lang/norwegian: Updated, thanks to Sven-Erik Andersen (sven-erik). 2003-12-18 Marc Delisle * tbl_relation.php: do not destroy foreign key references to another db (still cannot enter via phpMyAdmin this kind of references) * lang/indonesian: Updated, thanks to Rachim Tamsjadi (tamsy). 2003-12-17 Michal Cihar * lang/sync_lang.sh: Fix generation of translation, when source is in utf-8. * lang/chinese_big5.inc.php: Was broken due to above bug, thanks Marc for noticing this. 2003-12-16 Marc Delisle * lang/lithuanian: Updated, thanks to Vilius Zigmantas (viliusz). 2003-12-15 Garvin Hicking * tbl_replace.php: Check all required array indizes for multi-row edit 2003-12-15 Marc Delisle * read_dump.php: Go & Bookmark problem when the query has a character like "+" in it 2003-12-13 Marc Delisle * tbl_query_box.php, ldi_table.php: maximum upload size * tbl_change.php: max BLOB upload size 2003-12-12 Marc Delisle * db_details.php, libraries/common.lib.php, lang/*: new feature to display the maximum upload size TODO: detect if upload succeeded 2003-12-12 Garvin Hicking * export.php: Fixed Regex * transformation_wrapper.php, lang/*, libraries/display_tbl.lib.php, libraries/transformations/application_octetstream__download.inc.php: Added a new transformation to download blob/binary field contents with customized filenames. Needed two minor tweeks to the general system. 2003-12-11 Michal Cihar * libraries/export/sql.php: Fix moving foreign key definition on Windows. 2003-12-11 Marc Delisle * tbl_replace.php: missing number of rows for Affected rows and Inserted rows; wrong message for insert ids * libraries/display_tbl.lib.php: SHOW DATABASES 2003-12-11 Alexander M. Turek * server_collations.php, lang/*.inc.php, libraries/mysql_charsets.lib.php: Updated character sets overview for MySQL 4.1.1. * db_create.php, main.php: Ability to specify a default character set for a new database. * libraries/sqlparser.lib.php. 2003-12-11 Garvin Hicking * header_printview.inc.php: show number of rows in printview * tbl_change.php, tbl_replace.php, tbl_replace_fields.php: where non-existant fields caused PHP notices. * db_details.php: Removed unneccessary whitespace * sql.php: When dropping the only remaining database, an error occured. Fixed by checking if databases remein (as suggested by lem9) 2003-12-10 Garvin Hicking * db_datadict.php: Bug 857186: Real fix for the problem. The '@@' delimiter slipped to the replacement's end instead of the expression's end. * db_details_structure.php: Bug 857315 - short open tag fixed 2003-12-09 Marc Delisle * libraries/sqlparser.data.php: FORCE INDEX * main.php: backquotes on the wildcard dbname when no controluser is defined * db_datadict.php: ENUMs and data dictionary, thanks to Andrew Weiner (landreww) for the report and fix 2003-12-09 Garvin Hicking * tbl_change.php: Fixed (not displaying default values) * lang/german*: Translations * left.php: Escape single quotes in single-table cases as well 2003-12-08 Marc Delisle * new language: basque, thanks to Axier Lopez (axierl@@euskalerria.org) 2003-12-07 Marc Delisle ### 2.5.5-rc1 released 2003-12-06 Marc Delisle * lang/danish: updates, thanks to Finn Sorensen (alleyman01) 2003-12-05 Marc Delisle * libraries/display_tbl.lib.php: fixed a typo, and added some isset for a new check 2003-12-05 Garvin Hicking * libraries/transformations/text_plain__dateformat.inc.php: Use -Tag to display original data to not waste display clarity by using hyperlinks. Original implementation also failed when using customized options. 