Git February 2016

git@phpmyadmin.net

23 participants
363 discussions

[phpmyadmin/phpmyadmin] 856330: Translated using Weblate (Portuguese (Brazil))
by Weblate 29 Feb '16

29 Feb '16

Branch: refs/heads/QA_4_6 Home: https://github.com/phpmyadmin/phpmyadmin Commit: 8563303004df2b972d01435d6d4db349498333ed https://github.com/phpmyadmin/phpmyadmin/commit/8563303004df2b972d01435d6d4… Author: Kenzo Martins Matuzawa <kenzo.matuzawa(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M po/pt_BR.po Log Message: ----------- Translated using Weblate (Portuguese (Brazil)) Currently translated at 92.2% (2963 of 3211 strings) [CI skip] Commit: d280e53aaa5a4691f8d82d5550aeeec1a28c1ad1 https://github.com/phpmyadmin/phpmyadmin/commit/d280e53aaa5a4691f8d82d5550a… Author: Weblate <noreply(a)weblate.org> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M ChangeLog M README M db_central_columns.php M doc/conf.py M file_echo.php M js/functions.js M js/normalization.js M libraries/Config.php M libraries/controllers/table/TableSearchController.php M libraries/server_privileges.lib.php M libraries/sql-parser/src/Utils/Error.php M libraries/tcpdf/include/tcpdf_static.php M normalization.php M templates/database/structure/sortable_header.phtml M templates/table/search/input_box.phtml M templates/table/search/rows_zoom.phtml M test/classes/ConfigTest.php Log Message: ----------- Merge remote-tracking branch 'origin/QA_4_6' into QA_4_6 Compare: https://github.com/phpmyadmin/phpmyadmin/compare/73fd0dc2a8f5...d280e53aaa5a

1 0

[phpmyadmin/phpmyadmin] 3a6a9a: Escape query when displaying
by Isaac Bennetch 29 Feb '16

