Pullup ticket #3889 - requested by tron
databases/phpmyadmin: security update
Revisions pulled up:
- databases/phpmyadmin/Makefile 1.102-1.103
- databases/phpmyadmin/PLIST 1.28
- databases/phpmyadmin/distinfo 1.62-1.63
- databases/phpmyadmin/patches/patch-libraries_header_http.inc.php deleted
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Sun Jul 15 13:02:32 UTC 2012
Modified Files:
pkgsrc/databases/phpmyadmin: Makefile PLIST distinfo
Removed Files:
pkgsrc/databases/phpmyadmin/patches:
patch-libraries_header_http.inc.php
Log Message:
Update "phpmyadmin" package to version 3.5.2. Changes since 3.5.1:
- bug #3521416 [interface] JS error when editing index
- bug #3521313 [core] Call to undefined function __()
- bug #3521016 [edit] NOW() function incorrectly selected
- bug [GUI] Invalid HTML code on transformation_overview.php
- bug #3522930 [browse] Missing validation in Ajax mode
- bug Fix popup message on build SQL of import
- bug #3523499 [core] Make X-WebKit-CSP work better
- replace Highcharts with jqplot for query profiling, zoom search
- bug #3531584 [interface] No form validation in change password dialog
- bug #3531585 [interface] Broken password validation in copy user form
- bug #3531586 [unterface] Add user form prints JSON when user presses enter
- bug #3534121 [config] duplicate line in config.sample.inc.php
- bug #3534311 [interface] Grid editing incorrectly parses ENUM/SET values
- bug #3510196 [core] More clever URL rewriting with ForceSSL
To generate a diff of this commit:
cvs rdiff -u -r1.101 -r1.102 pkgsrc/databases/phpmyadmin/Makefile
cvs rdiff -u -r1.27 -r1.28 pkgsrc/databases/phpmyadmin/PLIST
cvs rdiff -u -r1.61 -r1.62 pkgsrc/databases/phpmyadmin/distinfo
cvs rdiff -u -r1.1 -r0 \
pkgsrc/databases/phpmyadmin/patches/patch-libraries_header_http.inc.php
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Wed Aug 8 07:17:00 UTC 2012
Modified Files:
pkgsrc/databases/phpmyadmin: Makefile distinfo
Log Message:
Update "phpmyadmin" package to version 3.5.2.1. Changes since 3.5.2:
- [security] Fixed local path disclosure vulnerability, see PMASA-2012-3
To generate a diff of this commit:
cvs rdiff -u -r1.102 -r1.103 pkgsrc/databases/phpmyadmin/Makefile
cvs rdiff -u -r1.62 -r1.63 pkgsrc/databases/phpmyadmin/distinfo
(spz)
diff -r1.101 -r1.101.2.1 pkgsrc/databases/phpmyadmin/Makefile| @@ -1,14 +1,14 @@ | @@ -1,14 +1,14 @@ | |||
| 1 | # $NetBSD: Makefile,v 1.101 2012/05/06 09:03:48 tron Exp $ | 1 | # $NetBSD: Makefile,v 1.101.2.1 2012/08/08 18:39:21 spz Exp $ | |
| 2 | 2 | |||
| 3 | DISTNAME= phpMyAdmin-${DIST_VERSION}-all-languages | 3 | DISTNAME= phpMyAdmin-${DIST_VERSION}-all-languages | |
| 4 | PKGNAME= phpmyadmin-${DIST_VERSION:S/-//} | 4 | PKGNAME= phpmyadmin-${DIST_VERSION:S/-//} | |
| 5 | CATEGORIES= databases www | 5 | CATEGORIES= databases www | |
