Hello community, here is the log from the commit of package phpMyAdmin for openSUSE:Factory checked in at 2018-04-20 17:32:16 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/phpMyAdmin (Old) and /work/SRC/openSUSE:Factory/.phpMyAdmin.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "phpMyAdmin" Fri Apr 20 17:32:16 2018 rev:150 rq:599221 version:4.8.0.1 Changes: -------- --- /work/SRC/openSUSE:Factory/phpMyAdmin/phpMyAdmin.changes 2018-03-08 10:58:05.080066581 +0100 +++ /work/SRC/openSUSE:Factory/.phpMyAdmin.new/phpMyAdmin.changes 2018-04-20 17:34:10.980284328 +0200 @@ -1,0 +2,96 @@ +Fri Apr 20 09:55:08 UTC 2018 - [email protected] + +- update to 4.8.0.1 (2018-04-19) + * Fix [security] Multiple CSRF vulnerabilities, See PMASA-2018-02 + (boo#1090309, CVE-2018-10188) + +------------------------------------------------------------------- +Wed Apr 11 20:02:26 UTC 2018 - [email protected] + +- fix wrong require /usr/bin/bash to /bin/bash so phpMyAdmin could + install +- insert missing templates dir in htaccess + See https://docs.phpmyadmin.net/de/latest/setup.html#securing-your-phpmyadmin-installation +- create tmp dir and insert this in htaccess to fix the errormessage + after login + +------------------------------------------------------------------- +Wed Apr 11 17:45:44 UTC 2018 - [email protected] + +- spec clean up + * Let rpm find the library dependencies by itself. Remove + unneeded explicit Requires: tags (php-zlib) + * Remove logic for obsolete openSUSE releases + * Ignore pem-certificate rpmlint warning (see + libraries/certs/README.rst) + * Remove hidden .github, .php_cs.dist, .scrutinizer.yml and + .editorconfig + * Remove php_twig.h and twig.c (devel) + * Set proper shebang for bash and php scripts + * Make phpmyadmin/sql-parser/bin/*-query and + paragonie/random_compat/*.sh executable + +------------------------------------------------------------------- +Wed Apr 11 07:42:57 UTC 2018 - [email protected] + +- update to 4.8.0 (2018-04-07) + * gh#12946 Allow to export JSON with unescaped unicode chars + * gh#12983 Disable login button without solved reCaptcha + * gh#12315 Allow to remove individual segments from pie charts + * gh Change label from "Improve table structure" to + "Normalize" to match standard terminology + * gh#13087 Offer login as different user on access denied from + MySQL + * gh#13110 Indicate when HTTPS is not properly reported on the + server + * gh#13119 No database selected error when adding foreign key + * gh#12388 Improved database search to allow search for exact + phrase match + * gh#13099 Report error when trying to copy database to same + name + * gh#13167 Themes now have to contain metadata in theme.json + * gh#6363 phpMyAdmin no longer requires eval() in PHP + * gh#12386 The mbstring dependency is now optional + * gh#13269 Small refactoring in preparation to CSP + * gh#13384 Database link broken in Databases Page + * gh#13391 Configurable authentication logging using + $cfg['AuthLog'] + * gh#13086 Add support for Google Invisible Captcha + * gh#13058 Improved error reporting for reCAPTCHA + * gh#12899 Improved rendering of server variables table + * gh#12948 Fixed javascript editor for TIME values + * gh#13095 Fixed alignment of foreign keys editing + * gh#12944 Improved inline editor for JSON + * gh#13145 Improved