29 Feb '16

Branch: refs/heads/QA_4_6 Home: https://github.com/phpmyadmin/phpmyadmin Commit: 3a6a9a807d99371ee126635e1a505fc1fe0df32c https://github.com/phpmyadmin/phpmyadmin/commit/3a6a9a807d99371ee126635e1a5… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/sql-parser/src/Utils/Error.php Log Message: ----------- Escape query when displaying Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 7877a9c0084bf8ae15cbd8d2729b126271f682cc https://github.com/phpmyadmin/phpmyadmin/commit/7877a9c0084bf8ae15cbd8d2729… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M js/functions.js Log Message: ----------- Escape SQL query for inline editing Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 16a6a02fca663264de9b034f4acad9c92295586f https://github.com/phpmyadmin/phpmyadmin/commit/16a6a02fca663264de9b034f4ac… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/tcpdf/include/tcpdf_static.php Log Message: ----------- Avoid skipping the SSL certificate check in TCPDF This code is never used in phpMyAdmin, but we fix it just to avoid potential security reports. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: e42b7e3aedd29dd0f7a48575f20bfc5aca0ff976 https://github.com/phpmyadmin/phpmyadmin/commit/e42b7e3aedd29dd0f7a48575f20… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/Config.class.php M test/classes/PMA_Config_test.php Log Message: ----------- Bring back SSL certificate validation Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 983faa94f161df3623ecd371d3696a1b3f91c15f https://github.com/phpmyadmin/phpmyadmin/commit/983faa94f161df3623ecd371d36… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M templates/database/structure/sortable_header.phtml Log Message: ----------- Fix XSS in database structure page Forward ported commit 90df124797175688a63be0d0a311210e92f09895 Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 38fa1191049ac0c626a6684eea52068dfbbb5078 https://github.com/phpmyadmin/phpmyadmin/commit/38fa1191049ac0c626a6684eea5… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/Config.class.php Log Message: ----------- Urlencode hostname This can come from the HTTP header, so we need to be sure to sanitize it. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 746240bd13b62b5956fc34389cfbdc09e1e67775 https://github.com/phpmyadmin/phpmyadmin/commit/746240bd13b62b5956fc34389cf… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M normalization.php Log Message: ----------- Fix XSS in normalization Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: e65f375918a1eef5b1289d890ced645d3925464a https://github.com/phpmyadmin/phpmyadmin/commit/e65f375918a1eef5b1289d890ce… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M ChangeLog M libraries/plugins/export/ExportSql.class.php Log Message: ----------- Merge branch 'MAINT_4_5_5' into MAINT_4_5_5-security Commit: c842a0de9288033d25404d1d6eb22dd83033675f https://github.com/phpmyadmin/phpmyadmin/commit/c842a0de9288033d25404d1d6eb… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M file_echo.php Log Message: ----------- Use correct headers for json data It was previously not marked as such what could potentially lead to browsers doing some autodetection. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: b3d36dc836df31a7d1b1c4f61f578a9b42bd1f98 https://github.com/phpmyadmin/phpmyadmin/commit/b3d36dc836df31a7d1b1c4f61f5… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/Config.class.php M test/classes/PMA_Config_test.php Log Message: ----------- Merge pull request #23 from phpmyadmin/ssl-cert Bring back SSL certificate validation Commit: f33a42f1da9db943a67bda7d29f7dd91957a8e7e https://github.com/phpmyadmin/phpmyadmin/commit/f33a42f1da9db943a67bda7d29f… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M js/functions.js M js/normalization.js Log Message: ----------- Fix XSS in normalization.js Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 37c34d089aa19f30d11203bb0c7f85b486424372 