Marc Delisle [Tue, 7 Sep 2010 16:32:04 +0000 (7 12:32 -0400)]
3.3.7 release
Michal Čihař [Wed, 1 Sep 2010 10:00:11 +0000 (1 12:00 +0200)]
Translation updates from master.
Michal Čihař [Wed, 1 Sep 2010 09:49:04 +0000 (1 11:49 +0200)]
Adjust year.
Marc Delisle [Tue, 31 Aug 2010 16:09:07 +0000 (31 12:09 -0400)]
3.3.7-rc1 release
Marc Delisle [Mon, 30 Aug 2010 16:54:12 +0000 (30 12:54 -0400)]
undefined variables after deleting a user
Michal Čihař [Mon, 30 Aug 2010 15:30:37 +0000 (30 17:30 +0200)]
[setup] Fixed escaping of server name.
Michal Čihař [Mon, 30 Aug 2010 15:23:50 +0000 (30 17:23 +0200)]
bug #
3035300 [parser] Fixed wrong definition of keywords.
Martin Schönberger [Mon, 30 Aug 2010 14:07:11 +0000 (30 10:07 -0400)]
improved patch
Michal Čihař [Mon, 30 Aug 2010 12:15:23 +0000 (30 14:15 +0200)]
bug #
3054458 [core] Fixed displaying number of rows.
Michal Čihař [Mon, 30 Aug 2010 07:56:39 +0000 (30 09:56 +0200)]
Merge branch 'MAINT_3_3_6' into QA_3_3
Marc Delisle [Sat, 28 Aug 2010 14:44:56 +0000 (28 10:44 -0400)]
3.3.6 release
Marc Delisle [Sat, 28 Aug 2010 14:43:33 +0000 (28 10:43 -0400)]
3.3.6 release
Martin Schönberger [Sat, 28 Aug 2010 12:16:05 +0000 (28 08:16 -0400)]
Patch #
3050492, Cannot drag table box to the edge
Michal Čihař [Fri, 22 Jan 2010 17:19:45 +0000 (22 17:19 +0000)]
Function is_null seems to be now working properly on empty blobs.
Tested with PHP 5.3.
Backport from master.
Herman van Rink [Tue, 24 Aug 2010 13:17:11 +0000 (24 15:17 +0200)]
Merge branch 'QA_3_3' of ssh://phpmyadmin.git.sourceforge.net/gitroot/phpmyadmin/phpmyadmin into QA_3_3
Herman van Rink [Tue, 24 Aug 2010 13:14:27 +0000 (24 15:14 +0200)]
Generalized include, to incorporate the Config class
Herman van Rink [Tue, 24 Aug 2010 12:47:29 +0000 (24 14:47 +0200)]
Add additional condition for strict checking.
Michal Čihař [Mon, 23 Aug 2010 15:08:58 +0000 (23 17:08 +0200)]
Merge branch 'MAINT_3_3_6' into QA_3_3
Conflicts:
Documentation.html
README
libraries/Config.class.php
translators.html
Michal Čihař [Mon, 23 Aug 2010 15:05:53 +0000 (23 17:05 +0200)]
Escape backtrace listing to avoid possible XSS on this.
Michal Čihař [Mon, 23 Aug 2010 15:02:15 +0000 (23 17:02 +0200)]
Avoid PHP error when false is passed to PMA_DBI_getError.
This can be caused by controllink set to false.
Herman van Rink [Mon, 23 Aug 2010 12:30:17 +0000 (23 14:30 +0200)]
Updated unittest to conform latest update
Marc Delisle [Fri, 20 Aug 2010 17:03:13 +0000 (20 13:03 -0400)]
3.3.7-dev
Marc Delisle [Fri, 20 Aug 2010 16:59:21 +0000 (20 12:59 -0400)]
3.3.6-rc1
Michal Čihař [Fri, 20 Aug 2010 11:42:29 +0000 (20 13:42 +0200)]
Merge branch 'MAINT_3_3_5' into QA_3_3
Michal Čihař [Fri, 20 Aug 2010 11:42:17 +0000 (20 13:42 +0200)]
Set version to 3.3.5.1.