layout of operations pages + * gh#13448 Add "format" query button in edit view form + * gh#6241 Implement Responsive Design/mobile interface + * gh Use a single location for classes under PhpMyAdmin + namespace + * gh#12354 Indicate SSL status on main page + * gh#5666 Configuration directives for defaults of Transformation + options + * gh#12261 Remove inline JavaScript + * gh#13408 Show MySQL warnings when executing SQL queries + * gh#5827 Allow Designer to show tables from other databases + * gh#13268 Replace Query-By-Example with multi-table query + generator interface + * gh#13576 Add privileges export to per-database listing + * gh Consolidate functions into class files + * gh#13560 Add support for changing collation for all tables and + columns in database + * gh#13303 Add support for creating fulltext index from table + structure + * gh#13711 Lower default value for $cfg['MaxExactCount'] + * gh#13722 DisableIS is not fully honored + * gh#6197 Added support for authentication using U2F and 2FA + * gh#13480 Avoid removing cookies on upgrade + * gh#13397 Remember state of navigation panel + * gh#11688 Reduced cookie usage + * gh#13466 Better utilization of user preferences + * gh#14042 Rename PMD to Designer + * gh#13940 Honor arg_separator in AJAX requests + * gh#14060 Can't edit rows in Internet Explorer + * gh#14096 Internet Explorer compatibility; fixes JavaScript error + Object doesn't support property or method 'startsWith' + +------------------------------------------------------------------- Old: ---- phpMyAdmin-4.7.9-all-languages.tar.xz phpMyAdmin-4.7.9-all-languages.tar.xz.asc New: ---- phpMyAdmin-4.8.0.1-all-languages.tar.xz phpMyAdmin-4.8.0.1-all-languages.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ phpMyAdmin.spec ++++++ --- /var/tmp/diff_new_pack.2N0Qhd/_old 2018-04-20 17:34:11.780255316 +0200 +++ /var/tmp/diff_new_pack.2N0Qhd/_new 2018-04-20 17:34:11.788255027 +0200 @@ -29,7 +29,7 @@ %define ap_grp nogroup %endif Name: phpMyAdmin -Version: 4.7.9 +Version: 4.8.0.1 Release: 0 Summary: Administration of MySQL over the web License: GPL-2.0+ @@ -59,7 +59,6 @@ Requires: php-mysql Requires: php-openssl Requires: php-session -Requires: php-zlib # FIXME: use proper Requires(pre/post/preun/...) PreReq: coreutils PreReq: grep @@ -73,9 +72,7 @@ Suggests: php-mcrypt BuildRoot: %{_tmppath}/%{name}-%{version}-build BuildArch: noarch -%if 0%{?suse_version} > 1020 BuildRequires: fdupes -%endif %description phpMyAdmin can manage a whole MySQL server (needs a super-user) as well as a @@ -120,13 +117,21 @@ %patch0 %patch1 -find . -type d -exec chmod 755 {} \; -find . -type f -exec chmod 644 {} \; -rm -rf vendor/phpmyadmin/sql-parser/.github -for file in *.orig .buildinfo .gitkeep .travis.yml .weblate .jshintrc .eslintrc.json ; do +# clean up +find . -name .github -type d -prune -exec rm -r {} \; +for file in *.orig .buildinfo .gitkeep .travis.yml .weblate .jshintrc .eslintrc.json \ +.php_cs.dist .scrutinizer.yml .editorconfig php_twig.h twig.c; do find . -type f -name $file -delete done +# set proper shebang +sed -i 's/env php/php/' vendor/phpmyadmin/sql-parser/bin/*-query +sed -i 's|\/usr\/bin\/env bash|\/bin\/bash|g' vendor/paragonie/random_compat/*.sh + +# permissions +find . -type d -exec chmod 755 {} \; +find . ! -name '*.sh' ! -name '*-query' -type