{"update": {"autokarma": false, "autotime": false, "stable_karma": 3, "stable_days": 0, "unstable_karma": -3, "require_bugs": false, "require_testcases": false, "display_name": "", "notes": "phpMyAdmin 4.0.10.1 (2014-07-17)\r\n================================\r\n\r\n- XSS injection due to unescaped table name (triggers)\r\n- XSS in AJAX confirmation messages \r\n\r\n\r\nphpMyAdmin 4.0.10.0 (2013-12-04)\r\n================================\r\n\r\n- Clicking database name in query window opens a new tab\r\n- Wrong page is shown after editing; also, do not show a modal dialog for multi-row edit\r\n- PHP NavigationTree error when paging through list\r\n- Support A10 Networks load balancer\r\n- Row deleting isn't binlogs friendly\r\n- Setup script does not recognize manually-configured server\r\n- Events page says no privileges with ALL PRIVILEGES\r\n\r\n\r\nphpMyAdmin 4.0.9.0 (2013-11-04)\r\n===============================\r\n\r\n- Can't edit updatable view when searching\r\n- Missing refresh by deleting databases\r\n- Drizzle server charset notice\r\n- Filtering database names includes empty groupings\r\n- Does not display or manipulate bit(64) fields appropriately\r\n- Unneeded navi panel refresh\r\n- SSL redirects to port 80\r\n- DROP DATABASE displays wrong database name\r\n- Running delete query asks for confirmation but says it was already executed\r\n- Accessibility: Images without Alt nor title attribute\r\n\r\n\r\nphpMyAdmin 4.0.8.0 (2013-10-06)\r\n===============================\r\n\r\n- Rename view is not working\r\n- Interaction between linkified fields and grid editing\r\n- Table grouping isn't implemented properly\r\n- Browser tries to remember wrong password when creating new user\r\n- Edit Index on big table doesn't show \"Loading\" or any message\r\n- Default table tab is ignored\r\n- Server/library difference warning: setting is ignored\r\n- Table tree group strategy\r\n- ALTER TABLE ORDER BY and InnoDB\r\n- Tracking report: cannot delete a statement\r\n- Drizzle navigation doesn't expand\r\n- GIS column editor: point not displayed\r\n- Drizzle tables in navigation are shown as views\r\n- NUL symbols added to the end of database dump file\r\n- More disappears in table Structure\r\n- Multi-row edit doesn't clear values when checking NULL\r\n\r\n\r\nphpMyAdmin 4.0.7.0 (2013-09-23)\r\n===============================\r\n\r\n- Sorting in database overview with statistics doesn't work\r\n- Handle the situation where PHP_SELF is not set\r\n- Overwrite existing file not obeyed\r\n- Database-specific privileges are not copied when cloning user\r\n- Error handling in case MySQL extension is missing\r\n- Moving Columns will alter column definition\r\n- Insert ignore option does not work\r\n- Downloading BLOB downloads page template\r\n- Clicking on table name in view of information_schema redirects to wrong page\r\n- Copy Table Add AUTO_INCREMENT value checkbox not working\r\n- MySQL server version at index.php incorrect w/ controlhost\r\n- Import error: Class 'ImportOds' not found\r\n- Missing DROP VIEW button\r\n\r\n\r\nphpMyAdmin 4.0.6.0 (2013-09-05)\r\n===============================\r\n\r\n- Call to undefined function mb_detect_encoding (clarify the doc)\r\n- Missing hints when changing a column's structure\r\n- Cannot select foreign value in Search\r\n- gzip export is not actually compressed with mod_deflate\r\n- query analysis doesn't launch in status monitor\r\n- Add pmahomme icon credits (FamFamFam silk icon set)\r\n- Table structure statistics \"Space usage\" caption too small for l10n\r\n- Wrong tabindex when inserting rows\r\n- varchar field not truncated in table browse mode\r\n- Opening database should expand it in the navigation menu\r\n- Removed ShowTooltip directive\r\n- Exporting huge Tables causes memory-Problems\r\n\r\n\r\nphpMyAdmin 4.0.5.0 (2013-08-04)\r\n===============================\r\n\r\n- Not detected configuration storage\r\n- Pressing enter in