lp:ubuntu/edgy-security/phpmyadmin
- Get this branch:
- bzr branch lp:ubuntu/edgy-security/phpmyadmin
Branch merges
Related source package recipes
Branch information
Recent revisions
- 11. By Emanuele Gentili
-
* SECURITY UPDATE:
+ debian/patches/ 050_CVE- 2008-1149. dpatch
- Provides unauthorized access, Allows partial confidentiality, integrity, and
availability violation , Allows unauthorized disclosure of information ,
Allows disruption of service. (LP: #198745)
* References:
+ http://nvd.nist. gov/nvd. cfm?cvename= CVE-2008- 1149
+ http://www.phpmyadmin. net/home_ page/security. php?issue= PMASA-2008- 1 - 10. By Steinar H. Gunderson
-
* Non-maintainer upload.
* Fix issue with /var/www pointing to /usr/share/phpmyadmin.
(Closes: #385889)
* Make sure we install /var/www as a directory, since we make a symlink into
it and we can't rely on it being there.
* Explicitly link to /var/www/phpmyadmin instead of /var/www, to make sure
we don't make a new /var/www even if it should be removed for some
reason. - 9. By Piotr Roszatycki
-
* New upstream release. Closes: #373204.
- The French translation is correct. Closes: #362154.
- Generates correct dumps with UPDATE syntax. Closes: #364702.
* Security fix: XSRF vulnerability.
See: http://www.phpmyadmin. net/home_ page/security. php?issue= PMASA-2006- 3
See: http://cve.mitre. org/cgi- bin/cvename. cgi?name= CVE-2006- 1804
* Security fix: XSS vulnerabilities. It was not a problem for Debian with
the default settings.
See: http://www.phpmyadmin. net/home_ page/security. php?issue= PMASA-2006- 2
See: http://cve.mitre. org/cgi- bin/cvename. cgi?name= CVE-2006- 2031
Closes: #363519, #368082.
* Updated Portuguese debconf templates translation, thanks Miguel Figueiredo.
Closes: #363597.
* Updated Russian debconf templates translation, thanks Yuriy Talakan.
Closes: #367146.
* Convert non-ISO-8859-1 debconf templates translation to UTF-8. - 8. By Piotr Roszatycki
-
* New upstream release.
* Security fix: XSS vulnerability (calling directly css files under themes)
See: http://www.phpmyadmin. net/home_ page/security. php?issue= PMASA-2006- 1
See: http://cve.mitre. org/cgi- bin/cvename. cgi?name= CVE-2006- 1678
Closes: #362567. - 7. By Piotr Roszatycki
-
* New upstream release. Closes: #342203.
* Tweak the dependencies and prefer PHP5 with Apache2.
* Support cgid.so module for threaded Apache2.
* Removed all Debian specific patches.
* Portuguese debconf templates translation, thanks Miguel Figueiredo.
Closes: #336444. - 6. By Piotr Roszatycki
-
Security fix: Cross-site scripting by trusting potentially user-supplied
input.
See: http://cve.mitre. org/cgi- bin/cvename. cgi?name= CVE-2005- 3665
New 200-CVE-2005-3665. patch. Closes: #340438. - 4. By Piotr Roszatycki
-
* New upstream release.
* Security fix: Command execution and file disclosure was found.
See http://www.phpmyadmin. net/home_ page/security. php?issue= PMASA-2004- 4
Closes: #285488.
* Remove 003.non_standard_ port_fix. diff applied to upstream.
* Add commented out options 'extension' and 'AllowRoot' to default config
file.
* Support mysqli.so extension. Autodetect modules from 'extension' option. - 3. By Piotr Roszatycki
-
* New upstream release
* Add /var/www/phpmyadmin to the apache.conf, closes: #246367.
* Suggests: php4-gd, closes: #243714.
* Should work with E_ALL, closes: #244672.
* Remove php3 from dependencies and DebConf templates, closes: #246002.
* Fixed typo in DebConf template, closes: #250841.
* Dutch debconf templates translation (unfinished...), closes: #216936.
* Split configuration to the /etc/phpmyadmin/config. inc.php and
/usr/share/phpmyadmi n/config. inc.php, closes: #225766.
* Ask for restart only if required, closes: #249940.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/karmic/phpmyadmin
