| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
- bug #1903724 [interface] Displaying of very large queries
in error message
- bug #1905711 [compatibility] Functions deprecated in PHP 5.3:
is_a() and get_magic_quotes_gpc()
- bug [lang] catalan wrong accented characters
- bug #1893034 [Export] SET NAMES for importing with command-line
client
+ [lang] Russian update
- bug #1910485 [core] Unsetting the whitelist during the loop
- bug #1906980 [Export] Import of VIEWs fails if temp table exists
- bug #1812763 [Copy] Table copy when server is in ANSI_QUOTES
sql_mode
- bug #1918531 [compatibility] Navigation isn't w3.org valid
- bug #1926357 [data] BIT defaults displayed incorrectly
- patch #1930057 [auth] colon in password prevents HTTP login
on CGI/IIS
- patch #1929553 [lang] Don't output BOM character in Swedish
language file
- patch #1895796 [lang] Typo in Japanese lang files
- bug #1935652 [auth] Access denied (show warning about mcrypt
on login page)
- bug #1906983 [export] Reimport of FUNCTION fails
- bug #1919808 [operations] Renaming a database fails to handle
functions
- bug #1934401 [core] Cannot force a language
- bug #1944077 [core] Config file containing a BOM
- bug #1947189 [scripts] Missing head tag in scripts/signon.php
+ [lang] Romanian update
|
|
|
|
|
|
|
|
security problem reported in PMASA-2008-3 (CVE-2008-1924).
|
|
|
|
The new version fixes a credentials disclosure on shared hosts via
session data reported in security announcement PMASA-2008-2.
|
|
The new version fixes several bugs including the cross site scripting
vulnerability reported in PMASA-2007-8 and the SQL inject vulnerability
report in PMASA-2008-1.
|
|
their files via a custom do-install target.
|
|
directory. Problems noted by Stoned Elipot and Martti Kuparinen in
private e-mail. Bump package revision because of these changes.
|
|
directory. Problems noted by Stoned Elipot and Martti Kuparinen in
private e-mail. Bump package revision because of these changes.
|
|
created anymore. Pointed out by Geert Hendrickx.
|
|
Change since version 2.10.2:
- creating VIEWs from query results
- managing triggers, procedures and functions
- supports MySQL 5.0.37 query profiling
- improved interface for servers hosting thousands of databases and tables.
- security fixes for PMASA-2007-5, PMASA-2007-6 and PMASA-2007-7
|
|
the owner of all installed files is a non-root user. This change
affects most packages that require special users or groups by making
them use the specified unprivileged user and group instead.
(1) Add two new variables PKG_GROUPS_VARS and PKG_USERS_VARS to
unprivileged.mk. These two variables are lists of other bmake
variables that define package-specific users and groups. Packages
that have user-settable variables for users and groups, e.g. apache
and APACHE_{USER,GROUP}, courier-mta and COURIER_{USER,GROUP},
etc., should list these variables in PKG_USERS_VARS and PKG_GROUPS_VARS
so that unprivileged.mk can know to set them to ${UNPRIVILEGED_USER}
and ${UNPRIVILEGED_GROUP}.
(2) Modify packages to use PKG_GROUPS_VARS and PKG_USERS_VARS.
|
|
The new version fixes several bugs and addresses the security
vulerability reported in PMASA-2007-4.
|
|
|
|
- Fix for PMASA-2007-3 (PHP Executor Deep Recursion Stack Overflow)
- New graphical relation manager, called Designer, available in
database view
|
|
Changes since version 2.9.1.1 (literal quote from the home page):
Version 2.9.2-rc1 contains some security fixes (an advisory will be
published when releasing 2.9.2) and other fixes.
|
|
1.) Don't use hardcoded group "wheel". Use "APACHE_GROUP" instead which
defaults to "www".
2.) Create user and group if necessary. This fixces PR pkg/35141 by
Wouter Schoot.
3.) Fix path to Perl interpreter in helper script "convertcfg.pl" and
add missing dependence on Perl package.