2003-12-04 Marc Delisle * lang/estonian: Updated, thanks to Alvar Soome (finsoft). * libraries/transformations/text_plain__dateformat.inc.php: patch 845690: show real data before transformation * left.php: put a workaround in place 2003-12-04 Garvin Hicking * browse_foreigner.php, mult_submits.inc.php, tbl_change.php, tbl_replace.php, tbl_replace_fields.php, tbl_row_delete, libraries/display_tbl.lib.php, libraries/display_tbl_links.lib.php: Multi row edit via checkboxes in browse mode is now available. This means, you can edit multiple records at once now. * tbl_row_delete.php, tbl_change.php, tbl_change.js: Fixed (un)nullify() function * libraries/display_tbl.lib.php, libraries/display_tbl_links.lib.php: Made checkbox/edit/delete fields smaller 2003-12-02 Marc Delisle * libraries/display_tbl.lib.php: the constant used to check if the transformation function is included no longer exists * libraries/transformations/: replaced "include" by "require_once" * lang/serbian: Updated, thanks to Mihailo Stefanovic (mikis). * lang/norwegian: Updated, thanks to Sven-Erik Andersen (sven-erik). * lang/bulgarian: Updated, thanks to Stanislav Yordanov (stanprog). * lang/danish: updates, thanks to Finn Sorensen (alleyman01) * lang/estonian: Updated, thanks to Alvar Soome (finsoft). 2003-11-28 Garvin Hicking * main.php: Fixed one remaining preg_match 2003-11-27 Marc Delisle * libraries/display_tbl.lib.php: sort order and aliases 2003-11-26 Alexander M. Turek * Almost every file: - Replaced all include / require commands by require_once where possible; - Further php 4.1+ optimizations; - footer.inc.php now automatically stops the script execution; - Coding standards. * config.inc.php: Don't include select_lang.lib.php here. * libraries/common.lib.php: Backwards compatibility. * libraries/common.lib.php, libraries/defines.lib.php, libraries/defines_php.lib.php, libraries/defines_mysql.lib.php, scripts/create-release.sh: defines.lib.php was included twice. For optimization reasons I moved all the code that is independent from the MySQL connection out of defines.lib into defines_php.lib. To point out the (new) meanings of the files I renamed defines.lib.php to defines_mysql.lib.php while defines_php.lib.php is now known as defines.lib.php. 2003-11-26 Michal Cihar * lang/check_lang.sh: Cleanup. * lang/sort_lang.sh: Cleanup. * lang/czech: Better translated some strings. 2003-11-26 Marc Delisle * lang/arabic: update, thanks to Ossama Khayat (okhayat) * lang/hindi: update, thanks to Girish Nair (girish_nair) * lang/slovak: Updated, thanks to Lubos Klokner (erkac). * lang/spanish: Updated, thanks to Daniel Hinostroza (hinostroza). 2003-11-25 Alexander M. Turek * translators.html: Changed email of Hindi translator, again. * badwords.txt: File is obsolete. 2003-11-25 Garvin Hicking * db_details_qbe.php, left.php, main.php, pdf_pages.php, server_collations.php, tbl_change.php, tbl_indexes.php, tbl_move_copy.php, tbl_relation.php, tbl_replace.php, libraries/common.lib.php, libraries/db_config.lib.php, libraries/display_tbl.lib.php, libraries/grab_globals.lib.php, libraries/mysql_charsets.lib.php, libraries/select_lang.lib.php: Reverted some obfuscated regular expressions to their working eregi-versions to not break stuff. Removed unneccessary reset() calls, replaced some more while(list()) constructs. * libraries/transformations/overview.php, libraries/transformations/global.inc.php, libraries/common.lib.php, libraries/display_tbl.lib.php, libraries/transformations.lib.php3, user_password.php, tbl_change.php, sql.php, ldi_check.php, tbl_properties.inc.php, db_details_importdocsql.php: - When stored transformations have '.php3' ending, automagically assume '.php' now. - Use 's' RegEx Pattern modifier for certain situations where '.' should also include linebreaks. 2003-11-24 Alexander M. Turek * lang/german-*.inc.php: Updates. * lang/english-*.inc.php: Sortation. 