Tue Jul 29 18:59:51 2008 UTC ()
Update "phpmyadmin" package to version 2.11.8.1. Changes since 2.11.7.1:
- patch #1987593 [interface] Table list pagination in navi
- bug #1989081 [profiling] Profiling causes query to be executed again
  (really causes a problem in case of INSERT/UPDATE)
- bug #1990342 [import] SQL file import very slow on Windows
- bug [XHTML] problem with tabindex and radio fields
- bug #1971221 [interface] tabindex not set correctly
- bug [views] VIEW name created via the GUI was not protected
  with backquotes
- bug #1989813 [interface] Deleting multiple views (space in name)
- bug #1992628 [parser] SQL parser removes essential space
- bug #1989281 [export] CSV for MS Excel incorrect escaping of
  double quotes
- bug #1959855 [interface] Font size option problem when no
  config file
- bug #1982489 [relation] Relationship view should check for changes
- bug [history] Do not save too big queries in history
- [security] Do not show version info on login screen
- bug #2018595 [import] Potential data loss on import resubmit
- patch #2020630 [export] Safari and timedate
- bug #2022182 [import, export] Import/Export fails because of
  Mac files
- [security] protection against cross-frame scripting and
  new directive AllowThirdPartyFraming
- [security] possible XSS during setup
- [interface] revert language changing problem introduced
   with 2.11.7.1
- small fix for notice about "lang"

This update fixes the security vulnerability reported in PMASA-2008-6.


(tron)
diff -r1.73 -r1.74 pkgsrc/databases/phpmyadmin/Makefile
diff -r1.36 -r1.37 pkgsrc/databases/phpmyadmin/distinfo
cvs diff -r1.73 -r1.74 pkgsrc/databases/phpmyadmin/Makefile (expand / switch to unified diff)