https://github.com/phpmyadmin/phpmyadmin/commit/37c34d089aa19f30d11203bb0c7… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M js/normalization.js Log Message: ----------- Escape selectors Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 9bce7dafaf746559c617f674e27b9c0f75ae97a2 https://github.com/phpmyadmin/phpmyadmin/commit/9bce7dafaf746559c617f674e27… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M ChangeLog Log Message: ----------- Add changes for security issues Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: bcd4ce8cba1272fca52f2331c08f2e3ac19cbbef https://github.com/phpmyadmin/phpmyadmin/commit/bcd4ce8cba1272fca52f2331c08… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-27 (Sat, 27 Feb 2016) Changed paths: M js/normalization.js Log Message: ----------- Fix XSS in normalization.js Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: ab1283e8366c97a155d4e9ae58628a248458ea32 https://github.com/phpmyadmin/phpmyadmin/commit/ab1283e8366c97a155d4e9ae586… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M libraries/server_privileges.lib.php Log Message: ----------- Fix XSS in User accounts page Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: cc55f44a4a90147a007dee1aefa1cb529e23798b https://github.com/phpmyadmin/phpmyadmin/commit/cc55f44a4a90147a007dee1aefa… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M db_central_columns.php Log Message: ----------- Fix XSS in Central columns page Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 4650ad7fbde189678d180b8f294af3591f50b829 https://github.com/phpmyadmin/phpmyadmin/commit/4650ad7fbde189678d180b8f294… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M templates/table/search/input_box.phtml M templates/table/search/rows_zoom.phtml Log Message: ----------- A better way of escaping Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 41c4e0214c286f28830cca54423b5db57e7c0ce4 https://github.com/phpmyadmin/phpmyadmin/commit/41c4e0214c286f28830cca54423… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M libraries/controllers/TableSearchController.class.php Log Message: ----------- Fix XSS in zoom search Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 2925d6468b60363669a08cfd8e689c1a05191744 https://github.com/phpmyadmin/phpmyadmin/commit/2925d6468b60363669a08cfd8e6… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M templates/table/search/input_box.phtml M templates/table/search/rows_zoom.phtml Log Message: ----------- Merge pull request #29 from phpmyadmin/escape A better way of escaping Commit: a29f154f37400264e8b7fbbbf4cf3bf1d046f127 https://github.com/phpmyadmin/phpmyadmin/commit/a29f154f37400264e8b7fbbbf4c… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M ChangeLog M db_central_columns.php M file_echo.php M js/functions.js M js/normalization.js M libraries/Config.php M libraries/controllers/table/TableSearchController.php M libraries/server_privileges.lib.php M libraries/sql-parser/src/Utils/Error.php M libraries/tcpdf/include/tcpdf_static.php M normalization.php M templates/database/structure/sortable_header.phtml M templates/table/search/input_box.phtml M templates/table/search/rows_zoom.phtml M test/classes/ConfigTest.php Log Message: ----------- Merge branch 'MAINT_4_5_5-security' into QA_4_6-security Commit: ed17d3c450fb9c9d399cadd9415c14baaaf20117 https://github.com/phpmyadmin/phpmyadmin/commit/ed17d3c450fb9c9d399cadd9415… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M ChangeLog M libraries/sql-parser/autoload.php Log Message: ----------- Merge branch 'QA_4_6' into QA_4_6-security Commit: 73fd0dc2a8f5471c717a887aae22bde97bc5498f https://github.com/phpmyadmin/phpmyadmin/commit/73fd0dc2a8f5471c717a887aae2… Author: Isaac Bennetch <bennetch(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M README M doc/conf.py M libraries/Config.php Log Message: ----------- 4.6.0-rc1 pre-release Signed-off-by: Isaac Bennetch <bennetch(a)gmail.com> Compare: https://github.com/phpmyadmin/phpmyadmin/compare/2ebabd11fd37...73fd0dc2a8f5