Michal Čihař [Fri, 20 Aug 2010 11:36:49 +0000 (20 13:36 +0200)]
Merge branch 'MAINT_3_3_5' into QA_3_3
Conflicts:
ChangeLog
libraries/common.lib.php
Michal Čihař [Fri, 20 Aug 2010 11:33:32 +0000 (20 13:33 +0200)]
Changelog.
Michal Čihař [Fri, 20 Aug 2010 09:35:42 +0000 (20 11:35 +0200)]
Escape error message coming from MySQL to avoid XSS on bad parameters.
Michal Čihař [Fri, 20 Aug 2010 09:31:11 +0000 (20 11:31 +0200)]
Avoid information disclossure on error.
Michal Čihař [Fri, 20 Aug 2010 09:19:28 +0000 (20 11:19 +0200)]
Fix possible XSS on IIS redirect page.
Michal Čihař [Fri, 20 Aug 2010 09:09:15 +0000 (20 11:09 +0200)]
bug #
3042495 [core] Move PMA_sendHeaderLocation to core.lib.php.
It might be needed from common.inc.php even if PMA_MINIMUM_COMMON is
defined.
Michal Čihař [Fri, 20 Aug 2010 09:02:38 +0000 (20 11:02 +0200)]
bug #
3044189 [doc] Cleared documentation for hide_db.
Herman van Rink [Fri, 20 Aug 2010 08:42:03 +0000 (20 10:42 +0200)]
Fix XSS on error with very long query.
Michal Čihař [Fri, 20 Aug 2010 08:38:32 +0000 (20 10:38 +0200)]
Fix XSS with $cfg['SQP']['fmtType'] = 'text'.
Michal Čihař [Thu, 19 Aug 2010 13:37:06 +0000 (19 15:37 +0200)]
Revert "Do not assume that DefaultLang is escaped."
This reverts commit
05ca00e0a20d0eb4848d69bf7a1365df5bba872d.
There does not seem to be bug here.
Michal Čihař [Wed, 18 Aug 2010 10:37:20 +0000 (18 12:37 +0200)]
Do not assume that DefaultLang is escaped.
Michal Čihař [Wed, 18 Aug 2010 10:31:54 +0000 (18 12:31 +0200)]
Properly check validity of sort parameter.
Michal Čihař [Wed, 18 Aug 2010 10:13:59 +0000 (18 12:13 +0200)]
Fix XSS on hostname.
Michal Čihař [Wed, 18 Aug 2010 10:12:09 +0000 (18 12:12 +0200)]
Fix XSS on username.
Michal Čihař [Wed, 18 Aug 2010 10:09:13 +0000 (18 12:09 +0200)]
Fix XSS on tablename and pred_tablename.
Michal Čihař [Wed, 18 Aug 2010 10:07:45 +0000 (18 12:07 +0200)]
Fix XSS on dbname.
Michal Čihař [Wed, 18 Aug 2010 10:05:32 +0000 (18 12:05 +0200)]
Fix XSS on checkprivs.
Michal Čihař [Wed, 18 Aug 2010 09:42:08 +0000 (18 11:42 +0200)]
Document PMA_sanitize.
Michal Čihař [Tue, 17 Aug 2010 14:10:27 +0000 (17 16:10 +0200)]
Escape html chars in form values.
Michal Čihař [Tue, 17 Aug 2010 14:09:07 +0000 (17 16:09 +0200)]
Add option to escape PMA_sanitize output.
This is required when it is used in form values.
Marc Delisle [Tue, 17 Aug 2010 14:46:16 +0000 (17 16:46 +0200)]
Limit list of correct values for sort order.
Michal Čihař [Tue, 17 Aug 2010 14:33:30 +0000 (17 16:33 +0200)]
Fix handling of unknown sort order.
Michal Čihař [Tue, 17 Aug 2010 14:31:03 +0000 (17 16:31 +0200)]
Secure handling of sort_by and sort_order in server_databases.php.
Michal Čihař [Tue, 17 Aug 2010 14:23:09 +0000 (17 16:23 +0200)]
Fix XSS on delimiter in tbl_sql.php.
Marc Delisle [Tue, 17 Aug 2010 14:21:37 +0000 (17 16:21 +0200)]
Fix XSS on delimiter in db_sql.php.
