this comment is no longer true

[phpmyadmin/crack.git] / ChangeLog

----------------------
phpMyAdmin - ChangeLog
----------------------

$Id$
$HeadURL: https://phpmyadmin.svn.sourceforge.net/svnroot/phpmyadmin/trunk/phpMyAdmin/ChangeLog $

+ [import] support handling of DELIMITER to mimic mysql CLI, thanks to fb1
+ improved PHP 6 compatibility
- bug #1674914 [structure] changing definition of a TIMESTAMP field
- bug #1615530 [upload] added more specific error message if field upload fails
- bug #1627210, #1083301, #1482401 [data] warning on duplicate indexes
- bug #1668724 JavaScript focus login Opera
- bug #1666657 [auth] Cookie password delete on timeout / inactivity
- bug #1648802 different mysql library and server version
- bug #1662976 [auth] Authentication fails when controluser/pass is set
- bug #1643758 [import] Error #1264 importing NULL values in MySQL 5.0
- bug #1523747 [innodb] make warning about row count more visible
- bug #1676012 [auth] strip non-US-ASCII characters (RFC2616)
- bug #1679440 Added FAQ entry about header errors under IIS caused by
  an end-of-line character
- [gui] avoid displaying a wide selector in server selection
- bug #1614004 [relation] foreign key spanning multiple columns are
  incorrectly displayed
- bug #1681598 [interface] Edit next row
- bug #1688053 [export] Wrong export of binary character fields
- bug #1498281 [parser] Wrong primary key used for displaying results
  with subquery
- bug #1699772 Visual space bug in table name (in browser)
- bug #1699532 Cause of data manipulation issues: implemented changes
  as suggested by crisp_; still have to work on updating an ENUM value
+ [core] added PMA_fatalError() and made use of it
. [core] added PMA_isValid() and PMA_ifSetOr() for variable handling
. [i18n] use generic $strOptions
. [core] get rid of $propicon
. [core] globalized variables to be includable inside function in
  libraries/select_lang.lib.php
+ [doc] changed all documentation in config.inc.php to phpDocumentor style
+ [data] support for CREATE VIEW from query results
+ [gui] dropped css/ folder and moved into root of PMA
+ [l10n] new: Sinhala, Macedonian
+ [export] YAML export (see yaml.org), thanks to Bryce Thornton
+ [upload] moved file upload functionality into own class
+ [upload] make use of $cfg['TempDir'] for file uploads
+ [server] improved display of binary logs
+ [data] better error handling in tbl_create.php
+ [routines] from Patch #1649881, thanks to Mike Beck
+ [querywindow] store sql history in session
+ [querywindow] sql history now without db too
+ [querywindow] tweaks in sql history view
+ [export] Native Excel (Spreadsheet_Excel_Writer) improvements,
   thanks to Christian Schmidt
+ [doc] requirement of mcrypt on 64-bit, thanks to Isaac Bennetch
+ [lang] Danish update, thanks to Finn Sorensen
+ RFE #1435922 [gui] navigation frame shows listing of databases when none selected
+ [data] support BIT datatype (under mysqli), thanks to Christian Schmidt
+ [display] automatic confirmation for sort by key, thanks to Juergen Wind
+ [data] can now choose the number of insert rows
+ RFE #1704779 [gui] link documentation from login page
+ RFE #1513345 [setup] check control user connection during setup
+ [structure] TRIGGERS: display/edit/drop/SQL export
+ [browse] store browse state in session per query
+ [lang] Turkish update, thanks to Burak Yavuz
+ [lang] Galician update, thanks to Xosé Calvo
+ [lang] Brazilian-Portuguese update, thanks to Airon Luis Pereira
+ [gui] Insert/Edit: no longer display the Go button each 15 lines 
  but just at the end of a row
+ [gui] Query window: use verbose server name if any 
+ [auth] patch #1712514 specify host for single signon, thanks to Thierry
+ [gui] Navigator for the db list in the navigation panel 
+ [gui] Navigator for the table list in the content panel 
- bug #1727138 HTML not encoded (more than 1000 characters)
+ [display] Support for MySQL 5.0.37 profiling 
+ RFE #1743983 [gui] Replace $max_characters by a configurable param:
  $cfg['MaxCharactersInDisplayedSQL']

2.10.3.0 (not yet released)

- bug #1734285 Copy database with VIEWs
- bug #1722502 DROP TABLE in export VIEW
- bug #1729027 Sorting results of VIEW browsing
- bug #1733012 Unwanted table alias in delete button
- bug #1736405 Pretty printer and HTML line breaks
- bug #1745257 Invalid DB name is still displayed