1 0

[phpmyadmin/phpmyadmin] 3a6a9a: Escape query when displaying
by Isaac Bennetch 29 Feb '16

29 Feb '16

Branch: refs/heads/MAINT_4_5_5 Home: https://github.com/phpmyadmin/phpmyadmin Commit: 3a6a9a807d99371ee126635e1a505fc1fe0df32c https://github.com/phpmyadmin/phpmyadmin/commit/3a6a9a807d99371ee126635e1a5… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/sql-parser/src/Utils/Error.php Log Message: ----------- Escape query when displaying Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 7877a9c0084bf8ae15cbd8d2729b126271f682cc https://github.com/phpmyadmin/phpmyadmin/commit/7877a9c0084bf8ae15cbd8d2729… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M js/functions.js Log Message: ----------- Escape SQL query for inline editing Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 16a6a02fca663264de9b034f4acad9c92295586f https://github.com/phpmyadmin/phpmyadmin/commit/16a6a02fca663264de9b034f4ac… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/tcpdf/include/tcpdf_static.php Log Message: ----------- Avoid skipping the SSL certificate check in TCPDF This code is never used in phpMyAdmin, but we fix it just to avoid potential security reports. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: e42b7e3aedd29dd0f7a48575f20bfc5aca0ff976 https://github.com/phpmyadmin/phpmyadmin/commit/e42b7e3aedd29dd0f7a48575f20… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/Config.class.php M test/classes/PMA_Config_test.php Log Message: ----------- Bring back SSL certificate validation Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 983faa94f161df3623ecd371d3696a1b3f91c15f https://github.com/phpmyadmin/phpmyadmin/commit/983faa94f161df3623ecd371d36… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M templates/database/structure/sortable_header.phtml Log Message: ----------- Fix XSS in database structure page Forward ported commit 90df124797175688a63be0d0a311210e92f09895 Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 38fa1191049ac0c626a6684eea52068dfbbb5078 https://github.com/phpmyadmin/phpmyadmin/commit/38fa1191049ac0c626a6684eea5… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/Config.class.php Log Message: ----------- Urlencode hostname This can come from the HTTP header, so we need to be sure to sanitize it. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 746240bd13b62b5956fc34389cfbdc09e1e67775 https://github.com/phpmyadmin/phpmyadmin/commit/746240bd13b62b5956fc34389cf… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M normalization.php Log Message: ----------- Fix XSS in normalization Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: e65f375918a1eef5b1289d890ced645d3925464a https://github.com/phpmyadmin/phpmyadmin/commit/e65f375918a1eef5b1289d890ce… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M ChangeLog M libraries/plugins/export/ExportSql.class.php Log Message: ----------- Merge branch 'MAINT_4_5_5' into MAINT_4_5_5-security Commit: c842a0de9288033d25404d1d6eb22dd83033675f https://github.com/phpmyadmin/phpmyadmin/commit/c842a0de9288033d25404d1d6eb… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M file_echo.php Log Message: ----------- Use correct headers for json data It was previously not marked as such what could potentially lead to browsers doing some autodetection. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: b3d36dc836df31a7d1b1c4f61f578a9b42bd1f98 https://github.com/phpmyadmin/phpmyadmin/commit/b3d36dc836df31a7d1b1c4f61f5… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/Config.class.php M test/classes/PMA_Config_test.php Log Message: ----------- Merge pull request #23 from phpmyadmin/ssl-cert Bring back SSL certificate validation Commit: f33a42f1da9db943a67bda7d29f7dd91957a8e7e https://github.com/phpmyadmin/phpmyadmin/commit/f33a42f1da9db943a67bda7d29f… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M js/functions.js M js/normalization.js Log Message: ----------- Fix XSS in normalization.js Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 37c34d089aa19f30d11203bb0c7f85b486424372 https://github.com/phpmyadmin/phpmyadmin/commit/37c34d089aa19f30d11203bb0c7… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M js/normalization.js Log Message: ----------- Escape selectors Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 9bce7dafaf746559c617f674e27b9c0f75ae97a2 https://github.com/phpmyadmin/phpmyadmin/commit/9bce7dafaf746559c617f674e27… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M ChangeLog Log Message: ----------- Add changes for security issues Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: bcd4ce8cba1272fca52f2331c08f2e3ac19cbbef https://github.com/phpmyadmin/phpmyadmin/commit/bcd4ce8cba1272fca52f2331c08… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-27 (Sat, 27 Feb 2016) Changed paths: M js/normalization.js Log Message: ----------- Fix XSS in normalization.js Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: ab1283e8366c97a155d4e9ae58628a248458ea32 https://github.com/phpmyadmin/phpmyadmin/commit/ab1283e8366c97a155d4e9ae586… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M libraries/server_privileges.lib.php Log Message: ----------- Fix XSS in User accounts page Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: cc55f44a4a90147a007dee1aefa1cb529e23798b https://github.com/phpmyadmin/phpmyadmin/commit/cc55f44a4a90147a007dee1aefa… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M db_central_columns.php Log Message: ----------- Fix XSS in Central columns page Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 4650ad7fbde189678d180b8f294af3591f50b829 https://github.com/phpmyadmin/phpmyadmin/commit/4650ad7fbde189678d180b8f294… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M templates/table/search/input_box.phtml M templates/table/search/rows_zoom.phtml Log Message: ----------- A better way of escaping Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 41c4e0214c286f28830cca54423b5db57e7c0ce4 https://github.com/phpmyadmin/phpmyadmin/commit/41c4e0214c286f28830cca54423… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M libraries/controllers/TableSearchController.class.php Log Message: ----------- Fix XSS in zoom search Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 2925d6468b60363669a08cfd8e689c1a05191744 https://github.com/phpmyadmin/phpmyadmin/commit/2925d6468b60363669a08cfd8e6… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M templates/table/search/input_box.phtml M templates/table/search/rows_zoom.phtml Log Message: ----------- Merge pull request #29 from phpmyadmin/escape A better way of escaping Commit: 3c583b86d46f72f3ac331fea64fa02c3fbf38561 https://github.com/phpmyadmin/phpmyadmin/commit/3c583b86d46f72f3ac331fea64f… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M ChangeLog M libraries/sql-parser/autoload.php Log Message: ----------- Merge branch 'MAINT_4_5_5' into MAINT_4_5_5-security Commit: 51a0d2f25a71432570f59dd9053b9dbbc93733b3 https://github.com/phpmyadmin/phpmyadmin/commit/51a0d2f25a71432570f59dd9053… Author: Isaac Bennetch <bennetch(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M ChangeLog M README M doc/conf.py M libraries/Config.class.php Log Message: ----------- 4.5.5.1 release Signed-off-by: Isaac Bennetch <bennetch(a)gmail.com> Compare: https://github.com/phpmyadmin/phpmyadmin/compare/88e0944cfd6c...51a0d2f25a71