| 6 | MASTER_SITES= ${MASTER_SITE_SOURCEFORGE:=phpmyadmin/} | 6 | MASTER_SITES= ${MASTER_SITE_SOURCEFORGE:=phpmyadmin/} | |
| 7 | EXTRACT_SUFX= .tar.xz | 7 | EXTRACT_SUFX= .tar.xz | |
| 8 | 8 | |||
| 9 | OWNER= tron@NetBSD.org | 9 | OWNER= tron@NetBSD.org | |
| 10 | HOMEPAGE= http://www.phpmyadmin.net/ | 10 | HOMEPAGE= http://www.phpmyadmin.net/ | |
| 11 | COMMENT= Set of PHP-scripts to adminstrate MySQL over the WWW | 11 | COMMENT= Set of PHP-scripts to adminstrate MySQL over the WWW | |
| 12 | LICENSE= gnu-gpl-v2 | 12 | LICENSE= gnu-gpl-v2 | |
| 13 | 13 | |||
| 14 | DEPENDS+= ${PHP_PKG_PREFIX}-bz2>=5.2.0:../../archivers/php-bz2 | 14 | DEPENDS+= ${PHP_PKG_PREFIX}-bz2>=5.2.0:../../archivers/php-bz2 | |
| @@ -18,27 +18,27 @@ DEPENDS+= ${PHP_PKG_PREFIX}-gettext>=5.2 | @@ -18,27 +18,27 @@ DEPENDS+= ${PHP_PKG_PREFIX}-gettext>=5.2 | |||
| 18 | DEPENDS+= ${PHP_PKG_PREFIX}-mysql{,i}>=5.2.0:../../databases/php-mysql | 18 | DEPENDS+= ${PHP_PKG_PREFIX}-mysql{,i}>=5.2.0:../../databases/php-mysql | |
| 19 | DEPENDS+= ${PHP_PKG_PREFIX}-gd>=5.2.0:../../graphics/php-gd | 19 | DEPENDS+= ${PHP_PKG_PREFIX}-gd>=5.2.0:../../graphics/php-gd | |
| 20 | DEPENDS+= ${PHP_PKG_PREFIX}-mcrypt>=5.2.0:../../security/php-mcrypt | 20 | DEPENDS+= ${PHP_PKG_PREFIX}-mcrypt>=5.2.0:../../security/php-mcrypt | |
| 21 | DEPENDS+= ${PHP_PKG_PREFIX}-json>=5.2.0:../../textproc/php-json | 21 | DEPENDS+= ${PHP_PKG_PREFIX}-json>=5.2.0:../../textproc/php-json | |
| 22 | 22 | |||
| 23 | PKG_DESTDIR_SUPPORT= user-destdir | 23 | PKG_DESTDIR_SUPPORT= user-destdir | |
| 24 | 24 | |||
| 25 | FILES_SUBST+= CONF_INC_PHP=${CONF_INC_PHP:Q} PMCONFFILE=${PMCONFFILE:Q} | 25 | FILES_SUBST+= CONF_INC_PHP=${CONF_INC_PHP:Q} PMCONFFILE=${PMCONFFILE:Q} | |
| 26 | PLIST_SUBST+= DIST_VERSION=${DIST_VERSION:Q} | 26 | PLIST_SUBST+= DIST_VERSION=${DIST_VERSION:Q} | |
| 27 | MESSAGE_SUBST+= CONF_INC_PHP=${CONF_INC_PHP} PMCONFFILE=${PMCONFFILE:Q} \ | 27 | MESSAGE_SUBST+= CONF_INC_PHP=${CONF_INC_PHP} PMCONFFILE=${PMCONFFILE:Q} \ | |
| 28 | EXDIR=${EXDIR:Q} | 28 | EXDIR=${EXDIR:Q} | |
| 29 | 29 | |||
| 30 | CONF_INC_PHP= ${PREFIX}/share/phpmyadmin/config.inc.php | 30 | CONF_INC_PHP= ${PREFIX}/share/phpmyadmin/config.inc.php | |
| 31 | DIST_VERSION= 3.5.1 | 31 | DIST_VERSION= 3.5.2.1 | |
| 32 | DOC_FILES= ChangeLog Documentation.txt LICENSE README \ | 32 | DOC_FILES= ChangeLog Documentation.txt LICENSE README \ | |
| 33 | RELEASE-DATE-${DIST_VERSION} | 33 | RELEASE-DATE-${DIST_VERSION} | |
| 34 | 34 | |||
| 35 | APACHE_USER?= www | 35 | APACHE_USER?= www | |
| 36 | APACHE_GROUP?= www | 36 | APACHE_GROUP?= www | |
| 37 | PKG_GROUPS= ${APACHE_GROUP} | 37 | PKG_GROUPS= ${APACHE_GROUP} | |
| 38 | PKG_USERS= ${APACHE_USER}:${APACHE_GROUP} | 38 | PKG_USERS= ${APACHE_USER}:${APACHE_GROUP} | |
| 39 | BUILD_DEFS+= APACHE_USER APACHE_GROUP | 39 | BUILD_DEFS+= APACHE_USER APACHE_GROUP | |
| 40 | 40 | |||