--- pkgsrc/databases/phpmyadmin/Makefile 2008/07/17 15:55:16 1.73
+++ pkgsrc/databases/phpmyadmin/Makefile 2008/07/29 18:59:51 1.74
@@ -1,38 +1,38 @@ @@ -1,38 +1,38 @@
1# $NetBSD: Makefile,v 1.73 2008/07/17 15:55:16 tron Exp $ 1# $NetBSD: Makefile,v 1.74 2008/07/29 18:59:51 tron Exp $
2 2
3DISTNAME= phpMyAdmin-${DIST_VERSION}-all-languages 3DISTNAME= phpMyAdmin-${DIST_VERSION}-all-languages
4PKGNAME= phpmyadmin-${DIST_VERSION:S/-//} 4PKGNAME= phpmyadmin-${DIST_VERSION:S/-//}
5CATEGORIES= databases www 5CATEGORIES= databases www
6MASTER_SITES= ${MASTER_SITE_SOURCEFORGE:=phpmyadmin/} 6MASTER_SITES= ${MASTER_SITE_SOURCEFORGE:=phpmyadmin/}
7EXTRACT_SUFX= .tar.bz2 7EXTRACT_SUFX= .tar.bz2
8 8
9OWNER= tron@NetBSD.org 9OWNER= tron@NetBSD.org
10HOMEPAGE= http://www.phpmyadmin.net/ 10HOMEPAGE= http://www.phpmyadmin.net/
11COMMENT= Set of PHP-scripts to adminstrate MySQL over the WWW 11COMMENT= Set of PHP-scripts to adminstrate MySQL over the WWW
12 12
13DEPENDS+= ${PHP_PKG_PREFIX}-mbstring>=4.3.3:../../misc/php-mbstring 13DEPENDS+= ${PHP_PKG_PREFIX}-mbstring>=4.3.3:../../misc/php-mbstring
14DEPENDS+= ${PHP_PKG_PREFIX}-mysql{,i}>=4.3.3:../../databases/php-mysql 14DEPENDS+= ${PHP_PKG_PREFIX}-mysql{,i}>=4.3.3:../../databases/php-mysql
15 15
16PKG_DESTDIR_SUPPORT= user-destdir 16PKG_DESTDIR_SUPPORT= user-destdir
17 17
18FILES_SUBST+= CONF_INC_PHP=${CONF_INC_PHP:Q} PMCONFFILE=${PMCONFFILE:Q} 18FILES_SUBST+= CONF_INC_PHP=${CONF_INC_PHP:Q} PMCONFFILE=${PMCONFFILE:Q}
19PLIST_SUBST+= DIST_VERSION=${DIST_VERSION:Q} 19PLIST_SUBST+= DIST_VERSION=${DIST_VERSION:Q}
20MESSAGE_SUBST+= CONF_INC_PHP=${CONF_INC_PHP} PMCONFFILE=${PMCONFFILE:Q} \ 20MESSAGE_SUBST+= CONF_INC_PHP=${CONF_INC_PHP} PMCONFFILE=${PMCONFFILE:Q} \
21 EXDIR=${EXDIR:Q} 21 EXDIR=${EXDIR:Q}
22USE_TOOLS+= perl:run 22USE_TOOLS+= perl:run
23 23
24CONF_INC_PHP= ${PREFIX}/share/phpmyadmin/config.inc.php 24CONF_INC_PHP= ${PREFIX}/share/phpmyadmin/config.inc.php
25DIST_VERSION= 2.11.7.1 25DIST_VERSION= 2.11.8.1
26DOC_FILES= CREDITS ChangeLog \ 26DOC_FILES= CREDITS ChangeLog \
27 Documentation.txt INSTALL LICENSE README \ 27 Documentation.txt INSTALL LICENSE README \
28 RELEASE-DATE-${DIST_VERSION} TODO 28 RELEASE-DATE-${DIST_VERSION} TODO
29 29
30APACHE_USER?= www 30APACHE_USER?= www
31APACHE_GROUP?= www 31APACHE_GROUP?= www
32PKG_GROUPS= ${APACHE_GROUP} 32PKG_GROUPS= ${APACHE_GROUP}
33PKG_USERS= ${APACHE_USER}:${APACHE_GROUP} 33PKG_USERS= ${APACHE_USER}:${APACHE_GROUP}
34BUILD_DEFS+= APACHE_USER APACHE_GROUP 34BUILD_DEFS+= APACHE_USER APACHE_GROUP
35 35
36PKG_USERS_VARS+= APACHE_USER 36PKG_USERS_VARS+= APACHE_USER
37PKG_GROUPS_VARS+= APACHE_GROUP 37PKG_GROUPS_VARS+= APACHE_GROUP
38 38
cvs diff -r1.36 -r1.37 pkgsrc/databases/phpmyadmin/distinfo (expand / switch to unified diff)

--- pkgsrc/databases/phpmyadmin/distinfo 2008/07/17 15:55:16 1.36
+++ pkgsrc/databases/phpmyadmin/distinfo 2008/07/29 18:59:51 1.37
@@ -1,5 +1,5 @@ @@ -1,5 +1,5 @@
1$NetBSD: distinfo,v 1.36 2008/07/17 15:55:16 tron Exp $ 1$NetBSD: distinfo,v 1.37 2008/07/29 18:59:51 tron Exp $
2 2
3SHA1 (phpMyAdmin-2.11.7.1-all-languages.tar.bz2) = 1e5b4e6b1127b41ebbd986b030b4dda00fe90edc 3SHA1 (phpMyAdmin-2.11.8.1-all-languages.tar.bz2) = 5a2134c296b2a0a72c8aaee71a19060cfcde1ec9
4RMD160 (phpMyAdmin-2.11.7.1-all-languages.tar.bz2) = 2e9adb438c9212ae4e1be44ed9d10f8b981d8b6e 4RMD160 (phpMyAdmin-2.11.8.1-all-languages.tar.bz2) = b348cad6216fdd8c302f03774f248fbe0a031a97
5Size (phpMyAdmin-2.11.7.1-all-languages.tar.bz2) = 3098663 bytes 5Size (phpMyAdmin-2.11.8.1-all-languages.tar.bz2) = 3110388 bytes