1 0

[phpmyadmin/phpmyadmin] 06538a: ChangeLog entries for security issues
by Isaac Bennetch 29 Feb '16

29 Feb '16

Branch: refs/heads/MAINT_4_4_15 Home: https://github.com/phpmyadmin/phpmyadmin Commit: 06538a39d0a2b756d1e879647f7dfde0a1b4fc2b https://github.com/phpmyadmin/phpmyadmin/commit/06538a39d0a2b756d1e879647f7… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-01-28 (Thu, 28 Jan 2016) Changed paths: M ChangeLog Log Message: ----------- ChangeLog entries for security issues Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 6c69aa899c6d77f34ecb68ae3d307b81add85261 https://github.com/phpmyadmin/phpmyadmin/commit/6c69aa899c6d77f34ecb68ae3d3… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M ChangeLog M README M doc/conf.py M libraries/Config.class.php M libraries/plugins/auth/AuthenticationCookie.class.php M libraries/session.inc.php Log Message: ----------- Merge branch 'MAINT_4_4_15' into MAINT_4_4_15-security Commit: 5168199f76c99f8c99b30e5142fa2c1a99ee5c35 https://github.com/phpmyadmin/phpmyadmin/commit/5168199f76c99f8c99b30e5142f… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M js/functions.js Log Message: ----------- Escape SQL query for inline editing Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 90df124797175688a63be0d0a311210e92f09895 https://github.com/phpmyadmin/phpmyadmin/commit/90df124797175688a63be0d0a31… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/structure.lib.php Log Message: ----------- Fix XSS in database structure page Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 492fee722e3a0e5107246195a8d4665b87307800 https://github.com/phpmyadmin/phpmyadmin/commit/492fee722e3a0e5107246195a8d… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M normalization.php Log Message: ----------- Fix XSS in normalization Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: dd853f89c6daa64db0c934cc166c90396a35338d https://github.com/phpmyadmin/phpmyadmin/commit/dd853f89c6daa64db0c934cc166… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/tcpdf/include/tcpdf_static.php Log Message: ----------- Avoid skipping the SSL certificate check in TCPDF This code is never used in phpMyAdmin, but we fix it just to avoid potential security reports. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 79c515921fe45ae14bd156b4f19686bf4f72e80b https://github.com/phpmyadmin/phpmyadmin/commit/79c515921fe45ae14bd156b4f19… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/structure.lib.php Log Message: ----------- Merge pull request #18 from phpmyadmin/sec_1_3 Fix XSS in database structure page Commit: 8025745ff017274970435000a9011dfab1e04e98 https://github.com/phpmyadmin/phpmyadmin/commit/8025745ff017274970435000a90… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M js/functions.js M js/normalization.js Log Message: ----------- Fix XSS in normalization.js Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 25e6bf3362a793abb59ecd668e9121a4c471e101 https://github.com/phpmyadmin/phpmyadmin/commit/25e6bf3362a793abb59ecd668e9… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M js/normalization.js Log Message: ----------- Escape selectors Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 9ec0b598bd0c5a5b63e483801057ab8a22e82527 https://github.com/phpmyadmin/phpmyadmin/commit/9ec0b598bd0c5a5b63e48380105… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/Config.class.php Log Message: ----------- Urlencode hostname This can come from the HTTP header, so we need to be sure to sanitize it. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 99b8258fbdc5c2a6439c1b070a3693f0501b2f61 https://github.com/phpmyadmin/phpmyadmin/commit/99b8258fbdc5c2a6439c1b070a3… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M normalization.php Log Message: ----------- Merge pull request #21 from phpmyadmin/sec_1_4 Fix XSS in normalization Commit: 081551c5890c8675c15e8507eac786a78b5cb790 https://github.com/phpmyadmin/phpmyadmin/commit/081551c5890c8675c15e8507eac… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M file_echo.php Log Message: ----------- Use correct headers for json data It was previously not marked as such what could potentially lead to browsers doing some autodetection. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: ad21889ba8424857de7ed9e6c7ef012f2f9c7ea6 https://github.com/phpmyadmin/phpmyadmin/commit/ad21889ba8424857de7ed9e6c7e… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M js/functions.js M js/normalization.js Log Message: ----------- Merge pull request #24 from phpmyadmin/sec_1_5 Fix XSS in normalization.js Commit: 65c4a999ede9ae25e27f0e850b5d99a9685ac930 https://github.com/phpmyadmin/phpmyadmin/commit/65c4a999ede9ae25e27f0e850b5… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M ChangeLog Log Message: ----------- Add changes for security issues Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: f4d9d4c868cf0bba999a1bee8b05bbeb9f22e5f2 https://github.com/phpmyadmin/phpmyadmin/commit/f4d9d4c868cf0bba999a1bee8b0… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-27 (Sat, 27 Feb 2016) Changed paths: M js/normalization.js Log Message: ----------- Fix XSS in normalization.js Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: c539ef288eb5ca2f7810ccf7f2d471673dc63bcf https://github.com/phpmyadmin/phpmyadmin/commit/c539ef288eb5ca2f7810ccf7f2d… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M db_central_columns.php Log Message: ----------- Fix XSS in Central columns page Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: d0cdcf54a6a10a63cf882152a0a7430a967fa31e https://github.com/phpmyadmin/phpmyadmin/commit/d0cdcf54a6a10a63cf882152a0a… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M libraries/server_privileges.lib.php Log Message: ----------- Fix XSS in User accounts page Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: 07591a2b1b96ab0ee3fa6377972ed2d557af22ed https://github.com/phpmyadmin/phpmyadmin/commit/07591a2b1b96ab0ee3fa6377972… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M tbl_zoom_select.php Log Message: ----------- Fix XSS in zoom search Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: b7c2e99987c2c52c6e8010b55b75f3c1c039216a https://github.com/phpmyadmin/phpmyadmin/commit/b7c2e99987c2c52c6e8010b55b7… Author: Isaac Bennetch <bennetch(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M ChangeLog M README M doc/conf.py M libraries/Config.class.php Log Message: ----------- 4.4.15.5 release Signed-off-by: Isaac Bennetch <bennetch(a)gmail.com> Compare: https://github.com/phpmyadmin/phpmyadmin/compare/32f512698518...b7c2e99987c2

1 0

[phpmyadmin/phpmyadmin] b8f1e0: Escape SQL query for inline editing
by Isaac Bennetch 29 Feb '16