Bump package revision because of these fixes.
|
|
Changes since version 2.9.0.3:
- Security fixes
- Wrong import when ;; is at buffer boundary
- Duplicate id for checkbox on table Operations page
- Better behavior on the Add new fields page
- Export: csv/cvs typo
- Renaming a db containing a view
- Automated timestamp values
- Import: correctly fail if file is too short
- Default font family on original theme
|
|
XSS vulnerability reported in PMASA-2006-6.
|
|
Changes since version 2.8.2.4:
- Fixed for security vulnerability reported in PMASA-2006-5
- New export options
- A lot of bug fixes
|
|
This release fixes some bugs found since version 2.8.2 hasn been released.
This update was provided by Martin Wilke in PR pkg/34314.
|
|
Changes since version 2.8.0.4:
- XSS vulnerability from requests not containing a token
- Reenable XML option in Export
- State in documentation that your browser must accept cookies
- CVS link was broken on main page
- Adding a user with password containing a backslash
- Removing a default value
- Setup script: compatibility with security tokens
- Setup script: detection of writable config
- Reading the database list with MySQL wildcards
|
|
all PEAR packages to php?-pear-* and all Apache packages to ap13-* or
ap2-* respectively. Add new variables to simplify the Makefile
handling. Add CONFLICTS on the old names. Reset revisions of bumped
packages. ap-php will now depend on the default Apache and PHP version.
All programs using it have an implicit option of the Apache version
as well.
OK from jlam@ and adrianp@.
|
|
security vulnerability reported in PMASA-2006-2 and CVE-2006-2031.
|
|
Changes since version 2.8.0.2:
- XSS vulnerability (set_theme)
- mysqli problems with zend.ze1_compatibility_mode enabled
- setup script did not save the mysql/mysqli extension
- XSS vulnerability (calling directly css files under themes)
|
|
don't get installed. This fixes a package list problem reported by
Lubomir Sedlacik in private e-mail. Bump package revision.
|
|
Changes since version 2.8.0.1:
- XSS vulnerability (set_theme)
- mysqli problems with zend.ze1_compatibility_mode enabled
- setup script did not save the mysql/mysqli extension
Package source related changes:
- incooperate fix for phpMyAdmin bug #1436279 to make the package usable
with Safari under Mac OS X again
|
|
|
|
- PHP 5.1.2 compatibility
- Possibility to hide databases
- Configurable memory limit for import/export
- Better support for CGI
- Web-based setup
|
|
|
|
functionality work. Bump package revision because of this fix.
This fixes PR pkg/32466 by Konrad Neuwirth.
|
|
automatically detects whether we want the pkginstall machinery to be
used by the package Makefile.
|
|
2.6.4-pl4:
- New plugin-based import module
- Some pages now use fieldsets for better look
- Better support for information_schema
- Upgrade script new options
- Better displaying of privileges when there are differences between the
various user definition tables
- Structure: count unique value for each field
- Can now limit the list of shown languages
- User-specific upload and save server directories
- Remove Drop tab for mysql database
- New transformation: SQL pretty printing
- Ability to limit maximum size of extended insert
- Support for searching in the foreign key window
- Can now replace an existing bookmark
- New shortcuts for IP rules
- Detect lack of privileges for "Create new table"
- Wrong display of localized MySQL error messages
- Need to select the primary key for MIME-based print view
- Handling of ENTER key when adding fields
- InnoDB: truncating icon and exact row count
- After dropping a db, links were missing
- Strict mode and auto-increment fields insertion
- Collation change for ENUM and SET
- Display problems on special characters in column name
- Links for MySQL documentation
- Escaping of "_"
- Could not edit privileges when different host in db and user
- Changing auto-increment value for InnoDB
- Correct sort order for foreign-key dropdowns
- Group database by rightmost separator
- Performance problem when inserting huge BLOBs
- Calendar popup and time beginning by 0
This update fixes the security vulnerabilities reported in PMASA-2005-8
and PMASA-2005-9.
|
|
example MAKE_ENV+=FOO=${BAR} is changed to MAKE_ENV+=FOO=${BAR:Q}. Some
other changes are outlined in
http://mail-index.netbsd.org/tech-pkg/2005/12/02/0034.html
|
|
version 2.6.4pl3:
- css/phpmyadmin.css.php: Do not use common header file, as there is
nothing common at all.
- libraries/header_http.inc.php: Always send text/html content type.
- libraries/db_table_exists.lib.php, libraries/header_http.inc.php,
transformation_wrapper.php: Use define rather than variable for
conditional paths.