2.10.2.0 (2007-06-15)

+ [data] display all warnings, not only last one
- typo in fix for bug #1671813
- bug #1714908 Inserted Row Count is wrong
- bug #1712570 Deleting last record freezes
- bug #1717339 Missing header when deleting a checked column,
  thanks to Michael Keck
- bug #1717477 Warning on Query page when db is empty
- bug #1721002 db rename -> undefined cfgRelation, thanks to Jürgen Wind
- bug #1721571 CREATE database privilege not always detected,
  thanks to Gordon McNaughton
- bug #1715709 export in SQL format always includes procedures and functions
- bug #1722502 DROP TABLE in export view structure
- bug #1718787 Multi-server setup breaks Designer
- bug #1724401 Column truncation in repair table output
- patch #1726500 Wrong position of </tbody>, thanks to Jürgen Wind
- bug #1728590 Detected failing session_start fails, thanks to Jürgen Wind
- RFE #1714760 Obey ShowCreateDb on the Databases tab
- patch #1733762 Typo in message "INSERT DELAY", thanks to Victor Volkov
- patch #1730171 Dead message strLanguageFileNotFound, thanks to Victor Volkov
- patch #1731280 Avoid negative exponent in gmp_pow(), thanks to anosek

2.10.1.0 (2007-04-23)
=====================

- bug #1541147 [js] '#' in database names not correctly handled by queywindow.js
- bug #1671403 [parser] using "client" as table name
- bug #1672379 [core] Call to undefined function PMA_removeCookie()
- bug [core] undefined variable in libraries/tbl_replace_fields.inc.php
- bug [gui] query window icon did not work, thanks to Jürgen Wind - windkiel
. [general] use PMA_getenv('PHP_SELF')
- bug #1676033 [core] pow(int,int) causes overflow
- bug #1680952 [core] undefined function PMA_getUvaCondition()
- bug #1596328 [export] drop support for POSTGRESQL compatibility mode
- bug #1609443 [privileges] Grant all priv. on wildcard name (fix message)
- bug #1567317 [sqp] Syntax highlighter: extra spaces
- bug #1239401 [sqp] table dot numeric field name
- bug #1672789 [sqp] Undefined offset: 4 in sqlparser.lib.php #1674
- bug #1682044 [export] Export file even if file not selected
- bug #1664212 querywindow loses url encoded characters
- replaced ctype_digit() with is_numeric()
+ [config] clean cookies on phpMyAdmin upgrade
- bug #1674972 [export] no export with %afm%
- bug #1667887 HTML maxlength
- bug #1679055 #1050 - Table '<table name>' already exists
- patch #1681620 [interface] support reordering of $cfg['ColumnTypes'],
  thanks to Leonard den Ottolander
- bug #1690718 Can't edit if BLOB and no PK
- bug #1672636 [export] PDF export too wide
+ [lang] brazilian-portuguese update, thanks to Airon Luis Pereira
- patch #1698964 javascript typo, thanks to Corey Hollaway
- bug #1703897 [css] undefined index 'js_frame'
- bug #1690561 Blobs being cleared on Edit of row
- bug #1679801 [core] XSS vulnerability in PMA_sanitize(), thanks to sp3x SecurityReason
- bug #1704467 XSS vulnerability in browse_foreigners.php, thanks to sp3x SecurityReason

2.10.0.2 (2007-03-02)
=====================

+ bug #1671813 CVE-2006-1549 deep recursion crash

2.10.0.1 (2007-03-01)
=====================

. [config] set $cfg['Servers'][$i]['ssl'] default value to false,
   we got reports from some users having problems with the default value of true

2.10.0.0 (2007-02-28)
=====================

- bug #1659176 [general] memory error displaying a table with large BLOBs
- bug #1668662 [install] can create the new pma_designer_coords table
+ [gui] navi logo now links to main page by default, with still the possibility
  of having an external URL

2007-02-25 Marc Delisle  <lem9@users.sourceforge.net>
    * libraries/common.lib.php: bug #1667466, undefined variable when
      export + save on server
    * server_status.php: bug #1665930, undefined PHP_SELF

2007-02-24 Marc Delisle  <lem9@users.sourceforge.net>
    * libraries/config.default.php: RFE #1621437, HEX and UNHEX were not
      available for a BINARY field

