phpMyAdmin - ChangeLog
----------------------
phpMyAdmin - ChangeLog
----------------------
$Id: ChangeLog 9736 2006-11-19 00:27:38Z lem9 $
$Source$
2006-11-18 Marc Delisle
* index.php, libraries/common.lib.php: undefined index
### 2.9.1.1 released from MAINT_2_9_1
2006-11-18 Michal Čihař
* Documentation.html, libraries/ip_allow_deny.lib.php: Define headers
which to trust in configuration, thanks for help with this to Christian
Schmidt, Peytz & Co.
* libraries/common.lib.php: Fix XSS on database comment, thanks to laurent
gaffié.
2006-11-17 Michal Čihař
* sql.php, libraries/display_tbl.lib.php: Force pos to be integer to avoid
XSS.
* left.php: Fix XSS on table comment.
* index.php, libraries/url_generating.lib.php, libraries/common.lib.php,
libraries/select_lang.lib.php: Fix path disclossure while passing array
as some params.
* Documentation.html, libraries/ip_allow_deny.lib.php,
libraries/config.default.php: Trust only listed proxies for IP
Allow/Deny.
2006-11-09 Marc Delisle
### 2.9.1 released from MAINT_2_9_1
2006-11-03 Michal Čihař
* config.sample.inc.php: Make it use CRLF to make Windows users happy.
2006-11-02 Michal Čihař
* Documentation.html: Mention problems with Hardened-PHP.
* lang/dutch: Fix typo, thanks to Thijs Kinkhorst.
2006-11-01 Marc Delisle
### 2.9.1-rc2 released from QA_2_9
2006-10-27 Marc Delisle
* libraries/fpdf/font: replace broken binary files
2006-10-26 Marc Delisle
* error.php, libraries/common.lib.php, /database_interface.lib.php,
/session.inc.php: force utf-8 charset to avoid XSS with crafted URL
and utf-7 in charset; error messages won't display correctly
if the chosen lang is not utf-8
2006-10-26 Michal Čihař
* libraries/import/csv.php: Fix wrong import when ;; is at buffer boundary
(bug #1584836).
* tbl_properties_operations.php: Fix duplicate ID for checkbox (bug #1584770).
* libraries/tbl_properties.inc.php: Check form only when saving table
fields (bug #1566222).
2006-10-25 Michal Čihař
* libraries/export/csv.php: Fix cvs/csv typo (bug #1583509).
2006-10-19 Marc Delisle
* libraries/common.lib.php, /database_interface.lib.php,/session.inc.php:
wrong parameter "char" when calling error.php, should be "charset"
2006-10-19 Michal Čihař
* libraries/common.lib.php: Fix escaping of long query with js (thanks to
Erwin for report).
2006-10-18 Marc Delisle
* db_operations.php, libraries/Table.class.php: bug #1567316,
renaming a db containing a view
2006-10-10 Michal Čihař
* Documentation.html: Sync with trunk.
2006-10-14 Marc Delisle
* libraries/Table.class.php: bug #1567316, renaming a db containing view
(but still some work to ensure proper sequence of renaming)
2006-10-13 Marc Delisle
* css/phpmyadmin.css.php: bug #1517428, some IE 6 versions have
problems loading CSS when zlip.output_compression is on,
thanks to Juergen Wind
* db_details_export.php: select all tables by default to reflect
the default export behavior
2006-10-12 Marc Delisle
* tbl_change.php: bug #1566219, automated timestamp values
2006-10-10 Michal Čihař
* lang/german: Fix typo (translation bug #1467138).
* libraries/import.lib.php: Correctly fail if file is too short (bug #1574340).
* libraries/export/excel.php: Fix MIME type and extension to state before
plugins were introduced (patch #1570742, thanks to ssevennm).
2006-10-09 Michal Čihař
* lang/german: Fix typo (translation bug #1570611).
2006-10-09 Marc Delisle
* libraries/export/sql.php: bug #1562533, problems with unbuffered queries
* Documentation.html: FontFamily, FontFamilyFixed
* themes/original/layout.inc.php: bug #1564409, default FontFamily
2006-10-07 Marc Delisle
* scripts/create-release.sh: use lang-cleanup.sh from the kit,
list all files, and allow non-anonymous access
2006-10-06 Michal Čihař
* scripts/lang-cleanup.sh: Script for removing not installed languages
from libraries/select_lang.lib.php.
