Received: from mail.netbsd.org (mail.netbsd.org [149.20.53.66]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client CN "mail.NetBSD.org", Issuer "Postmaster NetBSD.org" (verified OK)) by mollari.NetBSD.org (Postfix) with ESMTPS id 4CFBD70A58 for ; Mon, 29 Jul 2013 20:01:05 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 605) id B0F6814A144; Mon, 29 Jul 2013 20:01:04 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id C76C314A142 for ; Mon, 29 Jul 2013 20:01:02 +0000 (UTC) X-Virus-Scanned: amavisd-new at NetBSD.org Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.NetBSD.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id YDSZzZkU8hRe for ; Mon, 29 Jul 2013 20:01:02 +0000 (UTC) Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd]) by mail.netbsd.org (Postfix) with ESMTP id 39D2514A133 for ; Mon, 29 Jul 2013 20:01:02 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id 37D9196; Mon, 29 Jul 2013 20:01:02 +0000 (UTC) Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="US-ASCII" MIME-Version: 1.0 Date: Mon, 29 Jul 2013 20:01:02 +0000 From: "Matthias Scheler" Subject: CVS commit: pkgsrc/databases/phpmyadmin To: pkgsrc-changes@NetBSD.org Reply-To: tron@netbsd.org X-Mailer: log_accum Message-Id: <20130729200102.37D9196@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: bulk Module Name: pkgsrc Committed By: tron Date: Mon Jul 29 20:01:02 UTC 2013 Modified Files: pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo Log Message: Update "phpmyadmin" package to version 3.5.8.2. Changes since 3.5.8.1: - [security] Fix self-XSS in "Showing rows", see PMASA-2013-8 - [security] Fix self-XSS in Display chart, see PMASA-2013-9 - [security] Fix stored XSS in Server status monitor, see PMASA-2013-9 - [security] Fix stored XSS in navigation panel logo link, see PMASA-2013-9 - [security] Fix self-XSS in setup, trusted proxies validation, see PMASA-2013-9 + [security] JSON content type header for version_check.php, see PMASA-2013-9 + [security] Backport fix for jQuery issue #9521 from jQuery 1.6.3, see PMASA-2013-9 + [security] Fix full path disclosure, see PMASA-2013-12 + [security] Fix control user SQL injection in pmd_pdf.php, see PMASA-2013-15 + [security] Fix control user SQL injection in schema_export.php, see PMASA-2013-15 - [security] Fix self-XSS in schema export, see PMASA-2013-14 - [security] Fix unencoded json object, see PMASA-2013-11 To generate a diff of this commit: cvs rdiff -u -r1.116 -r1.117 pkgsrc/databases/phpmyadmin/Makefile cvs rdiff -u -r1.32 -r1.33 pkgsrc/databases/phpmyadmin/PLIST cvs rdiff -u -r1.73 -r1.74 pkgsrc/databases/phpmyadmin/distinfo Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.