2007-02-21 Marc Delisle  <lem9@users.sourceforge.net>
    * pmd/scripts/move.js: bug #1650770, Designer and Mac OSX,
      thanks to Ivan Kirillov

2007-02-17 Marc Delisle  <lem9@users.sourceforge.net>
    * Documentation.html: patch #1659347, missing doc for some config,
      thanks to Isaac Bennetch
    * libraries/export/sql.php: bug #1663336, undefined variable

2007-02-16 Marc Delisle  <lem9@users.sourceforge.net>
    * libraries/common.lib.php, footer.inc.php: avoid generating big links
      after an upload into a BLOB

2007-02-14 Marc Delisle  <lem9@users.sourceforge.net>
    * libraries/common.lib.php: white page after uploading a 700 Kio BLOB
    * add a warning on main page if mcrypt can't be loaded (bug 1658160)

2007-02-12 Sebastian Mendel <cybot_tm@users.sourceforge.net>
    * libraries/database_interface.lib.php: bug #1616486 server_databases does
      not show all databases
    * libraries/sqlparser.data.php: MySQL function and column names, reserved
      and forbidden words updated,
      bug #1657045 Spatial functions not supported
      bug #1657037 Missing column type "geometry"

2007-02-09 Marc Delisle  <lem9@users.sourceforge.net>
    * main.php: some links should open a new page
    * Documentation.html, libraries/navigation_header.inc.php,
      libraries/config.default.php: $cfg['LeftLogoLinkWindow'] to decide
      in which window the logo-linked page will appear

2007-02-09 Michal Čihař  <michal@cihar.com>
    * lang/czech: Fix syntax error (sorry for that).

2007-02-08 Marc Delisle  <lem9@users.sourceforge.net>
    * themes/darkblue_orange/img/logo_left.png,
      themes/original/img/logo_left.png: smaller PMA logo for navi

2007-02-08 Sebastian Mendel <cybot_tm@users.sourceforge.net>
    * themes/*/css/theme_right.css.php: bug #1653769 browsing highlight disabling
      doesn't work

2007-02-06 Sebastian Mendel <cybot_tm@users.sourceforge.net>
    * pmd_general.php, pmd_pdf.php, pmd_save_pos.php: fixed short open tags
      patch #1652886 thanks to Martin Thielecke - mthie
    * tbl_change.php: fixed escaping of field names in HTML and JavaScript
    * libraries/common.lib.php: PMA_backquote() did not quote 0
    * tbl_change.php: bug #1652810 - slashes are not escaped properly

2007-02-05 Marc Delisle  <lem9@users.sourceforge.net>
    * lang/japanese: Update, thanks to Ishigaki Kenichi - tcool.

2007-02-05 Sebastian Mendel <cybot_tm@users.sourceforge.net>
    * lang/german: updated

2007-02-03 Marc Delisle  <lem9@users.sourceforge.net>
    * pmd/scripts/move.js: display problems in Opera, thanks to Maxim Bulygin

2007-02-02 Marc Delisle  <lem9@users.sourceforge.net>
    * tbl_replace.php: Calendar icon does not work on "Insert another new row"

2007-02-01 Marc Delisle  <lem9@users.sourceforge.net>
    * libraries/import.lib.php: bug #1626064, too much quoting on import

2007-02-01 Sebastian Mendel <cybot_tm@users.sourceforge.net>
    * libraries/display_tbl.lib.php: bug #1644740 - $cfg['Order'] = 'SMART'
      overwritten
    * libraries/Theme.class.php: removed __wakeup() due to some requirements are
      not fulfilled at this point - also thanks to Jürgen Wind - windkiel

2007-01-31 Sebastian Mendel <cybot_tm@users.sourceforge.net>
    * libraries/session.inc.php:
      bug #1630871 - Detecting a missing write permission on sessions directory

2007-01-30 Sebastian Mendel <cybot_tm@users.sourceforge.net>
    * libraries/sqlparser.lib.php PMA_SQP_analyze():
      bug #1647785 - do not pass variables by reference

2007-01-29 Marc Delisle  <lem9@users.sourceforge.net>
    * lang/catalan update, thanks to Xavier Navarro (xavin)
    * pmd_general.php: possibility of quotes in Designer messages,
      thanks to Ivan Kirillov

2007-01-26 Michal Čihař  <michal@cihar.com>
    * libraries/common.lib.php, libraries/js_escape.lib.php,
      test/escape_js_string.php, test/core.lib.php: Move java script escaping
      to separate library, make it safer on </script> escaping and add
      testcase for it.
    * test/theme.php: Move to test package.