* scripts/create-release.sh: Make it better :-):
- Create 7z archives
- Make compression list configurable
- Allow to define which kits to build
- Call scripts/lang-cleanup.sh to remove not wanted languages
- Do not login to cvs if already logged in
2006-10-06 Marc Delisle
* libraries/database_interface.lib.php, bug #1568341, last part of
the fix to avoid problems on Windows servers, thanks to Juergen Wind
2006-10-05 Marc Delisle
* scripts/create-release.sh: starting changes for new kits
TODO: - trimming of libraries/select_lang.lib.php in the kit
- 7zip
- remove gzip ?
2006-10-04 Michal Čihař
* Documentation.html: Fixes thanks to Matt LaPlante.
- Fix Wikipedia URLs (patch #1568498).
- Fix duplicate ids (patch #1568504).
* tbl_replace.php, libraries/config.default.php: Add support for UTC_DATE,
UTC_TIME and UTC_TIMESTAMP functions, based on patch #1563585, thanks to
Alexander Schuch - ci-dev.
* tbl_alter.php: Fix order of includes (bug #1569277).
2006-10-03 Marc Delisle
### 2.9.0.2 released from MAINT_2_9_0
2006-10-03 Michal Čihař
* scripts/setup.php: Sync token name, move it's definition to one place
(bug #1569612).
2006-10-01 Marc Delisle
### 2.9.0.1 released from MAINT_2_9_0
* libraries/database_interface.lib.php: bug #1568341,
case sensitivity in database names
* tbl_relation.php: trap error 1452 when adding a foreign key
and a constraint fails
* libraries/export/sql.php: bug #1550690, wrong export of constraints,
thanks to Robert Vock
2006-09-29 Marc Delisle
* libraries/grab_globals.lib.php: fix attack via _FILES,
thanks to Stefan Esser
* libraries/database_interface.lib.php, bug #1566904, typo in require,
thanks to Björn Wiberg.
* lang/danish: Updated, thanks to AlleyKat
2006-09-27 Marc Delisle
* libraries/common.lib.php, /session.inc.php, /url_generating.lib.php:
security fixes (announcement will come later),
thanks to Sebastian Mendel and Stefan Esser
* libraries/.htaccess: remove potential vulnerability (allow from none),
thanks to Michael Heimpold
### 2.9.1-rc1 released from QA_2_9
2006-09-22 Marc Delisle
* libraries/tbl_properties_links.inc.php: bug #1560152,
after renaming a table the navigation does not work
2006-09-20 Marc Delisle
### 2.9.0 released from QA_2_9
2006-09-19 Marc Delisle
* Documentation.html, libraries/footer.inc.php,
libraries/dbg/profiling.php: remove profiling feature
due to licensing issues (non GPL code)
2006-09-15 Marc Delisle
* lang/finnish: Update, thanks to Yoneh.
* lang/bulgarian: Update, thanks to Stanislav Yordanov.
2006-09-14 Michal Čihař
* db_details_structure.php: Fix table footer when MySQL does not support
collations (bug #1554885, patch #1557269, thanks to Isaac Bennetch).
2006-09-12 Marc Delisle
* libraries/config.default.php, libraries/export/sql.php:
bug #1556934, sql compatibility mode on export
2006-09-08 Marc Delisle
* lang/check_lang.sh: ignore differences in doc_lang
* lang/italian: Update, thanks to Rebe.
### 2.9.0-rc1 released from QA_2_9
2006-09-07 Marc Delisle
* lang/turkish: update, thanks to Burak Yavuz
2006-08-30 Michal Čihař
* libraries/common.lib.php, lang/*: Internationalise link to MySQL
documentation when translation exists, this needs to be defined in
language file (RFE #1547130).
* lang/belarusian_latin-utf-8.inc.php: Fix charset information.
2006-08-29 Michal Čihař
* lang/croatian: Updated, thanks to Renato Pavicic.
2006-08-28 Michal Čihař
* config.sample.inc.php, Documentation.html: Add minimal sample
configuration, so that lazy people won't copy
libraries/config.default.php (RFE #1544570).