2003-11-24 Marc Delisle * tbl_rename.php: give an error if the new table name has a dot in its name, to avoid doing our automatic relation-table renames 2003-11-24 Michal Cihar * libraries/common.lib.php: Use preg again, it just needs a bit more escaping of \ (once for PHP and once for PCRE). * css/phpmyadmin.css.php: Make server selection in left frame same size as on other places. * main.php: One more regex escaping fix. * lang/chinese_big5: Updated, thanks to Siu Sun (siusun). * lang/indonesian: Updated, thanks to Rachim Tamsjadi (tamsy). * lang/latvian: Updated, thanks to Sandis Jerics (saaa2002). * translators.html: Updated email for Hindi translator. 2003-11-23 Alexander M. Turek * server_privileges.php3: while (list() = each()) is not always as bad as one might think ;-p 2003-11-22 Garvin Hicking * ./*: More PHP3-compatibility removal, see 2003-11-20. 2003-11-22 Marc Delisle * tbl_properties_operations.php: display "Add constraints" only if there are foreign keys in current table * libraries/common.lib.php: revert back to previous logic at line 1108 because of regex problem (when only_db is used) 2003-11-21 Marc Delisle * tbl_move_copy.php: typo about constraints 2003-11-21 Michal Cihar * scripts/create-release.sh: Udated information what is needed to change on home page to currect status. 2003-11-20 Alexander M. Turek * server_databases.php, server_processlist.php, server_status.php, server_variables.php: Removed some php 3 / MySQL 3.21 compatibility code. * README: Updated requirements. * scripts/create-release.sh: Create Documentation.txt when building the distribution kits. * Documentation.txt, scripts/updatedocs.sh: Romoved. 2003-11-20 Michal Cihar * read_dump.php: Show message about failing upload in all cases, removed some PHP compatibility code. * libraries/export/sql.php: More older PHP cleanup. * tbl_move_copy.php, tbl_properties_operations.php, lang/*: Cleanup in table moving/copying and allow to keep constraints over these operations. * server_databases.php: Add correct parameters to left frame to keep server choice, language, etc. * libraries/config_import.lib.php, config.inc.php, db_details.php, tbl_query_box.php, Documentation: Allow changing of default queries * Documentation.html: Valid XHTML again. * lang/indonesian: Updated, thanks to Rachim Tamsjadi (tamsy). 2003-11-20 Garvin Hicking * libraries/auth/*, libraries/dbg/*, libraries/export/*, libraries/fpdf/*, libraries/transformations/overview.php, libraries/*.php (work in progress) Lots of PHP < 4.1.0 / MySQL < 3.23.32 compatibility/performance changes: - Replaced "while (list() = each())" calls by foreach loops. - Removed PHP3-compatibility code - Removed calls to $HTTP_*_VARS (using $_* now). - Replaced some TAB-characters with whitespace - Removed PHP4 < 4.1.0 compatibility code - Removed MySQL < 3.23.32 compatibility code - Replaced "for ($i=0; $i <= count(); $i++)" loops to "$cnt = count(); for ($i=0; $i <= $cnt; $i++)" structures for better performance - Replace calls to eregi*/split functions to their preg* counterparts for faster and binary-safe operation - Replace regex-Calls to simple string functions where possible (speedup) - Replace calls to substr($string, X, 1) to $string{X} 2003-11-19 Marc Delisle * libraries/display_tbl.lib.php: first group of headers was offset by one column to the left 2003-11-19 Michal Cihar * lang/catalan: Updated, thanks to Xavier Navarro (xavin). * lang/chinese_big5: Updated, thanks to Siu Sun (siusun). * lang/portuguese: Updated, thanks to António Raposo (cfmsoft). * lang/spanish: Updated, thanks to Daniel Hinostroza (hinostroza). 2003-11-19 Alexander M. Turek * libraries/grab_globals.lib.php: Do not use $HTTP_*_VARS arrays anymore. * Documentation.html: Modified requirements. * server_collations.php: Replaced obsolete "while (list() = each())" calls by foreach loops. * server_privileges.php: Dropped some MySQL 3.21 / php 3 compatibility code. 2003-11-18 Alexander M. Turek * libraries/common.lib.php: Recognizing new 2.x config.inc.php revisions. 2003-11-18 Marc Delisle * lang/*: strUpgradeMySQL -> strUpgrade with one more parameter for the product name * main.php: new warnings for old PHP or MySQL versions 2003-11-18 Michal Cihar * libraries/display_tbl.lib.php: Can kill more proceses. 