2007-01-22 Marc Delisle  <lem9@users.sourceforge.net>
    * pmd/*: button for direct/angular links, thanks to Ivan Kirillov

2007-01-22 Michal Čihař  <michal@cihar.com>
    * lang/czech: Updated.

2007-01-21 Marc Delisle  <lem9@users.sourceforge.net>
    * libraries/Table.class.php: on a MySQL 5.0.33 server with 4400 databases,
      one of which having 400 tables, it took more than 3 minutes just to
      see the database structure (some accesses to INFORMATION_SCHEMA are
      just too slow) so I changed PMA_Table::isView() to avoid calling
      INFORMATION_SCHEMA

2007-01-20 Marc Delisle  <lem9@users.sourceforge.net>
    * libraries/sqlparser.lib.php: bug #1638267, wrong reserved word
      recognition
    * server_privileges.php: bug #1635377, superfluous backslash,
      thanks to Hanut

2007-01-19 Marc Delisle  <lem9@users.sourceforge.net>
    * pmd*, lang/*: Designer now supports set/unset of the display field,
      thanks to Ivan Kirillov

2007-01-18 Michal Čihař  <michal@cihar.com>
    * lang/czech: Updated.
    * libraries/auth/cookie.auth.lib.php: Make server switching honour more
      server settings (patch #1630104).

2007-01-17 Marc Delisle  <lem9@users.sourceforge.net>
    * lang/turkish: update, thanks to Burak Yavuz - bourock

2007-01-16 Marc Delisle  <lem9@users.sourceforge.net>
    ### 2.9.2 released from QA_2_9

2007-01-12 Marc Delisle  <lem9@users.sourceforge.net>
    * (many files): Designer, two features (snap to grid / display field)
      thanks to Ivan Kirillov
    * libraries/Theme_Manager.class.php: patch #1611684, force a change
      of a session variable to avoid phpmyadmin.css.php caching problems,
      thanks to Christian Schmidt

2007-01-11 Marc Delisle  <lem9@users.sourceforge.net>
    * lang/estonian: Update, thanks to Marko Ellermaa - uhuu

2007-01-09 Michal Čihař  <michal@cihar.com>
    * index.php: Properly escape strings written in JS code.
    * libraries/Theme_Manager.class.php: Avoid trigger error here, parameter
      comes from user and it might lead to path disclossure.
    * libraries/common.lib.php:
        - Properly escape </script> in JS code.
        - Check db, table and sql_query params to be string.

2007-01-08 Marc Delisle  <lem9@users.sourceforge.net>
    * libraries/session.inc.php: prevent attack on session name cookie

2007-01-05 Marc Delisle  <lem9@users.sourceforge.net>
    * libraries/session.inc.php: bug #1538132, remove the setting of
      session.save_handler to 'files'
    * pmd_general.php: patch #1627831,
      English language improvements, thanks to Isaac Bennetch
    * pmd_general.php, pmd_relation_new.php, lang/*: abstract messages

2007-01-04 Marc Delisle  <lem9@users.sourceforge.net>
    * pmd/scripts/move.js: avoid text selection when moving a table object
      under MSIE 6, thanks to Ivan Kirillov
    * libraries/db_links.inc.php: better icon for Designer, thanks to I.K.

2007-01-02 Marc Delisle  <lem9@users.sourceforge.net>
    * Designer: various fixes and improvements (for example support
      for MSIE 6), thanks to Ivan Kirillov
    * pdf_pages.php: undefined $pdf_page_number when no auto layout
    * server_privileges.php: bug #1614087, deleting a user having a
      global GRANT privilege fails under MySQL 4.1.x

2007-01-02 Michal Čihař  <michal@cihar.com>
    * libraries/common.lib.php: Add <div> to allow selecting whole SQL by
      tripple click (patch #1611591).
    * libraries/export/sql.php: DELIMITER should not be commented out (bug
      #1612870).

         --- Older ChangeLogs can be found on our project website ---
                     http://www.phpmyadmin.net/old-stuff/ChangeLogs/

# vim: et ts=4 sw=4 sts=4
# vim: ft=changelog fenc=utf-8 encoding=utf-8
# vim: fde=getline(v\:lnum-1)=~'^\\s*$'&&getline(v\:lnum)=~'\\S'?'>1'\:1&&v\:lnum>8&&getline(v\:lnum)!~'^#'
# vim: fdn=1 fdm=expr