2006-08-27 Marc Delisle
* themes/*/layout.inc.php: patch #1523543, possibility of vertical
solid line between frames, thanks to Juergen Wind
2006-08-26 Marc Delisle
* db_operations.php: bug #1544799, undefined variable on db copy
* libraries/common.lib.php: bug #1544734, error messages link outdated,
thanks to René Leonhardt
* lang/norwegian: Update, thanks to Sven-Erik Andersen.
* libraries/tbl_properties.inc.php: bug #1543996, wrong link for message,
thanks to GerardW
2006-08-24 Marc Delisle
### 2.9.0-beta1 released from QA_2_9
2006-08-22 Marc Delisle
* scripts/setup.php: bug #1536112, better fix (in case of
register_globals enabled), thanks to Michal
### 2.8.2.3 released from MAINT_2_8_2
* scripts/setup.php: bug #1544692, version 2.8.2.3 breaks setup.php
on a server with register_globals enabled, thanks to Juergen Wind
### 2.8.2.4 released from MAINT_2_8_2
2006-08-21 Marc Delisle
* libraries/common.lib.php, libraries/auth/cookie.auth.lib.php:
bug #1542875, Cookie auth on IIS
2006-08-20 Marc Delisle
* lang/bulgarian: Update, thanks to Stanislav Yordanov.
2006-08-18 Marc Delisle
* libraries/export/pdf.php: do not display BLOBs on PDF export
* lang/brazilian-portuguese: update, thanks to thedarkness
* lang/catalan update, thanks to Xavier Navarro
2006-08-16 Marc Delisle
* libraries/sqlparser.lib.php: sorting on column header
2006-08-16 Michal Čihař
* libraries/export/htmlexcel.php: Fix charset header of exported HTML/XLS
file (bug #1541100).
2006-08-15 Sebastian Mendel
* lang/german: Updated
2006-08-14 Marc Delisle
### 2.8.2.2 released from MAINT_2_8_2
2006-08-14 Michal Čihař
* scripts/setup.php: Improve readibility (patch #1539976), thanks to Isaac
Bennetch - ibennetch.
* lang/czech: Updated.
2006-08-13 Marc Delisle
* libraries/display_tbl.lib.php: bug #1519799, imagelink error
2006-08-12 Marc Delisle
* libraries/sqlparser.data.php: bug #1492772, parsing EXTRACT YEAR_MONTH
(there were sorting errors in the function names array)
also bug #1534007, STD function not working
* lang/polish: updates, thanks to Jakub Wilk
* lang/swedish: Update, thanks to Björn T. Hallberg.
* lang/italian: Update, thanks to Rebe.
* lang/japanese: Update, thanks to Ishigaki Kenichi.
* lang/belarusian updates, thanks to Jaska Zedlik
2006-08-11 Marc Delisle
* libraries/auth/config.auth.lib.php: bug #1536112, config not loaded
(MySQL error 2002 or 2003)
2006-08-11 Sebastian Mendel
* css\phpmyadmin.css.php, themes\*:
updated themes to 2.9 and some minor fixes
thanks to Juergen Wind for hinting this (patch #1535169)
2006-08-10 Marc Delisle
* lang/danish: Updated, thanks to AlleyKat
* lang/catalan update, thanks to Xavier Navarro
* lang/galician: Update, thanks to Xosé Calvo.