29 Feb '16

Branch: refs/heads/MAINT_4_0_10 Home: https://github.com/phpmyadmin/phpmyadmin Commit: b8f1e0f325f8f32bd82af64111d8c2e9055a363c https://github.com/phpmyadmin/phpmyadmin/commit/b8f1e0f325f8f32bd82af64111d… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M js/functions.js Log Message: ----------- Escape SQL query for inline editing Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 73c8245a3d1893a710447957e28dcfb18d9b47ad https://github.com/phpmyadmin/phpmyadmin/commit/73c8245a3d1893a710447957e28… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/Config.class.php Log Message: ----------- Urlencode hostname This can come from the HTTP header, so we need to be sure to sanitize it. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 0667ea8ac7519d7e642eade2686dc393d5faeae3 https://github.com/phpmyadmin/phpmyadmin/commit/0667ea8ac7519d7e642eade2686… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M file_echo.php Log Message: ----------- Use correct headers for json data It was previously not marked as such what could potentially lead to browsers doing some autodetection. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 45ecc10d18f47ad18c0b2e17139cc7b510e36da4 https://github.com/phpmyadmin/phpmyadmin/commit/45ecc10d18f47ad18c0b2e17139… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/tcpdf/tcpdf.php Log Message: ----------- Avoid skipping the SSL certificate check in TCPDF This code is never used in phpMyAdmin, but we fix it just to avoid potential security reports. Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 155876b48f496d25353e0532763412b0e0dc754c https://github.com/phpmyadmin/phpmyadmin/commit/155876b48f496d25353e0532763… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M libraries/Config.class.php Log Message: ----------- Merge pull request #20 from phpmyadmin/xss-host Urlencode hostname Commit: 25a632a9f4e01f86b0a17644483d1e4c5cb91ad1 https://github.com/phpmyadmin/phpmyadmin/commit/25a632a9f4e01f86b0a17644483… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M file_echo.php Log Message: ----------- Merge pull request #22 from phpmyadmin/json-response Use correct headers for json data Commit: e795141fba2246ad4123e7bd0b2a81c2b71f193d https://github.com/phpmyadmin/phpmyadmin/commit/e795141fba2246ad4123e7bd0b2… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-25 (Thu, 25 Feb 2016) Changed paths: M ChangeLog Log Message: ----------- Add changes for security issues Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 7ddce5e39a4e12cd351732955394bc7055c280eb https://github.com/phpmyadmin/phpmyadmin/commit/7ddce5e39a4e12cd35173295539… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M libraries/server_privileges.lib.php Log Message: ----------- Fix XSS in User accounts page Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: fe3be9f4b9edd54dc39919e7dfeaaf4a67c1cf83 https://github.com/phpmyadmin/phpmyadmin/commit/fe3be9f4b9edd54dc39919e7dfe… Author: Madhura Jayaratne <madhura.cj(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M tbl_zoom_select.php Log Message: ----------- Fix XSS in zoom search Signed-off-by: Madhura Jayaratne <madhura.cj(a)gmail.com> Commit: b1cc43ee7f8607c80889570912c5a54b7409b4d1 https://github.com/phpmyadmin/phpmyadmin/commit/b1cc43ee7f8607c80889570912c… Author: Isaac Bennetch <bennetch(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M ChangeLog M README M doc/conf.py M libraries/Config.class.php Log Message: ----------- 4.0.10.15 release Signed-off-by: Isaac Bennetch <bennetch(a)gmail.com> Compare: https://github.com/phpmyadmin/phpmyadmin/compare/945c58b9d2d8...b1cc43ee7f86

1 0

[phpmyadmin/phpmyadmin] e0f412: Fix Enable statistics link is not displaying corre...
by Atul Pratap Singh 29 Feb '16

29 Feb '16

Branch: refs/heads/master Home: https://github.com/phpmyadmin/phpmyadmin Commit: e0f4128d7635e94fcf6877e18f0948d7ab6dd8b3 https://github.com/phpmyadmin/phpmyadmin/commit/e0f4128d7635e94fcf6877e18f0… Author: Durgesh <007durgesh219(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M templates/select_all.phtml Log Message: ----------- Fix Enable statistics link is not displaying correctly, Issue #12049 Signed-off-by: Durgesh <007durgesh219(a)gmail.com> Commit: 39fd5888bed1491af8f782a1d55604ec6ce0307e https://github.com/phpmyadmin/phpmyadmin/commit/39fd5888bed1491af8f782a1d55… Author: Atul Pratap Singh <atulpratapsingh05(a)gmail.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M templates/select_all.phtml Log Message: ----------- Merge pull request #12050 from 007durgesh219/Issue#12049 Fix Enable statistics link is not displaying correctly, Issue #12049 Compare: https://github.com/phpmyadmin/phpmyadmin/compare/317eb54abdd9...39fd5888bed1

