Hello community, here is the log from the commit of package phpMyAdmin for openSUSE:Factory checked in at 2014-11-24 11:08:56 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/phpMyAdmin (Old) and /work/SRC/openSUSE:Factory/.phpMyAdmin.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "phpMyAdmin" Changes: -------- --- /work/SRC/openSUSE:Factory/phpMyAdmin/phpMyAdmin.changes 2014-11-03 13:13:20.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.phpMyAdmin.new/phpMyAdmin.changes 2014-11-24 11:09:10.000000000 +0100 @@ -1,0 +2,40 @@ +Thu Nov 20 16:18:55 UTC 2014 - [email protected] + +- update to 4.2.12 (2014-11-20) + This update fixes several vulnerabilities, as well as a number of + other bug fixes. +- Security fixes: + * PMASA-2014-16 (CVE-2014-8961, CWE-661 CWE-23) [boo#906488] + http://www.phpmyadmin.net/home_page/security/PMASA-2014-16.php + - sf#4595 [security] Path traversal can lead to leakage of + line count + * PMASA-2014-15 (CVE-2014-8960, CWE-661 CWE-79) [boo#906487] + http://www.phpmyadmin.net/home_page/security/PMASA-2014-15.php + - sf#4596 [security] XSS through exception stack + * PMASA-2014-14 (CVE-2014-8959, CWE-661 CWE-98) [boo#906486] + http://www.phpmyadmin.net/home_page/security/PMASA-2014-14.php + - sf#4594 [security] Path traversal in file inclusion of + GIS factory + * PMASA-2014-13 (CVE-2014-8958, CWE-661 CWE-79) [boo#906485] + http://www.phpmyadmin.net/home_page/security/PMASA-2014-13.php + - sf#4578 [security] XSS vulnerability in table print view + - sf#4579 [security] XSS vulnerability in zoom search page + - sf#4598 [security] XSS in multi submit + - sf#4597 [security] XSS through pma_fontsize cookie +- Other bug fixes: + - sf#4574 Blank/white page when JavaScript disabled + - sf#4577 Multi row actions cause full page reloads + - fix ReferenceError: targeturl is not defined + - fix Incorrect text/icon display in Tracking report + - sf#4404 Recordset return from procedure display nothing + - sf#4584 Edit dialog for routines is too long for + smaller displays + - sf#4586 Javascript error after moving a column + - sf#4576 Issue with long comments on table columns + - sf#4599 Input field unnecessarily selected on focus + - sf#4602 Exporting selected rows exports all rows of the query + - sf#4444 No insert statement produced in SQL export for + queries with alias + - sf#4603 Field disabled when internal relations used + +------------------------------------------------------------------- Old: ---- phpMyAdmin-4.2.11-all-languages.tar.bz2 New: ---- phpMyAdmin-4.2.12-all-languages.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ phpMyAdmin.spec ++++++ --- /var/tmp/diff_new_pack.1QcSpT/_old 2014-11-24 11:09:11.000000000 +0100 +++ /var/tmp/diff_new_pack.1QcSpT/_new 2014-11-24 11:09:11.000000000 +0100 @@ -34,7 +34,7 @@ Summary: Administration of MySQL over the web License: GPL-2.0+ Group: Productivity/Networking/Web/Frontends -Version: 4.2.11 +Version: 4.2.12 Release: 0 Url: http://www.phpMyAdmin.net Source0: http://sourceforge.net/projects/phpmyadmin/files/%{name}-%{version}-all-languages.tar.bz2 ++++++ phpMyAdmin-4.2.11-all-languages.tar.bz2 -> phpMyAdmin-4.2.12-all-languages.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/phpMyAdmin/phpMyAdmin-4.2.11-all-languages.tar.bz2 /work/SRC/openSUSE:Factory/.phpMyAdmin.new/phpMyAdmin-4.2.12-all-languages.tar.bz2 differ: char 11, line 1 -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
