Bug 959946
Summary: | phpMyAdmin-4.2.5 is available | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Upstream Release Monitoring <upstream-release-monitoring> |
Component: | phpMyAdmin | Assignee: | Robert Scheck <redhat-bugzilla> |
Status: | CLOSED ERRATA | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | rawhide | CC: | anshprat, fedora, hhorak, redhat-bugzilla, sdodson, sergio.pasra, sergio, volker27 |
Target Milestone: | --- | Keywords: | FutureFeature, Triaged |
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | phpMyAdmin-4.0.10.1-1.el6 | Doc Type: | Enhancement |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2014-07-30 07:00:29 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 548260, 1078371 | ||
Bug Blocks: |
Description
Upstream Release Monitoring
2013-05-06 09:29:45 UTC
Latest upstream release: 4.0.1 Current version in Fedora Rawhide: 3.5.8.1 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.0.2 Current version in Fedora Rawhide: 3.5.8.1 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.0.3 Current version in Fedora Rawhide: 3.5.8.1 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.0.4 Current version/release in Fedora Rawhide: 3.5.8.1-1.fc20 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.0.4.1 Current version/release in Fedora Rawhide: 3.5.8.1-1.fc20 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.0.4.2 Current version/release in Fedora Rawhide: 3.5.8.1-1.fc20 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.0.5 Current version/release in Fedora Rawhide: 3.5.8.1-1.fc20 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.0.6 Current version/release in Fedora Rawhide: 3.5.8.1-2.fc20 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring (In reply to Upstream Release Monitoring from comment #8) > Latest upstream release: 4.0.6 > Current version/release in Fedora Rawhide: 3.5.8.1 3.5.8.2 changelog: Welcome to phpMyAdmin 3.5.8.2, a security release. 3.5.8.2 (2013-07-28) - [security] Fix self-XSS in "Showing rows", see PMASA-2013-8 - [security] Fix self-XSS in Display chart, see PMASA-2013-9 - [security] Fix stored XSS in Server status monitor, see PMASA-2013-9 - [security] Fix stored XSS in navigation panel logo link, see PMASA-2013-9 - [security] Fix self-XSS in setup, trusted proxies validation, see PMASA-2013-9 + [security] JSON content type header for version_check.php, see PMASA-2013-9 + [security] Backport fix for jQuery issue #9521 from jQuery 1.6.3, see PMASA-2013-9 + [security] Fix full path disclosure, see PMASA-2013-12 + [security] Fix control user SQL injection in pmd_pdf.php, see PMASA-2013-15 + [security] Fix control user SQL injection in schema_export.php, see PMASA-2013-15 - [security] Fix self-XSS in schema export, see PMASA-2013-14 - [security] Fix unencoded json object, see PMASA-2013-11 Latest upstream release: 4.0.7 Current version/release in Fedora Rawhide: 3.5.8.1-2.fc20 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.0.8 Current version/release in Fedora Rawhide: 3.5.8.1-2.fc20 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring put up the srpm and specs @ http://anshprat.fedorapeople.org/rhbz959946/c12/ phpMyAdmin bundles *.swf files, thus this is not just bumping as everybody is thinking... @Robert: ah, alright. So, how do we proceed about it? Whats to be done about those swf files? Any docs/pointers? regards Anshu Prateek phpMyAdmin-4.0.8-all-languages]$ find . -name '*swf' ./js/canvg/flashcanvas.swf Just ripping the *.swf out cripples the functionality for some users. We should try to get flashcanvas.swf somehow built from source... alright, will check into it, thanks! That would be awesome! Robert's mail to pma devel about the swf - what all does it do, etc http://sourceforge.net/mailarchive/forum.php?thread_name=521261D8.80701%40infomarc.info&forum_name=phpmyadmin-devel @Robert: I tracked the file in upstream, and its the opensourced swf of a proprietory code. http://code.google.com/p/flashcanvas/ http://flashcanvas.net/ So building the swf from source looks like out of question, since we don't have the source. How about we 1) remove the swf from fedora package. and 2) put the info in readme / install about this swf, how users can add this swf to their install and why is it reqired (from the thread in last comment)? Outside fedora scope - create rpm for just the swf and put it in rpmfusion? http://code.google.com/p/flashcanvas/source/browse/#svn%2Ftrunk seems to contain some source code - thus I am tempted to disagree. However, I did not spend much time with it. Additionally, phpMyAdmin 4.x seems to bundle lots of software which has to be packaged for Fedora as well - so that unbundling is possible. (In reply to Robert Scheck from comment #21) > http://code.google.com/p/flashcanvas/source/browse/#svn%2Ftrunk seems to Ah, yes. looks promising, will check this. > > Additionally, phpMyAdmin 4.x seems to bundle lots of software which has to > be packaged for Fedora as well - so that unbundling is possible. which other stuff? First build of swf went fine. Will package this in the rpm and check. There is one warning though, need to check on that. $ make mxmlc -incremental src/FlashCanvas.as -output