the filter field reloads page\r\n- Cannot insert in this table (PHP < 5.4)\r\n- Reloading privileges does not update the interface\r\n- NavigationBarIconic config not honored\r\n- Call to undefined function mb_detect_encoding\r\n- Analyze option not shown for InnoDB tables\r\n- Forcing a storage engine for configuration storage\r\n- Incorrect Drizzle 7 detection\r\n- Create database if not exists (export): add an option to the interface to enable generating CREATE DATABASE and USE (false by default)\r\n- Crash on CSV file import\r\n- Statistic Monitor shows only last 3 digits in graph\r\n- Non-permanent SQL history not working\r\n- Transformations for text/plain on a BLOB column\r\n- Improved protection against cross framing, see PMASA-2013-10\r\n- Reinstated configuration directive: AllowThirdPartyFraming\r\n\r\n\r\nphpMyAdmin 4.0.4.0 (2013-06-17)\r\n===============================\r\n\r\n- Using DefaultTabDatabase in NavigationTree for Database Click\r\n- Avoid Suhosin warning when in simulation mode\r\n- Row Statistics and Space usage bugs\r\n- Only display \"table has no unique column\" message when applicable\r\n- NavigationBarIconic config not honored\r\n- Default language wrong with zh-TW\r\n- Call to undefined function PMA_isSuperuser() if default server is not set\r\n- Ctrl/shift + click opens links in same window\r\n- Import using https does not work\r\n- Missing removeCRLF option in ExportCsv and ExportExcel plugins\r\n- Drop not working Visio schema export.\r\n- Better handling of invalid ODS documents\r\n- Number of pages\r\n- User privileges, database name unescaped\r\n\r\n\r\nphpMyAdmin 4.0.3.0 (2013-06-05)\r\n===============================\r\n\r\n- Recent tables list always empty\r\n- Do not translate \"Open Document\" in export settings\r\n- List of tables is missing after expanding in the navigation frame\r\n- Warnings about reserved word for many non reserved words\r\n- Exporting row selection, resulted by ORDER BY query\r\n- Cookies must be enabled past this point\r\n- \"Browse foreign values\" search filter / page selector not working\r\n- NOW() function incorrectly selected (partial regression)\r\n- Javascript execution vulnerability in Create view, reported by Maxim Rupp (see PMASA-2013-6)\r\n\r\n\r\nphpMyAdmin 4.0.2.0 (2013-05-24)\r\n===============================\r\n\r\n- Cannot browse when table name contains keyword \"call\"\r\n- Center loading indicator for navigation refresh, related to bug #3920\r\n- Table sorting in navigation panel is case-sensitive\r\n- Import of CSV file (Replace table data with file) with duplicate values\r\n- Undefined variables, function parameter problems\r\n- Structure not refreshed after column drop\r\n- View is not updatable\r\n- PropertiesIconic not honored\r\n- Databases to choose for specific privileges show up escaped\r\n- Export database with empty table as a php array, does not produce valid PHP\r\n- Query profiler chart not loading from SQL Query page\r\n- Missing CSV import option \"Do not abort on INSERT error\"\r\n- Missing Operations>Table options>AUTO_INCREMENT\r\n- Missing CREATE DATABASE statement when exporting at database level\r\n- Show warning when CSV file does not contain data for all columns\r\n- Missing Sql Query after modify structure\r\n- Server export problems\r\n- CountTables directive is deprecated\r\n\r\n\r\nphpMyAdmin 4.0.1.0 (2013-05-14)\r\n===============================\r\n\r\n- Import broken for CSV using LOAD DATA\r\n- When login fails and error display is active, login data is displayed\r\n- Web server upload directory import fails\r\n- Server upload folder import file name missing in success message\r\n- Add retry button on connection failure with config auth\r\n- Provide feedback if no columns selected for multi-submit\r\n- Incorrect select field change on ctrl key navigation in Firefox\r\n- display_binary_as_hex option causes unexpected behavior\r\n- Git commit links to Github