* lang/estonian: Update, thanks to Marko Ellermaa
* lang/russian: update, thanks to Gosha Sakovich
* libraries/common.lib.php: bug #1534475, arbitrary server
2006-08-09 Marc Delisle
* libraries/mysql_charsets.lib.php: bug #1530574:
MySQL 4.1.13 and double quotes in SHOW VARIABLES,
thanks to Herve Pages
* docs.css, Documentation.html: bug #1446538, FAQ numbers missing
* libraries/display_select_lang.lib.php, lang/*: $strLanguage
2006-08-08 Marc Delisle
* db_operations.php: added a FIXME for db copy with Add Constraints
and mysql extension
2006-08-05 Marc Delisle
* libraries/export/sql.php: bug #1527862, export foreign keys is broken
in latest CVS
2006-08-04 Marc Delisle
* tbl_properties_operations.php, libraries/export/sql.php:
bug #1526000, copying table to another db (MYSQL 5.0.24)
* db_details_structure.php: bug #1530574, misaligned HTML
when db_collation is empty
2006-08-03 Sebastian Mendel
* libraries/dbi/mysqli.dbi.lib.php PMA_DBI_try_query(): do not force
MYSQLI_USE_RESULT if not requested, makes PMA_DBI_num_rows() not to work
2006-08-02 Marc Delisle
### 2.8.2.1 released from MAINT_2_8_2
2006-08-02 Sebastian Mendel
* css\phpmyadmin.css.php, themes\darkblue_orange\css\theme_right.css.php
themes\darkblue_orange\layout.inc.php, themes\original\layout.inc.php
themes\original\css\theme_left.css.php,
themes\original\css\theme_right.css.php:
added variables to define (text) color for marked and hovered objects
thanks to Juergen Wind for hinting this bug (patch #1503529)
* Documentation.html: updated style config option descriptions
* libraries/common.lib.php:
- added PMA_escapeJsString() to escape strings for JavaScript inside CDATA blocks
- added PMA_unQuote() to remove quotes from strings
* libraries/footer.inc.php: correctly escape strings inside JavaScript
(part of bug #1532721)
* libraries/sqlparser.lib.php: correctly unquote identifiers
(part of bug #1532721)
* libraries/display_tbl.lib.php:
bug #1524387 incorrectly detects table name for result field
2006-08-01 Marc Delisle
* Documentation.html: patch #1532493 + light editing from me,
thanks to Isaac Bennetch
2006-08-01 Sebastian Mendel
* left.php, libraries/header.inc.php:
do not apply 'vertical scrollbar bug'-fix to IE 7
* changelog.php: updatet CVS URL
* libraries/dbi/mysqli.dbi.lib.php:
bug #1532111 dbi/mysqli: MYSQLI_* constants thanks to Lierduh
2006-07-31 Michal Čihař
* lang/czech: Updated.
2006-07-31 Sebastian Mendel
* lang/german: Updated.
* libraries/common.lib.php: use PMA_Config class for cookie needs,
do not unset not set cookie
* css\phpmyadmin.css.php, libraries\Config.class.php, main.php,
themes\*: make font size user configurable
2006-07-30 Marc Delisle
* libraries/sqlparser.lib.php: bug #1526000, copy table on MySQL 5.0.23+,
thanks to Rapsys Phoenix
2006-07-28 Michal Čihař
* scripts/setup.php: Protect against php code input from user (bug #1530370).
2006-07-27 Marc Delisle
* pdf_pages.php: automatic layout for InnoDB tables
* tbl_properties_operations.php: problem switching from InnoDB to MyISAM
* tbl_printview.php, libraries/mult_submits.inc.php,
libraries/db_table_exists.lib.php:
bug #1521910, with selected ... print view
2006-07-26 Marc Delisle
* server_privileges.php: bug #1526557, display error when admin
lacks some privileges and tries to do a privilege change
* libraries/common.lib.php: bug #1523784, blank page after Edit
in IE6 via IIS
2006-07-22 Marc Delisle
* libraries/display_import.lib.php: the Character set of the file
could appear twice
* tbl_properties_operations.php: handling of AUTO_INCREMENT when moving a
table
2006-07-20 Michal Čihař
* libraries/compat/var_export.php: Dropped due to license problems.
* scripts/setup.php: Implement own var_export.
2006-07-19 Marc Delisle
* browse_foreigners.php: bug #1525393, no page selector in foreign key
browse page
2006-07-19 Michal Čihař
* libraries/compat/var_export.php: Update to fixed version.
2006-07-19 Sebastian Mendel
* lang/german: updated, typos
2006-07-18 Michal Čihař
* libraries/common.lib.php: Fix extension loading on HP-UX (bug #1524776),
thanks to Francois Laupretre.
2006-07-17 Marc Delisle
* libraries/dbi/mysql.dbi.lib.php:
bug #1523623, BIGINT auto_increment and mysql extension
2006-07-16 Marc Delisle
* tbl_change.php: Edit next row did not work in 2.9.0-dev
2006-07-13 Marc Delisle
* main.php: put emphasis on server name
2006-07-12 Marc Delisle
* Documentation.html: patch #1519351, security alerts,
thanks to Juergen Wind
2006-07-09 Michal Čihař
* Documentation.html: Readd accidentally removed quotes.