Michal Čihař [Tue, 17 Aug 2010 14:20:15 +0000 (17 16:20 +0200)]
Fix XSS on field_str in db_search.php.
Michal Čihař [Tue, 17 Aug 2010 13:30:47 +0000 (17 15:30 +0200)]
Generate new token on forcible generating of session id.
Michal Čihař [Tue, 17 Aug 2010 11:38:37 +0000 (17 13:38 +0200)]
Ignore non default themes in git.
Michal Čihař [Tue, 17 Aug 2010 11:36:41 +0000 (17 13:36 +0200)]
Update translation based on current master branch.
Marc Delisle [Tue, 10 Aug 2010 21:55:04 +0000 (10 17:55 -0400)]
bug #
3042706 [pmadb] Relations, bookmarks, etc deleted after table drop
Marc Delisle [Sat, 7 Aug 2010 11:08:11 +0000 (7 07:08 -0400)]
Withdraw or edit FAQ entries related to older MySQL or PHP
Marc Delisle [Sat, 7 Aug 2010 10:27:04 +0000 (7 06:27 -0400)]
bug #
3040226 [XHTML] LockFromUpdate checkbox not checked by default
Marc Delisle [Thu, 5 Aug 2010 16:22:56 +0000 (5 12:22 -0400)]
patch #
3039269 [dbi] Wrong variable checked for nopassword option
Will Palmer [Wed, 4 Aug 2010 08:32:58 +0000 (4 09:32 +0100)]
bug [mysqli] non-global $cfg referenced where $GLOBAL['cfg'] expected
Marc Delisle [Sun, 1 Aug 2010 10:17:03 +0000 (1 06:17 -0400)]
bug #
3036132 [core] Triggers not fetched if dbname has an hyphen
Marc Delisle [Sat, 31 Jul 2010 19:06:28 +0000 (31 15:06 -0400)]
incorrect HTML entity
Marc Delisle [Sat, 31 Jul 2010 18:54:05 +0000 (31 14:54 -0400)]
bug #
3034026 [confirmation] TRUNCATE queries get no confirmation request
Michal Čihař [Mon, 26 Jul 2010 16:29:37 +0000 (26 18:29 +0200)]
Merge branch 'MAINT_3_3_5' into QA_3_3
Marc Delisle [Mon, 26 Jul 2010 16:27:30 +0000 (26 12:27 -0400)]
3.3.5 release
Marc Delisle [Mon, 26 Jul 2010 16:26:41 +0000 (26 12:26 -0400)]
3.3.5 release
Michal Čihař [Mon, 26 Jul 2010 13:51:26 +0000 (26 15:51 +0200)]
bug #
3031705 [core] Fix generating condition for real numbers by comparing them to string.
Michal Čihař [Mon, 26 Jul 2010 13:45:36 +0000 (26 15:45 +0200)]
Revert "bug #
3031705 [core] Do not use CONCAT for DECIMAL fields."
This reverts commit
ef500cd23fd863e62bf810537776b45a4ed76c34.
We probably need to use CONCAT still, just the other side should be
converted to string as well.
Marc Delisle [Sun, 25 Jul 2010 17:32:35 +0000 (25 13:32 -0400)]
bug #
3033063 [core] Navi gets wrong db name
Marc Delisle [Sun, 25 Jul 2010 11:53:41 +0000 (25 07:53 -0400)]
Merge branch 'MAINT_3_3_5' into QA_3_3
Marc Delisle [Sun, 25 Jul 2010 11:53:07 +0000 (25 07:53 -0400)]
bug [scripts] MySQL 5.5.5 does not accept TIMESTAMP(14) in create_tables.sql
Michal Čihař [Tue, 20 Jul 2010 12:41:29 +0000 (20 14:41 +0200)]
Merge remote branch 'origin/MAINT_3_3_5' into QA_3_3
Michal Čihař [Tue, 20 Jul 2010 12:37:53 +0000 (20 14:37 +0200)]
bug #
3031705 [core] Do not use CONCAT for DECIMAL fields.