| 41 | PKG_USERS_VARS+= APACHE_USER | 41 | PKG_USERS_VARS+= APACHE_USER | |
| 42 | PKG_GROUPS_VARS+= APACHE_GROUP | 42 | PKG_GROUPS_VARS+= APACHE_GROUP | |
| 43 | 43 | |||
| 44 | EXDIR= ${PREFIX}/share/examples/phpmyadmin | 44 | EXDIR= ${PREFIX}/share/examples/phpmyadmin |
| @@ -1,19 +1,19 @@ | @@ -1,19 +1,19 @@ | |||
| 1 | @comment $NetBSD: PLIST,v 1.27 2012/05/06 09:01:10 tron Exp $ | 1 | @comment $NetBSD: PLIST,v 1.27.2.1 2012/08/08 18:39:21 spz Exp $ | |
| 2 | share/doc/phpmyadmin/ChangeLog | 2 | share/doc/phpmyadmin/ChangeLog | |
| 3 | share/doc/phpmyadmin/Documentation.txt | 3 | share/doc/phpmyadmin/Documentation.txt | |
| 4 | share/doc/phpmyadmin/LICENSE | 4 | share/doc/phpmyadmin/LICENSE | |
| 5 | share/doc/phpmyadmin/README | 5 | share/doc/phpmyadmin/README | |
| 6 | share/doc/phpmyadmin/RELEASE-DATE-3.5.1 | 6 | share/doc/phpmyadmin/RELEASE-DATE-${DIST_VERSION} | |
| 7 | share/examples/phpmyadmin/apache.conf | 7 | share/examples/phpmyadmin/apache.conf | |
| 8 | share/examples/phpmyadmin/config.inc.php | 8 | share/examples/phpmyadmin/config.inc.php | |
| 9 | share/phpmyadmin/Documentation.html | 9 | share/phpmyadmin/Documentation.html | |
| 10 | share/phpmyadmin/Documentation.txt | 10 | share/phpmyadmin/Documentation.txt | |
| 11 | share/phpmyadmin/browse_foreigners.php | 11 | share/phpmyadmin/browse_foreigners.php | |
| 12 | share/phpmyadmin/bs_disp_as_mime_type.php | 12 | share/phpmyadmin/bs_disp_as_mime_type.php | |
| 13 | share/phpmyadmin/bs_play_media.php | 13 | share/phpmyadmin/bs_play_media.php | |
| 14 | share/phpmyadmin/changelog.php | 14 | share/phpmyadmin/changelog.php | |
| 15 | share/phpmyadmin/chk_rel.php | 15 | share/phpmyadmin/chk_rel.php | |
| 16 | share/phpmyadmin/db_create.php | 16 | share/phpmyadmin/db_create.php | |
| 17 | share/phpmyadmin/db_datadict.php | 17 | share/phpmyadmin/db_datadict.php | |
| 18 | share/phpmyadmin/db_events.php | 18 | share/phpmyadmin/db_events.php | |
| 19 | share/phpmyadmin/db_export.php | 19 | share/phpmyadmin/db_export.php | |
| @@ -151,27 +151,27 @@ share/phpmyadmin/js/rte/triggers.js | @@ -151,27 +151,27 @@ share/phpmyadmin/js/rte/triggers.js | |||
| 151 | share/phpmyadmin/js/server_plugins.js | 151 | share/phpmyadmin/js/server_plugins.js | |
| 152 | share/phpmyadmin/js/server_privileges.js | 152 | share/phpmyadmin/js/server_privileges.js | |
| 153 | share/phpmyadmin/js/server_status.js | 153 | share/phpmyadmin/js/server_status.js | |
| 154 | share/phpmyadmin/js/server_status_monitor.js | 154 | share/phpmyadmin/js/server_status_monitor.js | |
| 155 | share/phpmyadmin/js/server_synchronize.js | 155 | share/phpmyadmin/js/server_synchronize.js | |
| 156 | share/phpmyadmin/js/server_variables.js | 156 | share/phpmyadmin/js/server_variables.js | |
| 157 | share/phpmyadmin/js/sql.js | 157 | share/phpmyadmin/js/sql.js | |