2006-07-09 Marc Delisle
* tbl_printview.php, db_datadict.php:
bug #1398748, print view and TIMESTAMP NULL
2006-07-09 Sebastian Mendel
* libraries/select_server.lib.php, main.php, libraries/left_header.inc.php:
move server selection in main to the 'right' (below 'phpMyAdmin')
2006-07-08 Sebastian Mendel
* left.php, libraries/header_meta_style.inc.php, libraries/header.inc.php:
fix to remove scrollbar bug in IE without quirks mode
2006-07-07 Marc Delisle
* db_details_qbe.php: deactivated some work in progress
2006-07-06 Marc Delisle
* db_details_structure.php, libraries/db_details_common.inc.php
libraries/db_details_db_info.inc.php:
bug #1518147, after displaying information_schema, displaying other
dbs does not show size
* libraries/auth/config.auth.lib.php: bug #1477402, if default server fails
you cannot switch in config auth
2006-07-06 Sebastian Mendel
* libraries/select_server.lib.php, css/phpmyadmin.css.php:
make serverlist a real html-list
* main.php: move server selection above server
details (more logical)
2006-07-04 Marc Delisle
* db_operations.php, tbl_properties_operations.php,
libraries/Table.class.php, libraries/export/sql.php,
tbl_move_copy.php:
a single-table copy did not copy the constraints;
also bug #1388048, constraints copied too early when copying a db
2006-07-04 Sebastian Mendel
* js\querywindow.js, libraries\footer.inc.php: renamed JavaScript function
refreshLeft() to refreshNavigation()
* libraries/Config.class.php: reload default configuration if config.inc.php
is removed
2006-07-03 Sebastian Mendel
* index.php, js\querywindow.js, querywindow.php, libraries\common.lib.php,
libraries\footer.inc.php, libraries\sql_query_form.lib.php:
bug #1477576 with rtl langs, navi links open in wrong frame
2006-07-02 Marc Delisle
* db_operations.php: undefined $table when copying a db
2006-06-30 Marc Delisle
* libraries/common.lib.php: escape also single quotes
### 2.8.2 released from QA_2_8
2006-06-28 Marc Delisle
* libraries/Config.class.php: remove debug code
* libraries/common.lib.php: escape allowed parameters from non-token
requests
2006-06-27 Michal Čihař
* libraries/import/csv.php: Fix special case of Excel export with ; at the
end (bug #1511046).
* scripts/setup.php, libraries/compat/var_export.php: Add var_export
compatibility wrapper from PEAR PHP_Compat to make setup.php work on PHP
4.1 (bug #1513007).
* libraries/Config.class.php: Recalculate URL only if needed not all times
when using https.
* lang/slovak: Updated, thanks to Tomas Tatransky.
* lang/czech: Translated missing strings.
2006-06-25 Marc Delisle
* libraries/export/pdf.php, libraries/plugin_interface.lib.php, lang/*:
bug #1504218: display an explanation for what is a PDF export
* libraries/database_interface.lib.php: when a db directory has
wrong permissions/ownership, information_shema does not work
for all databases so we revert to SHOW TABLE STATUS
2006-06-23 Marc Delisle
* libraries/Config.class.php: bug #1501027, possible user/password
disclosure when switching from http to https
2006-06-22 Marc Delisle
* libraries/database_interface.lib.php, /export/sql.php, lang/*:
export of procedures and functions. Note: this needs improvement
because currently the DELIMITER for procedures is exported as a
comment. Users could remove the comment marker and feed this
to command-line mysql but it would be better to generate DELIMITER
not as a comment and parse it while importing.