Marc Delisle [Sun, 18 Jul 2010 18:34:32 +0000 (18 14:34 -0400)]
3.3.6-dev
Marc Delisle [Sun, 18 Jul 2010 18:31:53 +0000 (18 14:31 -0400)]
3.3.5-rc1
Marc Delisle [Sat, 17 Jul 2010 13:54:54 +0000 (17 09:54 -0400)]
typo
Dieter Adriaenssens [Wed, 14 Jul 2010 20:29:26 +0000 (14 22:29 +0200)]
Converting number of Excel column names no longer limited
Dieter Adriaenssens [Tue, 13 Jul 2010 21:39:42 +0000 (13 23:39 +0200)]
remove todo, after upgrade PHPExcel
Dieter Adriaenssens [Tue, 13 Jul 2010 21:23:51 +0000 (13 23:23 +0200)]
Convert Excel column name correctly
Dieter Adriaenssens [Wed, 26 May 2010 19:24:26 +0000 (26 21:24 +0200)]
cleanup (re)moved files
Dieter Adriaenssens [Thu, 3 Jun 2010 18:35:06 +0000 (3 20:35 +0200)]
Update library PHPExcel to version 1.7.3c
Dieter Adriaenssens [Tue, 25 May 2010 20:10:48 +0000 (25 22:10 +0200)]
Update library PHPExcel to version 1.7.3
Dieter Adriaenssens [Sun, 2 May 2010 19:01:53 +0000 (2 21:01 +0200)]
upgrade to PHPExcel 1.7.2
Dieter Adriaenssens [Sun, 2 May 2010 18:20:06 +0000 (2 20:20 +0200)]
upgrade to PHPExcel 1.7.0
Marc Delisle [Mon, 12 Jul 2010 13:00:39 +0000 (12 09:00 -0400)]
typo
Marc Delisle [Mon, 12 Jul 2010 12:56:30 +0000 (12 08:56 -0400)]
bug [export] CSV for MS Excel (Windows) should have semi-colon as separator
Marc Delisle [Sun, 11 Jul 2010 12:00:42 +0000 (11 08:00 -0400)]
bug #
3023507 [core] No result set display from stored procedure SELECT
Marc Delisle [Sat, 10 Jul 2010 12:01:07 +0000 (10 08:01 -0400)]
bug #
3027557 [PHP] split() deprecated in PHP 5.3 (backport fixes from master, todo: update PHP excel?)
Marc Delisle [Thu, 8 Jul 2010 11:49:11 +0000 (8 07:49 -0400)]
bug #
3026400 [PHP] ereg functions are deprecated
Marc Delisle [Wed, 7 Jul 2010 13:44:44 +0000 (7 09:44 -0400)]
remove reference to some old stuff
Marc Delisle [Wed, 7 Jul 2010 11:03:31 +0000 (7 07:03 -0400)]
improve English
Marc Delisle [Wed, 7 Jul 2010 10:13:06 +0000 (7 06:13 -0400)]
revert to previous value and add a comment in default configuration file
Marc Delisle [Tue, 6 Jul 2010 20:58:13 +0000 (6 16:58 -0400)]
bug #
3025975 [auth] Odd LoginCookieValidity default value
Marc Delisle [Fri, 2 Jul 2010 16:28:44 +0000 (2 12:28 -0400)]
document MemoryLimit as being a string value
Marc Delisle [Fri, 2 Jul 2010 16:26:54 +0000 (2 12:26 -0400)]
bug #
3024344 [setup] Setup forces numeric MemoryLimit
Marc Delisle [Fri, 2 Jul 2010 15:22:36 +0000 (2 11:22 -0400)]
clarify code behavior
Marc Delisle [Thu, 1 Jul 2010 11:50:29 +0000 (1 07:50 -0400)]
new FAQ 6.26, selecting a range of rows
Marc Delisle [Thu, 1 Jul 2010 11:34:55 +0000 (1 07:34 -0400)]
typo
Marc Delisle [Wed, 30 Jun 2010 15:35:46 +0000 (30 11:35 -0400)]
bug: avoid loading twice a js file
Marc Delisle [Wed, 30 Jun 2010 13:35:44 +0000 (30 09:35 -0400)]
clarify what is meant by "put the table name"
Marc Delisle [Tue, 29 Jun 2010 12:14:31 +0000 (29 08:14 -0400)]
bug [replication] Do not offer information_schema in the list of databases
