Hello community, here is the log from the commit of package phpMyAdmin for openSUSE:Factory checked in at 2016-03-02 14:21:38 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/phpMyAdmin (Old) and /work/SRC/openSUSE:Factory/.phpMyAdmin.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "phpMyAdmin" Changes: -------- --- /work/SRC/openSUSE:Factory/phpMyAdmin/phpMyAdmin.changes 2016-02-26 00:41:05.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.phpMyAdmin.new/phpMyAdmin.changes 2016-03-02 14:21:42.000000000 +0100 @@ -1,0 +2,17 @@ +Tue Mar 1 18:04:41 UTC 2016 - astie...@suse.com + +- phpMyAdmin 4.5.5.1: + The following vulnerabilities were fixed: + * CVE-2016-2559: XSS vulnerability in SQL parser (PMASA-2016-10 boo#968940) + * CVE-2016-2560: Multiple XSS vulnerabilities (PMASA-2016-11 boo#968938) + * CVE-2016-2561: Multiple XSS vulnerabilities (PMASA-2016-12 boo#968941) + * CVE-2016-2562: Vulnerability allowing man-in-the-middle attack on API call to GitHub (PMASA-2016-13 boo#968928) + The following upstream bugs were fixed: + * CREATE UNIQUE INDEX index type is not recognized by parser. + * Row count wrong when grouping joined tables. + * Column definition with default value and comment in CREATE TABLE expoerted faulty. + * New statement but no delimiter and unexpected token with REPLACE. + * Fixed incorrect usage of SQL parser context in SQL export + * Fixed inclusion of gettext library from SQL parser + +------------------------------------------------------------------- Old: ---- phpMyAdmin-4.5.5-all-languages.tar.xz phpMyAdmin-4.5.5-all-languages.tar.xz.asc New: ---- phpMyAdmin-4.5.5.1-all-languages.tar.xz phpMyAdmin-4.5.5.1-all-languages.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ phpMyAdmin.spec ++++++ --- /var/tmp/diff_new_pack.o3rD04/_old 2016-03-02 14:21:43.000000000 +0100 +++ /var/tmp/diff_new_pack.o3rD04/_new 2016-03-02 14:21:43.000000000 +0100 @@ -29,7 +29,7 @@ %define ap_grp nogroup %endif Name: phpMyAdmin -Version: 4.5.5 +Version: 4.5.5.1 Release: 0 Summary: Administration of MySQL over the web License: GPL-2.0+ ++++++ phpMyAdmin-4.5.5-all-languages.tar.xz -> phpMyAdmin-4.5.5.1-all-languages.tar.xz ++++++ ++++ 77562 lines of diff (skipped)