f -exec chmod 644 {} \; + %build %install @@ -137,6 +142,8 @@ # install config to config dir install -D -m0640 %{buildroot}%{ap_docroot}/%{name}/config.sample.inc.php \ %{buildroot}%{_sysconfdir}/%{name}/config.inc.php +# install TempDir +install -d -m0770 %{buildroot}%{ap_docroot}/%{name}/tmp # fix libraries/vendor_config.php sed -i -e "s,@docdir@,%{_docdir}/%{name},g" -e "s,@sysconfdir@,%{_sysconfdir}/%{name},g" \ @@ -155,10 +162,8 @@ -e "s,@docdir@,%{_docdir},g" -e "s,@ap_sysconfdir@,%{ap_sysconfdir},g" %{buildroot}%{ap_sysconfdir}/conf.d/%{name}.conf # rpmlint stuff -%if 0%{?suse_version} > 1020 %fdupes %{buildroot}%{ap_docroot}/%{name}/libraries %fdupes %{buildroot}%{ap_docroot}/%{name}/themes -%endif %post # on `rpm -ivh` PARAM is 1 @@ -175,18 +180,10 @@ a2enmod -q "php${php_version}" || a2enmod "php${php_version}" fi fi -%if 0%{?suse_version} < 1310 -%restart_on_update apache2 -#%%else #systemctl try-restart apache2 &>/dev/null -%endif -%postun -%if 0%{?suse_version} < 1310 -%restart_on_update apache2 -#%%else +#%%postun #systemctl try-restart apache2 &>/dev/null -%endif %files -f FILELIST %defattr(644,root,root,755) @@ -194,9 +191,12 @@ %doc LICENSE README RELEASE-DATE* %doc examples doc sql %dir %attr(0750,root,%{ap_grp}) %{_sysconfdir}/%{name} +%dir %attr(0770,root,%{ap_grp}) %{ap_docroot}/%{name}/tmp %config(noreplace) %{_sysconfdir}/%{name}/config.inc.php %dir %{ap_docroot}/%{name} %config(noreplace) %{ap_sysconfdir}/conf.d/%{name}.conf %config(noreplace) %{ap_sysconfdir}/conf.d/%{name}.inc +%attr (755,root,root) %{ap_docroot}/%{name}/vendor/phpmyadmin/sql-parser/bin/*-query +%attr (755,root,root) %{ap_docroot}/%{name}/vendor/paragonie/random_compat/*.sh %changelog ++++++ phpMyAdmin-4.7.9-all-languages.tar.xz -> phpMyAdmin-4.8.0.1-all-languages.tar.xz ++++++ /work/SRC/openSUSE:Factory/phpMyAdmin/phpMyAdmin-4.7.9-all-languages.tar.xz /work/SRC/openSUSE:Factory/.phpMyAdmin.new/phpMyAdmin-4.8.0.1-all-languages.tar.xz differ: char 26, line 1 ++++++ phpMyAdmin-rpmlintrc ++++++ --- /var/tmp/diff_new_pack.2N0Qhd/_old 2018-04-20 17:34:11.880251691 +0200 +++ /var/tmp/diff_new_pack.2N0Qhd/_new 2018-04-20 17:34:11.880251691 +0200 @@ -1,2 +1,3 @@ addFilter("files-duplicated-waste") addFilter("files-duplicate") +addFilter("pem-certificate") ++++++ phpMyAdmin.http ++++++ --- /var/tmp/diff_new_pack.2N0Qhd/_old 2018-04-20 17:34:11.912250530 +0200 +++ /var/tmp/diff_new_pack.2N0Qhd/_new 2018-04-20 17:34:11.916250385 +0200 @@ -1,4 +1,5 @@ <Directory @ap_docroot@/@name@> + Options FollowSymLinks AllowOverride None @@ -13,6 +14,7 @@ </IfModule> </Directory> + <Directory @ap_docroot@/@name@/libraries> <IfVersion < 2.4> @@ -32,3 +34,40 @@ </Directory> +<Directory @ap_docroot@/@name@/templates> + + <IfVersion < 2.4> + Order allow,deny + Deny from all + </IfVersion> + + <IfVersion >= 2.4> + <IfModule !mod_access_compat.c> + Require all denied + </IfModule> + <IfModule mod_access_compat.c> + Order deny,allow + Deny from all + </IfModule> + </IfVersion> + +</Directory> + +<Directory @ap_docroot@/@name@/tmp> + + <IfVersion < 2.4> + Order allow,deny + Deny from all + </IfVersion> + + <IfVersion >= 2.4> + <IfModule !mod_access_compat.c> + Require all denied + </IfModule> + <IfModule mod_access_compat.c> + Order deny,allow + Deny from all + </IfModule> + </IfVersion> + +</Directory>