1 0

[phpmyadmin/phpmyadmin] 317eb5: Silent errors from git cat-file
by Michal Čihař 29 Feb '16

29 Feb '16

Branch: refs/heads/master Home: https://github.com/phpmyadmin/phpmyadmin Commit: 317eb54abdd90fd7363b6c6a65d793433374cb95 https://github.com/phpmyadmin/phpmyadmin/commit/317eb54abdd90fd7363b6c6a65d… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M scripts/create-release.sh Log Message: ----------- Silent errors from git cat-file There doesn't seem to be better way to check for existence of file in branch, so let's just ignore the errors from it. Fixes #12015 Signed-off-by: Michal Čihař <michal(a)cihar.com>

1 0

[phpmyadmin/phpmyadmin] 88e094: Honor vendor configuration for gettext inclusion
by Michal Čihař 29 Feb '16

29 Feb '16

Branch: refs/heads/QA_4_6 Home: https://github.com/phpmyadmin/phpmyadmin Commit: 88e0944cfd6c74c32bd57e209eaedbb32dd8314f https://github.com/phpmyadmin/phpmyadmin/commit/88e0944cfd6c74c32bd57e209ea… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M ChangeLog M libraries/sql-parser/autoload.php Log Message: ----------- Honor vendor configuration for gettext inclusion Fixes #12048 Signed-off-by: Michal Čihař <michal(a)cihar.com> Commit: 2ebabd11fd37c74140097d26f5a73334064fb554 https://github.com/phpmyadmin/phpmyadmin/commit/2ebabd11fd37c74140097d26f5a… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M ChangeLog M libraries/sql-parser/autoload.php Log Message: ----------- Merge branch 'QA_4_5' into QA_4_6 Compare: https://github.com/phpmyadmin/phpmyadmin/compare/19c7a069c78d...2ebabd11fd37

1 0

[phpmyadmin/phpmyadmin] 88e094: Honor vendor configuration for gettext inclusion
by Michal Čihař 29 Feb '16

29 Feb '16

Branch: refs/heads/MAINT_4_5_5 Home: https://github.com/phpmyadmin/phpmyadmin Commit: 88e0944cfd6c74c32bd57e209eaedbb32dd8314f https://github.com/phpmyadmin/phpmyadmin/commit/88e0944cfd6c74c32bd57e209ea… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M ChangeLog M libraries/sql-parser/autoload.php Log Message: ----------- Honor vendor configuration for gettext inclusion Fixes #12048 Signed-off-by: Michal Čihař <michal(a)cihar.com>

1 0

[phpmyadmin/phpmyadmin] 88e094: Honor vendor configuration for gettext inclusion
by Michal Čihař 29 Feb '16

29 Feb '16

Branch: refs/heads/QA_4_5 Home: https://github.com/phpmyadmin/phpmyadmin Commit: 88e0944cfd6c74c32bd57e209eaedbb32dd8314f https://github.com/phpmyadmin/phpmyadmin/commit/88e0944cfd6c74c32bd57e209ea… Author: Michal Čihař <michal(a)cihar.com> Date: 2016-02-29 (Mon, 29 Feb 2016) Changed paths: M ChangeLog M libraries/sql-parser/autoload.php Log Message: ----------- Honor vendor configuration for gettext inclusion Fixes #12048 Signed-off-by: Michal Čihař <michal(a)cihar.com>

1 0

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

Git February 2016