2003-11-18 Michal Cihar * almost EVERYTHING: The big rename from php3 to php. 2003-11-18 Michal Cihar * read_dump.php3: Show result of last SHOW query when multiple queries. * scripts/create-release.sh: Generate also sizes of files, for files.inc.php on homepage. 2003-11-17 Marc Delisle * lang/french: update * lang/turkish update, thanks to Bora Alioglu * lang/italian: Updated, thanks to Pietro Danesi (danone). * lang/norwegian: Updated, thanks to Sven-Erik Andersen (sven-erik). 2003-11-14 Marc Delisle * tbl_properties_structure.php3: not only TEXT but also any ...TEXT field types can have a FULLTEXT index 2003-11-13 Marc Delisle * libraries/common.lib.php3: undefined variable dblist_full when renaming a table 2003-11-13 Michal Cihar * libraries/export/sql.php3: Fix export of foreign keys. * libraries/export/sql.php3, libraries/config_import.lib.php3, libraries/common.lib.php3, libraries/display_export.lib.php3, lang/*, config.inc.php3: Allow delayed inserts. * libraries/export/sql.php3, libraries/common.lib.php3, libraries/config_import.lib.php3, libraries/display_export.lib.php3, lang/*, config.inc.php3: Support for creating UPDATE and REPLACE statements in export. * lang/remove_message.sh: Checks for parameter count. 2003-11-12 Michal Cihar * libraries/export/latex.php3: Fixed LaTeX output. * libraries/export/latex.php3: Unique fields are bold. 2003-11-11 Garvin Hicking * libraries/display_tbl.lib.php3: Added more secure checks for each'ing on arrays built by the query analyzer. * libraries/display_tbl.lib.php3: Fixed - Colspan for repeated headers were wrong since introduction of multi-row delete. 2003-11-10 Marc Delisle * scripts/extchg.sh: generator.sh was not converted 2003-11-07 Marc Delisle * tbl_change.php3, tbl_replace_fields.php3, Documentation.html: now (if using PHP4) users can enter NULL in a field and get the string NULL and not a NULL value. For a real NULL value they must use the Null checkbox. 2003-11-06 Marc Delisle * New italian doc (partial) in pma_localized_docs * lang/estonian: Updated, thanks to Alvar Soome (finsoft). 2003-11-06 Garvin Hicking * sql.php3, libraries/display_tbl.lib.php3: Display linked values in printview. Display relation- related features (comments, MIME-transformations) in printview. Fix empty table rows in vertical display (kept Mozilla from displaying borders in this printmode). Adjusted layout a tiny-weeny bit to let the comments of a field fit the whole space. * libraries/display_tbl.lib.php3, libraries/transformations/TEMPLATE, Documentation.html: Propagate current MIME-type to plugin functions. Thanks for noticing (again), Thiemo Maettig. :) * libraries/common.lib.php3, Documentation.html, config.inc.php3: Now use $cfg['Servers'][$i]['only_db'] to allow sorting databases in the left frame. The '*' character can be used to fill in all remaining characters. See Documentation for details. thanks to Xuefer for suggestions. 2003-11-06 Michal Cihar * libraries/export/xml.php3: Add xml header with encoding information. 2003-11-05 Garvin Hicking * libraries/common.lib.php3, footer.inc.php3: Do not store queries with errors in history, also when coming from the database SQL tab. * libraries/common.lib.php3: The MySQL-error messages are now put inside a HTML-container, not
. This allows
      wordwrapping to hide vertical scrollbars. Linebreak/Whitespace
      formatting has been altered to preserve those.
    * libraries/transformations/text_plain__dateformat.inc.php3:
      Remove obsolete code, thanks to Thiemo Maettig!
    * Documentation.html, libraries/display_tbl.lib.php3,
      libraries/transformations/*:
      The $meta field information is now passed to the transformation plugins
      to allow future (and easier) usage of field information
      (zerofill/unsigned/not_null/...).