missing\r\n- CSP WARN in Firefox console\r\n- Setup script warning for config auth (stored login data) shows link BBcode\r\n- Fixed getting BLOB data\r\n- Custom Exporting exports all databases\r\n- Import of CSV File to selected table doesn't work\r\n- Browsing an empty table should not display its Structure\r\n- Calendar widget improperly redirects to home\r\n- Missing scrollbar (original theme)\r\n- Add tcpdf path to vendor_config.php\r\n- Bug fix compat with tcpdf >= 6.0 (tested with 6.0.012)\r\n\r\n\r\nphpMyAdmin 4.0.0\r\n================\r\n\r\n- HTML frames are gone and the navigation panel now presents a tree.\r\n- This version requires Javascript.\r\n- Many bug fixes and smaller new features.\r\n- Documentation has a new look and contains an index.", "type": "security", "status": "stable", "request": null, "severity": "unspecified", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2014-07-19 18:27:55", "date_modified": "2014-07-23 19:40:00", "date_approved": null, "date_testing": "2014-07-23 22:40:54", "date_stable": "2014-08-07 11:46:18", "alias": "FEDORA-EPEL-2014-1940", "test_gating_status": null, "from_tag": null, "date_pushed": "2014-08-07 11:46:18", "meets_testing_requirements": false, "url": "https://bodhi.stg.fedoraproject.org/updates/FEDORA-EPEL-2014-1940", "title": "phpMyAdmin-4.0.10.1-1.el6", "version_hash": "ef8239c8b922d356ee76c28d5c424d09e5aa2551", "release": {"name": "EL-6", "long_name": "Fedora EPEL 6", "version": "6", "id_prefix": "FEDORA-EPEL", "branch": "el6", "dist_tag": "dist-6E-epel", "stable_tag": "dist-6E-epel", "testing_tag": "dist-6E-epel-testing", "candidate_tag": "dist-6E-epel-testing-candidate", "pending_signing_tag": "", "pending_testing_tag": "", "pending_stable_tag": "", "override_tag": "dist-6E-epel-override", "mail_template": "fedora_epel_legacy_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "unspecified", "testing_repository": null, "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "robert", "email": "redhat@linuxnetz.de", "id": 172, "avatar": "https://seccdn.libravatar.org/avatar/5ce2f7b6de1c95bdf5b1d0f117f568f9955a164c0916ea7552b5db21bf3e689a?s=24&d=retro", "openid": "robert.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "ambassadors"}, {"name": "campusambassadors"}, {"name": "gitfedora-web"}, {"name": "fedora-contributor"}, {"name": "advocates"}, {"name": "fedorabugs"}, {"name": "gitsecurity-spin"}, {"name": "signed_fpca"}, {"name": "gitfama"}, {"name": "epel-packagers-sig"}, {"name": "web"}, {"name": "clamav"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by robert. ", "timestamp": "2014-07-19 18:28:16", "update_id": 20047, "user_id": 91, "id": 151274, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update is currently being pushed to the Fedora EPEL 6 testing updates repository.", "timestamp": "2014-07-20 16:11:32", "update_id": 20047, "user_id": 91, "id": 151275, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing", "timestamp": "2014-07-20 17:59:47", "update_id": 20047, "user_id": 91, "id": 151276, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": -1, "karma_critpath": 0, "text": "phpMyAdmin 4.2.6 requires MySQL 5.5+ and doesn't work with MySQL 5.1", "timestamp": "2014-07-22 09:05:28", "update_id": 20047, "user_id": 203, "id": 151277, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "mstevens", "email": "ms@unix9.com", "id": 203, "avatar": "https://seccdn.libravatar.org/avatar/66cdd58f5ace3c9703b685ce40fdb67023b566459b5d44a8768d0cb55407bd1c?s=24&d=retro", "openid": "mstevens.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been unpushed", "timestamp": "2014-07-22 09:51:23", "update_id": 20047, "user_id": 172, "id": 151278, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "robert", "email": "redhat@linuxnetz.de", "id": 172, "avatar": "https://seccdn.libravatar.org/avatar/5ce2f7b6de1c95bdf5b1d0f117f568f9955a164c0916ea7552b5db21bf3e689a?s=24&d=retro", "openid": "robert.