| 158 | share/phpmyadmin/js/tbl_change.js | 158 | share/phpmyadmin/js/tbl_change.js | |
| 159 | share/phpmyadmin/js/tbl_chart.js | 159 | share/phpmyadmin/js/tbl_chart.js | |
| 160 | share/phpmyadmin/js/tbl_gis_visualization.js | 160 | share/phpmyadmin/js/tbl_gis_visualization.js | |
| 161 | share/phpmyadmin/js/tbl_relation.js | 161 | share/phpmyadmin/js/tbl_relation.js | |
| 162 | share/phpmyadmin/js/tbl_select.js | 162 | share/phpmyadmin/js/tbl_select.js | |
| 163 | share/phpmyadmin/js/tbl_structure.js | 163 | share/phpmyadmin/js/tbl_structure.js | |
| 164 | share/phpmyadmin/js/tbl_zoom_plot.js | 164 | share/phpmyadmin/js/tbl_zoom_plot_jqplot.js | |
| 165 | share/phpmyadmin/js/update-location.js | 165 | share/phpmyadmin/js/update-location.js | |
| 166 | share/phpmyadmin/libraries/Advisor.class.php | 166 | share/phpmyadmin/libraries/Advisor.class.php | |
| 167 | share/phpmyadmin/libraries/Config.class.php | 167 | share/phpmyadmin/libraries/Config.class.php | |
| 168 | share/phpmyadmin/libraries/Error.class.php | 168 | share/phpmyadmin/libraries/Error.class.php | |
| 169 | share/phpmyadmin/libraries/Error_Handler.class.php | 169 | share/phpmyadmin/libraries/Error_Handler.class.php | |
| 170 | share/phpmyadmin/libraries/File.class.php | 170 | share/phpmyadmin/libraries/File.class.php | |
| 171 | share/phpmyadmin/libraries/Index.class.php | 171 | share/phpmyadmin/libraries/Index.class.php | |
| 172 | share/phpmyadmin/libraries/List.class.php | 172 | share/phpmyadmin/libraries/List.class.php | |
| 173 | share/phpmyadmin/libraries/List_Database.class.php | 173 | share/phpmyadmin/libraries/List_Database.class.php | |
| 174 | share/phpmyadmin/libraries/Message.class.php | 174 | share/phpmyadmin/libraries/Message.class.php | |
| 175 | share/phpmyadmin/libraries/PDF.class.php | 175 | share/phpmyadmin/libraries/PDF.class.php | |
| 176 | share/phpmyadmin/libraries/PMA.php | 176 | share/phpmyadmin/libraries/PMA.php | |
| 177 | share/phpmyadmin/libraries/Partition.class.php | 177 | share/phpmyadmin/libraries/Partition.class.php |
| @@ -1,6 +1,5 @@ | @@ -1,6 +1,5 @@ | |||
| 1 | $NetBSD: distinfo,v 1.61 2012/05/06 09:01:10 tron Exp $ | 1 | $NetBSD: distinfo,v 1.61.2.1 2012/08/08 18:39:21 spz Exp $ | |
| 2 | 2 | |||
| 3 | SHA1 (phpMyAdmin-3.5.1-all-languages.tar.xz) = f61c477e0ed394a10c10c3c1f8e73d1449432b1b | 3 | SHA1 (phpMyAdmin-3.5.2.1-all-languages.tar.xz) = 353f6749c048c8b5199c2d81b828bec4fddbb0b6 | |
| 4 | RMD160 (phpMyAdmin-3.5.1-all-languages.tar.xz) = a2ebd6ca3e70a5c0f8b4cefa03e508ee0c4fd910 | 4 | RMD160 (phpMyAdmin-3.5.2.1-all-languages.tar.xz) = 3200d260f8a6ea028d9cdf4679af398bc8939896 | |
| 5 | Size (phpMyAdmin-3.5.1-all-languages.tar.xz) = 3590204 bytes | 5 | Size (phpMyAdmin-3.5.2.1-all-languages.tar.xz) = 3654120 bytes | |
| 6 | SHA1 (patch-libraries_header_http.inc.php) = 523b2d961d1591291c85b9e381a20f59ce332aa1 |