bin/flashcanvas.swf Loading configuration file /home/anshup/adobe/frameworks/flex-config.xml /home/anshup/git/pma-git/canvg/flashcanvas-read-only/src/FlashCanvas.as: Warning: This compilation unit did not have a factoryClass specified in Frame metadata to load the configured runtime shared libraries. To compile without runtime shared libraries either set the -static-link-runtime-shared-libraries option to true or remove the -runtime-shared-libraries option. /home/anshup/git/pma-git/canvg/flashcanvas-read-only/bin/flashcanvas.swf (21285 bytes) Anshu, wow...awesome! Thank you very much for your time and efforts! From what I can see and guess the following libraries are bundled: - js/canvg/ - js/codemirror/ - js/jqplot/ - js/jquery/ - js/openlayers/ - libraries/php-gettext/ -> already unbundled using php-php-gettext - libraries/phpseclib/ - libraries/tcpdf/ -> unbundling possible, there is meanwhile tcpdf I do not know if this list is complete or correct, this is just what I can see. JQuery is unfortunately not yet in Fedora, however there is bug #857992 with a review request. There is a package "openlayers" in Fedora already, however not yet for Fedora EPEL. Latest upstream release: 4.0.9 Current version/release in Fedora Rawhide: 3.5.8.2-1.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.0.10 Current version/release in Fedora Rawhide: 3.5.8.2-1.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.0 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.1 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring FYI, 3.5.8.2 /4.0.10 are supported for security fixes only, until Jan 1, 2014. Anshu, is there already a RPM for flashcanvas somewhere? hi Robert, Nope, sorry, never got around to package it. The make was pretty simple and straight forward though. Latest upstream release: 4.1.2 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring I'm currently putting together phpseclib packages for OwnCloud (which also bundles it). https://bugzilla.redhat.com/show_bug.cgi?id=1047596 is the channel review request, I'll file a bunch of review requests for each module shortly, all should depend on that bug. Latest upstream release: 4.1.3 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.4 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.5 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.6 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.7 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.8 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.9 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.11 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.12 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.13 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.1.14 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.2.0 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.2.2 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.2.3 Current version/release in Fedora Rawhide: 3.5.8.2-2.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.2.4 Current version/release in Fedora Rawhide: 3.5.8.2-3.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring Latest upstream release: 4.2.5 Current version/release in Fedora Rawhide: 3.5.8.2-3.fc21 URL: http://www.phpmyadmin.net/home_page/downloads.php Please consult the package updates policy before you issue an update to a stable branch: https://fedoraproject.org/wiki/Updates_Policy More information about the service that created this bug can be found at: https://fedoraproject.org/wiki/Upstream_release_monitoring hum remi have this package updated : phpMyAdmin.noarch 4.2.5-1.fc20.remi https://github.com/remicollet/remirepo/tree/master/php/phpMyAdmin FYI php-phpseclib-* packages are available in Fedora. Next phpMyAdmin version (4.2.6) will allow to use system library. See https://github.com/phpmyadmin/phpmyadmin/commit/7089858ab0fccd844c22bf462b59c482602cdbaa phpMyAdmin-4.2.6-1.fc20 has been submitted as an update for Fedora 20. https://admin.fedoraproject.org/updates/phpMyAdmin-4.2.6-1.fc20 phpMyAdmin-4.2.6-1.fc19 has been submitted as an update for Fedora 19. https://admin.fedoraproject.org/updates/phpMyAdmin-4.2.6-1.fc19 phpMyAdmin-4.2.6-1.el6 has been submitted as an update for Fedora EPEL 6. https://admin.fedoraproject.org/updates/phpMyAdmin-4.2.6-1.el6 Package phpMyAdmin-4.2.6-1.el6: * should fix your issue, * was pushed to the Fedora EPEL 6 testing repository, * should be available at your local mirror within two days. Update it with: # su -c 'yum update --enablerepo=epel-testing phpMyAdmin-4.2.6-1.el6' as soon as you are able to. Please go to the following url: https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-1940/phpMyAdmin-4.2.6-1.el6 then log in and leave karma (feedback). phpMyAdmin-4.2.6-1.fc20 has been pushed to the Fedora 20 stable repository. If problems still persist, please make note of it in this bug report. phpMyAdmin-4.2.6-1.fc19 has been pushed to the Fedora 19 stable repository. If problems still persist, please make note of it in this bug report. phpMyAdmin-4.0.10.1-1.el6 has been pushed to the Fedora EPEL 6 stable repository. If problems still persist, please make note of it in this bug report. |