2003-11-04 Marc Delisle  
    * Documentation.html: added known limitation in FAQ 3.10
      about selecting homonyms on a table without primary key

2003-11-04 Garvin Hicking 
    * Documentation.html: Added known limitation about ANSI-mode
    * libraries/transformations/text_plain__dateformat.inc.php3:
      Now allow more timestamps. Minor modification of a patch
      submitted by anonymous poster. Thanks!

2003-11-03 Garvin Hicking 
    * Documentation.html, tbl_row_delete.php3,
      libraries/display_tbl.lib.php3:
      Fixed "Execute stored bookmark". Also made some minor
      tweaks to make PHP-Transformations with forms working again. Added
      a limitation notice on that to FAQ 3.8. Added an image to this action.
    * libraries/display_tbl.lib.php3: Made multi-row delete working for
      vertical browse mode. When executing a multi-row delete, keep the
      last used display mode and other options.
    * Documentation.html: Adjusted link to the link-section of our homepage.
      Fixed typo.

2003-11-03 Michal Cihar  
    * lang/czech: Updated.
    * libraries/common.lib.php3: URI detection works with www-Sharp.Runtime

2003-11-03 Alexander M. Turek  
    * lang/german-*.inc.php3: Grammar.
    * config.inc.php3, libraries/common.lib.php3,
      libraries/config_import.lib.php3, libraries/display_export.lib.php3,
      libraries/export/csv.php3, lang/*.inc.php3:
      (Excel v.X does not import 'CSV for Excel' exports).

2003-11-02 Marc Delisle  
    * lang/arabic: big update, thanks to Ossama Khayat (okhayat)
    * lang/norwegian:  Updated, thanks to Sven-Erik Andersen (sven-erik).

2003-11-01 Marc Delisle  
    * libraries/relation.lib.php3: quotes added

2003-10-31 Marc Delisle  
    * lang/romanian: Updated, thanks to Valics Lehel.
    * tbl_relation.php3: add backquotes around table and field names
      in queries for InnoDB foreign keys; however, in current MySQL 4.0.16
      version, a blank character in a field name is not accepted by InnoDB

2003-10-27 Marc Delisle  
    * querywindow.php3: js errors in SQL-history,
      thanks to Jenik Kaspar (jenix)

2003-10-26 Marc Delisle  
    * libraries/display_tbl.lib.php3: undefined $sql_order
    * querywindow.php3: cosmetic change: added   for
      better display in Iconic 'both' mode

2003-10-24 Michal Cihar  
    * lang/lithuanian: Updated, thanks to Vilius Zigmantas (viliusz).
    * lang/serbian: utf-8 translations contained no strings, regenerated.
    * lang/other: Added missing strings.
    * libraries/display_tbl.lib.php3: Try to show sorting by indexes only if
      it makes sense.

2003-10-20 Michal Cihar  
    * libraries/export/sql.php3: Fix undefined variable for MySQL < 3.23.20.
    * libraries/export/sql.php3. libraries/export/latex.php3,
      libraries/display_export.lib.php3, export.php3, lang/*,
      libraries/common.lib.php3, libraries/config_import.lib.php3: Allow to
      supress dates in SQL dump separately.
    * lang/add_message.sh: Fail if no message specified.
    * lang/add_message_file.sh: Fail if no file specified.
    * libraries/display_export.lib.php3: Added ugly hack to allow switching
      export options in Opera.
    * db_details_structure.php3, lang/*: Show also overhead, allow to check
      all tables with overhead at once (JS only).
    * footer.inc.php3: Try to update history in table only if configured so.

2003-10-21 Marc Delisle  
    * pdf_pages.php3: Patch 825672: show fields in Edit PDF scratchboard,
      thanks to Chris Walsh (chriswalshaz)
    * libraries/display_tbl.lib.php3: undefined $url_query
    * tbl_relation.php3: Bug 827340: Relation view should display also
      non-unique keys as possible choices for foreign keys

2003-10-20 Michal Cihar  
    * Documentation, config.inc.php3, tbl_change.php3,
      libraries/common.lib.php3, libraries/config_import.lib.php3: Make
      default functions configurable.

2003-10-18 Marc Delisle  
    * libraries/common.lib.php3: Safari 1.0 v85.5 and fonts
    * libraries/functions.js: scratchboard and paper size
    * lang/swedish: Updated, thanks to Björn T. Hallberg (bth).
    ### 2.5.4 released

2003-10-17 Marc Delisle  
    * browse_foreigners.php3: PMA_jsFormat() needed on alert()
    * tbl_query_box.php3, libraries/bookmark.lib.php3:
      bookmarks not configured

2003-10-16 Michal Cihar  
    * libraries/zip.lib.php3: Calculate offset progressively.
    * scripts/convertcfg.pl: Perl in most cases lives in /usr/bin/perl.
    * lang/italian: Updated, thanks to Pietro Danesi (danone).
    * lang/serbian: Updated, thanks to Mihailo Stefanovic (mikis).
    * lang/persian-utf-8.inc.php3: Regenerated, was somehow broken.
    * lang/sort_lang.sh: Ignores non file parameter.
    * libraries/common.lib.php3: Add some more fixes for wrongly typed
      $cfg['PmaAbsoluteUri'].
    * Documentation: Changed my email and credits.
    * libraries/defines_php.lib.php3: Output buffering is not available in
      php 3.

