phpMyAdmin 2.11

From PmaWiki
(Redirected from phpMyAdmin 2.11.0)
Jump to: navigation, search

2.11.10.0 (2009-12-07)

  • [core] safer handling of temporary files with open_basedir (thanks to Thijs Kinkhorst)
  • [core] do not automatically set and create TempDir, it might lead to security issue (thanks to Thijs Kinkhorst)
  • [setup] avoid usage of (un)serialize, what might be unsafe in some cases

2.11.9.6 (2009-10-12)

  • [security] XSS and SQL injection, thanks to Herman van Rink

2.11.9.5 (2009-03-24)

  • [security] XSS vulnerability on export page
  • [security] Insufficient output sanitizing when generating configuration file

2.11.9.4 (2008-12-09)

  • [security] possible XSRF on several pages

2.11.9.3 (2008-10-30)

  • [security] XSS in a Designer component

2.11.9.2 (2008-09-22)

  • [security] XSS in MSIE using NUL byte, thanks to JPCERT.

2.11.9.1 (2008-09-15)

  • [security] Code execution vulnerability, thanks to Norman Hippert

2.11.9.0

Improvements:

  • [import] support handling of DELIMITER to mimic mysql CLI, thanks to fb1
  • improved PHP 6 compatibility
  • [core] added PMA_fatalError() and made use of it
  • [doc] changed all documentation in config.default.php to phpDocumentor style
  • [data] support for CREATE VIEW from query results
  • [gui] dropped css/ folder and moved into root of PMA
  • [l10n] new: Sinhala, Macedonian
  • [export] YAML export (see yaml.org), thanks to Bryce Thornton
  • [upload] moved file upload functionality into own class
  • [upload] make use of $cfg['TempDir'] for file uploads
  • [server] improved display of binary logs
  • [data] better error handling in tbl_create.php
  • [routines] from Patch #1649881, thanks to Mike Beck
  • [querywindow] store sql history in session
  • [querywindow] sql history now without db too
  • [querywindow] tweaks in sql history view
  • [export] Native Excel (Spreadsheet_Excel_Writer) improvements, thanks to Christian Schmidt
  • [doc] requirement of mcrypt on 64-bit, thanks to Isaac Bennetch
  • RFE #1435922 [gui] navigation frame shows listing of databases when none selected
  • [data] support BIT datatype (under mysqli), thanks to Christian Schmidt
  • [display] automatic confirmation for sort by key, thanks to Juergen Wind
  • [data] can now choose the number of insert rows
  • RFE #1704779 [gui] link documentation from login page
  • RFE #1513345 [setup] check control user connection during setup
  • [structure] TRIGGERS: display/edit/drop/SQL export
  • [browse] store browse state in session per query
  • [gui] Insert/Edit: no longer display the Go button each 15 lines but just at the end of a row
  • [gui] Query window: use verbose server name if any
  • [auth] patch #1712514 specify host for single signon, thanks to Thierry
  • [gui] Navigator for the db list in the navigation panel
  • [gui] Navigator for the table list in the content panel
  • [display] Support for MySQL 5.0.37 profiling
  • RFE #1743983 [gui] Replace $max_characters by a configurable param: $cfg['MaxCharactersInDisplayedSQL']
  • [display] patch #1749705, Allow multibyte characters in number formatting, thanks to garas
  • [privileges] Support password hashing on the Edit Privileges interface
  • [gui] Export: Select All/Unselect All over the choices, thanks to Florian Schmitz

Fixes:

  • bug #1674914 [structure] changing definition of a TIMESTAMP field
  • bug #1615530 [upload] added more specific error message if field upload fails
  • bug #1627210, #1083301, #1482401 [data] warning on duplicate indexes
  • bug #1668724 JavaScript focus login Opera
  • bug #1666657 [auth] Cookie password delete on timeout / inactivity
  • bug #1648802 different mysql library and server version
  • bug #1662976 [auth] Authentication fails when controluser/pass is set
  • bug #1643758 [import] Error #1264 importing NULL values in MySQL 5.0
  • bug #1523747 [innodb] make warning about row count more visible
  • bug #1676012 [auth] strip non-US-ASCII characters (RFC2616)
  • bug #1679440 Added FAQ entry about header errors under IIS caused by an end-of-line character
  • [gui] avoid displaying a wide selector in server selection
  • bug #1614004 [relation] foreign key spanning multiple columns are incorrectly displayed
  • bug #1681598 [interface] Edit next row
  • bug #1688053 [export] Wrong export of binary character fields
  • bug #1498281 [parser] Wrong primary key used for displaying results with subquery
  • bug #1699772 Visual space bug in table name (in browser)
  • bug #1699532 Cause of data manipulation issues: implemented changes as suggested by crisp_; still have to work on updating an ENUM value
  • bug #1747215 Export emits blanks at line ends
  • bug #1751172 Do not export data when exporting a single VIEW
  • bug #1755339 Warn about rename dataase actually being copy/delete
  • bug #1746921 Left frame shrinks on db change, thanks to Juergen Wind
  • bug #1727138 HTML not encoded (more than 1000 characters)
  • bug #1746186 LeftLogoLink fails if set to some external site
  • bug #1759528 browse_foreigners fails due to newlines, thanks to Hanno Boeck
  • bug #1766975 Parameters lost when editing stored routine
  • bug #1766633 Incorrect export with specified MySQL port, thanks to Jürgen Wind
  • bug #1751553 Drop-down instead of input when editing
  • bug #1771721 Old SVN URLs

Detailed list of changes is usually available under http://www.phpmyadmin.net/ChangeLog.txt or refer to the ChangeLog in the distribution kit.

Personal tools