This fixes the security vulnerability reported in PMASA-2005-6.
|
|
the security vulnerability reported in PMASA-2005-5.
|
|
the security vulnerability reported in PMASA-2005-4.
Addresses PR pkg/31561 by Zafer Aydogan.
|
|
NO_BUILD, USE_LIBTOOL.
|
|
|
|
|
|
Security fix for two XSS security issues
Lots of other changes, a brief summary includes:
> Improvements:
> Foreign-key dropdowns can be more customized
> Export: configurable filename templates
> Display column comments while editing data
> Transformations: new hexadecimal mode
> HTTP auth: support FastCGI
> Themes: can now have different theme per server
> OLD_PASSWORD in the list of functions
> Better messages when checking numerical input
> Allow adding DROP TABLE when copying databases
> Better support of information_schema
> Various interface CSS improvements
> Tree subgroups in left panel database selector
> Documentation: links and anchors to every FAQ item
> Table comments move to page header
> Export: configurable default charset
> Removed warning about PmaAbsoluteUri not set
> Fixes:
> Database search in MySQL 5.0.x on fields without a charset
> Invalid "normal" cursor style
> Browsing state when deleting multiple rows
> Support bigger queries in print view, insert row, export results
> Unsaved changes to relations were lost when changing display field
> Exporting under IE 6 (Windows XP SP2)
> Better catching of parse errors in config file
> XSS on the cookie-based login panel
> Show all while browsing foreign values
> Escaping of special characters in ENUM or SET
> XSS on table creation page
> Using mysqli extension with MySQL 4.0.x
> "empty result set" message was sometimes not returned
> Incorrect message "You should define a primary key"
> Abide cfg['Lang'] settings even if using MySQL > 4.1.x
|
|
|
|
create the config file at do-configure time.
|
|
|
|
- MySQL 4.1.x native column comments
- MySQL 5.0: Basic detection mechanism for views:
o Views are no longer displayed as tables in use
o Ability to drop views
- MySQL 5.0: Interface fixes and hardcoded virtual relations for
information_schema
- MySQL 4.1: Better automatic detection for available storage engines
- New storage engines overview page
o Plugin-like infrastructure for storage engine status monitors
o Overview of startup variables and current values
o MySQL 5.0 / InnoDB: Buffer pool activity monitor
- MySQL 4.1.2+ TIMESTAMP options
- Export: Native Microsoft Word 2000 and Excel 2000 formats
- PDF schema visual editor: column names now optional
- MySQL 5.0.3 new Japanese charsets support (cp932, eucjpms)
- Parser: added missing date and time MySQL functions
- Documentation: explain all Export options handling
- Cookie paths: added / to end of path
- Show database comments at more places
- Better use of print styles in themes
- Bookmarks: sort by label, remove the number before each label
- Better protection against possible collation conflicts and out-of-sync
errors in PMADB queries
- Relation view: removed pmadb-style comments handling (now available just
on the Structure page)
- FAQ about using HTTP authentication under IIS
- New editions for some language files (especially ISO-8859-15)
- English messages improvements
- Detection of SELECT query to display on multiple submits
- PDF schema: missing header
- A failed connection was not properly detected
- Problem with Japanese language under MySQL 4.1.x
- Export
o Various errors under mysqli extension
o SQL format under Safari browser
o Do not offer export modes not available in current MySQL version
- Changing the type of a FLOAT unsigned column
- Adding field with collation
- Calendar popup and TIMESTAMP field under MySQL 4.1.x
- PHP 4.1.x: wrong parameter count (mcrypt.lib.php)
- Problem when SHOW DATABASES is disabled
- Copy table: commands out of sync
- User management
o Host not changing with editing user
o Escaping character removed by error
- MySQL 5.0.x: "No database selected" error
- Print view: displaying of indexes
- Cookie auth: error when blowfish_secret is empty
- MySQL 4.1.2: "Reload MySQL" link not seen
- MySQL 5 server binlog compatibility
- PDF pages generation: wrong documentation
- Inserted row id was not always correctly reported
- Do not offer unavailable collations
- XSS vulnerability on "convcharset" [PMASA-2005-3]
- Do not allow to drop information_schema
- Undefined offset (on the left panel)
- Problem copying InnoDB table with foreign-key constraints to a table in
the same database
|
|
which e.g. completely broke editing entries in a table.
|
|
|
|
about the lack of multibyte support otherwise.
|