2003-10-15 Marc Delisle  
    * lang/russian-windows-1251: wrong charset

2003-10-14 Marc Delisle  
    * server_privileges.php3: sometimes db privileges
      are not shown

2003-10-12 Marc Delisle  
    * Documentation.html: FAQ 6.21 needed clarification

2003-10-11 Marc Delisle  
    * libraries/grab_globals.lib.php3: better fix
    * tbl_select.php3: escape single quotes in table
      Search page

2003-10-10 Marc Delisle  
    * footer.inc.php3: undefined function PMA_setHistory()

2003-10-10 Michal Cihar  
    * libraries/export/sql.php3: Fix PMA_getTableContentOld.
    * left.php3: Konqueror 3 and Opera 7 works with tree view.
    * scripts/create-release.sh: Generate MD5 sums.
    * Documentation, config.inc.php3, scripts/create_tables.sql: Change
      default phpMyAdmin table names from PMA_* to pma_*.

2003-10-07 Marc Delisle  
    * lang/russian*: updated, thanks to Artyom Rabzonov

2003-10-07 Michal Cihar  
    * Documentation: Another hint for creating primary/unique keys.

2003-10-06 Marc Delisle  
    * lang/slovak: Updated, thanks to Lubos Klokner (erkac).

2003-10-06 Michal Cihar  
    * tbl_replace.php3: Do not include query in redirect url if too long.

2003-10-02 Marc Delisle  
    * libraries/grab_globals.lib.php3: protect POST variables
      against cookies of the same name
    * libraries/display_tbl.lib.php3: the multi-row delete
      icon should not be displayed in all cases

2003-10-01 Marc Delisle  
    * lang/slovenian update, thanks to Kositer Uros
    * lang/norwegian:  Updated, thanks to Sven-Erik Andersen (sven-erik).
    * libraries/export/sql.php3: Undefined index/offset
    * lang/turkish update, thanks to Bora Alioglu

2003-10-01 Alexander M. Turek  
    * translators.html: Better link.

2003-09-30 Marc Delisle  
    ### 2.5.4-rc1 released

2003-09-29 Michal Cihar  
    * lang/czech: Updated.
    * config.inc.php3, db_details_importdocsql.php3,
      db_details_structure.php3, libraries/config_import.lib.php3: You now
      need to explicitely enable docSQL support ($cfg['docSQLDir']).
    * Documentation: Documented above and support for compressed dumps.
    * db_details.php3, export.php3, ldi_check.php3, ldi_table.php3,
      read_dump.php3, tbl_change.php3, tbl_query_box.php3,
      tbl_replace_fields.php3: $cfg['*Dir'] don't have to end with slash.

2003-09-28 Marc Delisle  
    * lang/albanian: Updated, thanks to Laurent Dhima (laurenti).
    * lang/indonesian: Updated, thanks to Rachim Tamsjadi (tamsy).
    * lang/chinese_big5: Updated, thanks to Siu Sun (siusun).
    * new lang: bosnian, thanks to Samir Kobiljak

2003-09-27 Marc Delisle  
    * tbl_row_delete.php3, mult_submits.inc.php3,
      libraries/display_tbl.lib.php3, /display_tbl_links.lib.php3:
      RFE 810270: multi-row delete in browse mode
    * lang/catalan: Updated, thanks to Xavier Navarro (xavin).
    * lang/polish: Updated, thanks to Jakub Wilk (ubanus).
    * lang/spanish: Updated, thanks to Daniel Hinostroza (dhinostroza).

2003-09-26 Alexander M. Turek  
    * tbl_indexes.php3: (Icons for index table).
    * lang/persian-*.inc.php3, lang/sync_lang.sh,
      libraries/select_lang.lib.php3, translators.html:
      New Persian language files, thanks to Parham Ghaffarian.
    * libraries/select_lang.lib.php3: Removed a dublicate entry.
    * translators.html: I'm back. :-)
    * lang/english.inc.php3: Resorted strings.

2003-09-26 Garvin Hicking 
    * left.php3: Fixed display of '__protected__' subgroup in
      non-light left frame mode, when $cfg['LeftFrameTableSeperator'] is empty.

2003-09-24 Alexander M. Turek  
    * libraries/function.js: (Opera 7.20 messes up row
      markers), thanks to Michael Johnson (redbeardc).
    * server_privileges.php3: Fixed (Password not kept when
      modifying user).

2003-09-23 Alexander M. Turek  
    * lang/german-*.inc.php3: Fixed some typos, thanks to Sebastian Mendel.

