Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package phpMyAdmin for openSUSE:Factory checked in at 2022-01-23 12:15:46 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/phpMyAdmin (Old) and /work/SRC/openSUSE:Factory/.phpMyAdmin.new.1938 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "phpMyAdmin" Sun Jan 23 12:15:46 2022 rev:175 rq:948084 version:5.1.2 Changes: -------- --- /work/SRC/openSUSE:Factory/phpMyAdmin/phpMyAdmin.changes 2021-06-05 23:32:14.424511866 +0200 +++ /work/SRC/openSUSE:Factory/.phpMyAdmin.new.1938/phpMyAdmin.changes 2022-01-23 12:17:00.807936407 +0100 @@ -1,0 +2,24 @@ +Sat Jan 22 09:39:12 UTC 2022 - ecsos <[email protected]> + +- Update to 5.1.2 + This is a security and bufix release. + * Security + - Fix boo#1195017 (CVE-2022-23807, PMASA-2022-1, CWE-661) + Two factor authentication bypass + - Fix boo#1195018 (CVE-2022-23808, PMASA-2022-2, CWE-661) + Multiple XSS and HTML injection attacks in setup script + * Bugfixes + - Revert a changed to $cfg['CharTextareaRows'] allow values + less than 7 + - Fix encoding of enum and set values on edit value + - Fixed possible "Undefined index: clause_is_unique" error + - Fixed some situations where a user is logged out when working + with more than one server + - Fixed a problem with assigning privileges to a user using the + multiselect list when the database name has an underscore + - Enable cookie parameter "SameSite" when the PHP version + is 7.3 or newer + - Correctly handle the removal of "innodb_file_format" in + MariaDB and MySQL + +------------------------------------------------------------------- Old: ---- phpMyAdmin-5.1.1-all-languages.tar.xz phpMyAdmin-5.1.1-all-languages.tar.xz.asc New: ---- phpMyAdmin-5.1.2-all-languages.tar.xz phpMyAdmin-5.1.2-all-languages.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ phpMyAdmin.spec ++++++ --- /var/tmp/diff_new_pack.VpNYq9/_old 2022-01-23 12:17:01.407932396 +0100 +++ /var/tmp/diff_new_pack.VpNYq9/_new 2022-01-23 12:17:01.411932370 +0100 @@ -1,7 +1,7 @@ # # spec file for package phpMyAdmin # -# Copyright (c) 2021 SUSE LLC +# Copyright (c) 2022 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -25,7 +25,7 @@ %define apache_group nogroup %endif Name: phpMyAdmin -Version: 5.1.1 +Version: 5.1.2 Release: 0 Summary: Administration of MySQL over the web License: GPL-2.0-or-later @@ -104,7 +104,7 @@ Requires(post): %{_sbindir}/a2enmod Requires(post): %{_sbindir}/a2enflag Requires(post): php -Requires(postun): %{_sbindir}/a2enflag +Requires(postun):%{_sbindir}/a2enflag Recommends: mod_php_any >= 7.4 Supplements: packageand(apache2:%name) ++++++ phpMyAdmin-5.1.1-all-languages.tar.xz -> phpMyAdmin-5.1.2-all-languages.tar.xz ++++++ /work/SRC/openSUSE:Factory/phpMyAdmin/phpMyAdmin-5.1.1-all-languages.tar.xz /work/SRC/openSUSE:Factory/.phpMyAdmin.new.1938/phpMyAdmin-5.1.2-all-languages.tar.xz differ: char 25, line 1
