Received: from mail.netbsd.org (mail.netbsd.org [204.152.190.11]) by www.NetBSD.org (Postfix) with ESMTP id 5B57363BA2A for ; Tue, 26 Jan 2010 12:04:39 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 0) id EE08F63B1B1; Tue, 26 Jan 2010 12:04:38 +0000 (UTC) Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd]) by mail.netbsd.org (Postfix) with ESMTP id EF8FC63B116 for ; Tue, 26 Jan 2010 12:04:37 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id CF77C175DD; Tue, 26 Jan 2010 12:04:37 +0000 (UTC) MIME-Version: 1.0 Content-Disposition: inline Content-Transfer-Encoding: binary Content-Type: text/plain Date: Tue, 26 Jan 2010 12:04:37 +0000 From: Matthias Scheler Subject: CVS commit: pkgsrc/databases/phpmyadmin To: pkgsrc-changes@NetBSD.org Reply-To: tron@netbsd.org X-Mailer: log_accum Message-Id: <20100126120437.CF77C175DD@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: list Module Name: pkgsrc Committed By: tron Date: Tue Jan 26 12:04:37 UTC 2010 Modified Files: pkgsrc/databases/phpmyadmin: Makefile distinfo Log Message: Update "phpmyadmin" package to version 2.11.10. Changes since version 2.11.9.6: - [core] safer handling of temporary files with open_basedir (thanks to Thijs Kinkhorst) - [core] do not automatically set and create TempDir, it might lead to security issue (thanks to Thijs Kinkhorst) - [setup] avoid usage of (un)serialize, what might be unsafe in some cases This fixes the security vulnerabilities reported in PMASA-2010-1, PMASA-2010-2 and PMASA-2010-3. To generate a diff of this commit: cvs rdiff -u -r1.80 -r1.81 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.42 -r1.43 pkgsrc/databases/phpmyadmin/distinfo Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.