2003-09-23 Marc Delisle  
    * libraries/export/sql.php3: we need to analyze the query
      to get the true column name in case of aliases
    * libraries/common.lib.php3: final 1.0 version of Safari
      does not need reduced font size

2003-09-20 Marc Delisle  
    * pdf_schema.php3: the "Show color" only removed
      color on arrows, now removes all the color because of printing problems
      on black&white printers, thanks to Kelley Lingerfelt (rebelkell)

2003-09-19 Marc Delisle  
    * server_privileges.php3: could not delete a user

2003-09-19 Michal Cihar  
    * libraries/display_tbl.lib.php3: Fixed deleting AND from end of condition
      with older php.

2003-09-18 Michal Cihar  
    * libraries/auth/cookie.auth.lib.php3: Improved functionality when more
      than one cookie auth is being used.

2003-09-18 Garvin Hicking 
    * tbl_query_box.php3, read_dump.php3, sql.php3, lang/*: -
      Add bookmark option to query window/tab to bookmark any statement.

2003-09-17 Garvin Hicking 
    * querywindow.php3: Display 'edit' button to alter entries from SQL query
      history, not execute them immediately.
    * footer.inc.php3: Save SQL history even if 'LockFromUpdate' is selected.
    * server_databases.php3: Refresh left frame when selecting a DB of
      server_databases.php3

2003-09-17 Michal Cihar  
    * read_dump.php3, libraries/read_dump.lib.php3: Error message when file
      can not be read.
    * tbl_query_box.php3: Do not require any variables in query window.
    * lang/*, libraries/export/sql.php3: Export separately constraints, so
      they don't cause troubles on import.
    * Documentation, config.inc.php3, left.php3, main.php3, lang/*,
      libraries/common.lib.php3, libraries/config_import.lib.php3,
      libraries/auth/cookie.auth.lib.php3,
      libraries/auth/arbitrary.auth.lib.php3(deleted): Merged arbitrary auth
      into cookie auth, new config variable for enabling this
      $cfg['AllowArbitraryServer'].
    * db_details.php3, tbl_change.php3, tbl_query_box.php3,
      libraries/common.lib.php3: Execute uploaded gzip/bzip'd SQL-files
    * Documentation, config.inc.php3, export.php3, libraries/common.lib.php3,
      libraries/config_import.lib.php3: Allow compressing large SQL dumps -
      they are compressed by smaller chunks and send to browser.
    * tbl_properties_operations.php3: Remove '; InnoDB free:' part from
      comment including references.

2003-09-16 Marc Delisle  
    * sql.php3: (js disabled and user removes the row limit
      from the Show [30] rows)

2003-09-16 Garvin Hicking 
    * db_details_qbe.php, libraries/mysql_wrappers.lib.php3: Finetune the new
    PMA_mysql_fetch_fields() function and renamed it to PMA_mysql_fetch_fields_alternate:
    It now uses 'SHOW FIELDS FROM...'. Modified all calls to the old function to fit the new
    one. Keep old function for any future use.

2003-09-15 Marc Delisle  
    * tbl_properties_links.php3, db_details_structure.php3: in Table view,
      "Select" becomes "Search" to denote more clearly was this sub-page
      is about

2003-09-15 Michal Cihar  
    * libraries/export/sql.php3: Avoid freeing failed result.

2003-09-14 Marc Delisle  
    * Documentation.html: clarify FAQ 6.20 about which privileges are
      assigned to users after an upgrade to MySQL 4, and their effect
      on seeing all the databases.

2003-09-12 Garvin Hicking 
    * lang/*, sql.php3, libraries/bookmark.lib.php3:
      (Bookmarks for all users)
    * lang/german*: Update
    * Documentation.html: Added note to FAQ 6.18 about bookmark-variable expansion
      not working on PHP < 4.0.3

2003-09-12 Marc Delisle  
    * lang/turkish update, thanks to Bora Alioglu
    * libraries/display_tbl.lib.php3: (undefined $prev_index)
      and add "Sort" tooltip to each column header

2003-09-11 Michal Cihar  
    * read_dump.php3: Add also limit to size, not only to pieces, because of
      extended inserts.