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "ambassadors"}, {"name": "campusambassadors"}, {"name": "gitfedora-web"}, {"name": "fedora-contributor"}, {"name": "advocates"}, {"name": "fedorabugs"}, {"name": "gitsecurity-spin"}, {"name": "signed_fpca"}, {"name": "gitfama"}, {"name": "epel-packagers-sig"}, {"name": "web"}, {"name": "clamav"}]}}, {"karma": 0, "karma_critpath": 0, "text": "robert has edited this update. New build(s): phpMyAdmin-4.0.10.1-1.el6. Removed build(s): phpMyAdmin-4.2.6-1.el6.", "timestamp": "2014-07-23 19:39:55", "update_id": 20047, "user_id": 91, "id": 151279, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by robert. ", "timestamp": "2014-07-23 19:40:11", "update_id": 20047, "user_id": 91, "id": 151280, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update is currently being pushed to the Fedora EPEL 6 testing updates repository.", "timestamp": "2014-07-23 20:40:29", "update_id": 20047, "user_id": 91, "id": 151281, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing", "timestamp": "2014-07-23 22:40:54", "update_id": 20047, "user_id": 91, "id": 151282, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes", "timestamp": "2014-08-06 23:17:26", "update_id": 20047, "user_id": 91, "id": 151283, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by robert. ", "timestamp": "2014-08-06 23:44:26", "update_id": 20047, "user_id": 91, "id": 151284, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update is currently being pushed to the Fedora EPEL 6 stable updates repository.", "timestamp": "2014-08-07 05:45:54", "update_id": 20047, "user_id": 91, "id": 151285, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable", "timestamp": "2014-08-07 11:46:18", "update_id": 20047, "user_id": 91, "id": 151286, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "phpMyAdmin-4.0.10.1-1.el6", "signed": true, "release_id": null, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 548260, "title": "phpMyAdmin bundles tcpdf", "security": false, "parent": false, "feedback": []}, {"bug_id": 959946, "title": "phpMyAdmin-4.2.5 is available", "security": false, "parent": false, "feedback": []}, {"bug_id": 989660, "title": "CVE-2013-4998 CVE-2013-4999 CVE-2013-5000 phpMyAdmin: Multiple full path disclosure flaws (PMASA-2013-12)", "security": true, "parent": true, "feedback": []}, {"bug_id": 989668, "title": "CVE-2013-5003 phpMyAdmin: SQL injection leading to 'control user' role privilege escalation (PMASA-2013-15)", "security": true, "parent": true, "feedback": []}, {"bug_id": 989679, "title": "phpMyAdmin: various flaws [epel-6]", "security": true, "parent": false, "feedback": []}, {"bug_id": 993613, "title": "CVE-2013-5029 phpMyAdmin: ClickJacking protection can be bypassed (PMASA-2013-10)", "security": true, "parent": true, "feedback": []}, {"bug_id": 993618, "title": "CVE-2013-5029 phpMyAdmin: ClickJacking protection can be bypassed (PMASA-2013-10) [epel-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1000261, "title": "phpMyAdmin contains bundled Flash files", "security": false, "parent": false, "feedback": []}, {"bug_id": 1067713, "title": "CVE-2014-1879 phpMyAdmin: XSS in import.php", "security": true, "parent": true, "feedback": []}, {"bug_id": 1067715, "title": "CVE-2014-1879 phpMyAdmin: XSS in import.php [epel-6]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1117600, "title": "CVE-2014-4348 phpMyAdmin: Self-XSS due to unescaped HTML output in recent/favorite tables navigation", "security": true, "parent": true, "feedback": []}, {"bug_id": 1117601, "title": "CVE-2014-4349 phpMyAdmin: Self-XSS due to unescaped HTML output in navigation items hiding feature", "security": true, "parent": true, "feedback": []}, {"bug_id": 1117603, "title": "CVE-2014-4349 CVE-2014-4348 phpMyAdmin: various flaws [epel-6]", "security": true, "parent": false, "feedback": []}], "updateid": "FEDORA-EPEL-2014-1940", "karma": 0, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}