2003-09-10 Marc Delisle  
    * Documentation.html: clarify about InnoDB support
    * libraries/sqlparser.lib.php3: BINARY as an operator;
      : SELECT * FROM mytable LIMIT 0,-1
    * libraries/mysql_wrappers.lib.php3:  wrong results coming
      from mysql_list_fields, so modify PMA_mysql_list_fields to use
      SELECT * FROM db.table LIMIT 1
      (Thanks to Peter Beckman (ooglek))

2003-09-09 Marc Delisle  
    * libraries/mysql_wrappers.lib.php3: wrong results coming
      from mysql_list_tables, so modify PMA_mysql_list_tables to use
      SHOW TABLES FROM

2003-09-09 Michal Cihar  
    * tbl_relation.php3: Avoid message about not array variable when no InnoDB
      relations used.
    * libraries/display_tbl.lib.php3, lang/*: Allow user to select sorting by
      indexes.
    * lang/indonesian: Updated, thanks to Rachim Tamsjadi (tamsy).
    * lang/dutch: Updated, thanks to nobody :-).

2003-09-08 Michal Cihar  
    * left.php3, main.php3, lang/*, libraries/common.lib.php3, Documentation,
      config.inc.php3, libraries/auth/arbitrary.auth.lib.php3,
      libraries/auth/cookie.auth.lib.php3: Support for login to arbitrary
      server.

2003-09-08 Alexander M. Turek  
    * server_privileges.php3: Fixed (No 'LOCK TABLES' in DB-specific
      privileges).

2003-09-07 Marc Delisle  
    ### 2.5.3 released
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.5 2003/09/01 14:00:31 tron Exp $
d3 2
a4 2
SHA1 (phpMyAdmin-2.5.7-pl1.tar.bz2) = ca616465669f9ba29586085072f3f88fbe4ba515
Size (phpMyAdmin-2.5.7-pl1.tar.bz2) = 1123591 bytes
@


1.5
log
@Update "phpmyadmin" package to version 2.5.3rc3. This version provides
numerous bug fixes and enhancements over version 2.3.3pl1. The include
file "ChangeLog" will provide detailed information.
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.4 2003/01/05 14:25:18 tron Exp $
d3 2
a4 2
SHA1 (phpMyAdmin-2.5.3-rc3-php.tar.bz2) = b68c3d21ed2ad2dba8a3f0b3a7a02904aad08d0c
Size (phpMyAdmin-2.5.3-rc3-php.tar.bz2) = 995406 bytes
@


1.4
log
@Update "phpmyadmin" to version 2.3.3.1 (2.3.3pl1). This version fixes
numerous bugs discovered since the release of version 2.3.2.
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.3 2003/01/05 08:41:45 tron Exp $
d3 2
a4 2
SHA1 (phpMyAdmin-2.3.3pl1-php.tar.bz2) = 10275c59e687a320c553c5aa8aff63855bfef325
Size (phpMyAdmin-2.3.3pl1-php.tar.bz2) = 634325 bytes
@


1.3
log
@Update "phpmyadmin" package to version 2.3.2. Changes since version 2.2.0
include an improved user interface and many bug fixes.
The update was provided by Adrian Portelli in PR pkg/19012.
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.2 2001/10/03 08:20:37 tron Exp $
d3 2
a4 2
SHA1 (phpMyAdmin-2.3.2-php.tar.bz2) = f025ad27feb21b58fb45a42798daffa55c430730
Size (phpMyAdmin-2.3.2-php.tar.bz2) = 606882 bytes
@


1.2
log
@Update "phpmyadmin" package to version 2.2.0. This version fixes many
bugs found since version 2.2.0rc1 was released, works better with the
JavaScript implementations of Opera and Konqueror and adds news
translations.
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.1.1.1 2001/07/08 20:53:04 tron Exp $
d3 2
a4 2
SHA1 (phpMyAdmin-2.2.0-php.tar.bz2) = 4d752fc60e0194d894cf00cc1946b805cf903e06
Size (phpMyAdmin-2.2.0-php.tar.bz2) = 162246 bytes
@


1.1
log
@Initial revision
@
text
@d1 1
a1 1
$NetBSD$
d3 2
a4 2
SHA1 (phpMyAdmin-2.2.0rc1.tar.gz) = 6bdedf1498756e52eb276405c6373e52d3a85623
Size (phpMyAdmin-2.2.0rc1.tar.gz) = 128432 bytes
@


1.1.1.1
log
@Initial import of "phpmyadmin" package:
Set of PHP-scripts to adminstrate MySQL over the WWW
@
text
@@