2006-06-21 Marc Delisle
* lang/french: update
* lang/slovak: update, thanks to Tomas Tatransky
* lang/tatarish: update, thanks to Albert Fazlí
* libraries/auth/http.auth.lib.php: bug #1504662, display server message
2006-06-20 Marc Delisle
* libraries/Table.class.php: a typo disabled table copy operation
2006-06-20 Sebastian Mendel
* themes/*/css/theme_right.css.php: bug #1449845 Nowrap in character sets
* libraries/common.lib.php::PMA_linkOrButton():
did not recognize hard coded & when ; is set as url separator in php
* js/querywindow.js, libraries/common.lib.php,
libraries/sql_query_form.lib.php: bug #1490556 Request-URI Too Large
2006-06-15 Marc Delisle
* libraries/sql_query_form.lib.php: Delimiter only if MySQL supports it
2006-06-13 Marc Delisle
* libraries/sql_query_form.lib.php, libraries/import/sql.php, lang/*:
bug # bug #1469699, can't create a stored procedure
Experimental, please test! I added a Delimiter field in the query form
so user can specify his special delimiter;
TODO: fix the display of the query which has a special delimiter
because for now it's empty
2006-06-09 Marc Delisle
* tbl_select.php: bug #1490569, search with LIKE on numeric fields
* libraries/import.lib.php: support display of HANDLER statement results
* libraries/header.inc.php, libraries/auth/http.auth.lib.php,
/cookie.auth.lib.php, removed header_custom.inc.php:
patch #1502453, unnecessary disk access,
thanks to Juergen Wind
* libraries/footer.inc.php, libraries/auth/http.auth.lib.php,
/cookie.auth.lib.php, removed footer_custom.inc.php:
applied the same optimization
2006-06-08 Marc Delisle
* libraries/header.inc.php: bug #1501891, undefined PMA_isSuperuser() when
the default server is 0
2006-06-06 Marc Delisle
* Documentation.html: various fixes, thanks to Cedric Corazza
2006-06-02 Marc Delisle
* libraries/auth/cookie.auth.lib.php: for auth_type='cookie', avoid
showing the "cookies must be enabled" message if they are enabled
* Documentation.html: requirements: web browser with cookies enabled
* libraries/header.inc.php: show message about cookies also
when auth_type = http or config
2006-05-31 Marc Delisle
* libraries/common.lib.php: bug #1498108, support twice the separator
in db name, thanks to Sylvain Derosiaux
2006-05-30 Marc Delisle
* lang/french*: updates
* querywindow.php: $is_superuser was not defined
* sql.php: bug #1490422, lost connection to MySQL server (SELECT DISTINCT)
2006-05-30 Michal Čihař
* libraries/export/sql.php: Fix handling of backquotes (bug #1497239).
* libraries/export/xml.php: Fix export to XML (bug #1497239).
* libraries/plugin_interface.lib.php: Show that plugin has no option if it
has only hidden inputs.
* sql.php: Do not compare db if not defined.
* server_binlog.php, server_processlist.php: No need to grab all results
to memory.
* libraries/export/htmlexcel.php: Fix extension (bug #1497239).
* libraries/export/csv.php: Handle correctly AUTO (bug #1497239).
* lang/*: Remove obsolete messages, add missing ones.
* lang/czech: Updated.
* libraries/session.inc.php: Remove unused code.
* libraries/Table.class.php, libraries/select_lang.lib.php, lang/*: Add
todo translations (bug #1436564).
2006-05-29 Michal Čihař
* lang/galician: Update, thanks to Xosé Calvo.
* lang/japanese: Update, thanks to Ishigaki Kenichi.
* lang/norwegian: Update, thanks to Sven-Erik Andersen.
* lang/italian: Update, thanks to Rebe.
* lang/estonian: Update, thanks to Marko Ellermaa.
* lang/finnish: Update, thanks to Yoneh.
* lang/bulgarian: Update, thanks to Stanislav Yordanov.
* lang/czech: Update.
2006-05-29 Marc Delisle
* main.php: bug #1496881, CVS link broken in main.php
2006-05-26 Marc Delisle
* tbl_change.php: bug #1451426, edit breaks protected BLOB field,
changes it from NULL to empty string
2006-05-23 Marc Delisle
* tbl_change.php, tbl_replace.php: bug #1438999, updating a multi-table
view
2006-05-21 Marc Delisle
* import.php, lang/*: bug #1467804, replaced strNothingToImport
by strNoDataReceived
2006-05-20 Marc Delisle
### 2.8.1 released from MAINT_2_8_1
2006-05-19 Marc Delisle
* db_details_structure.php: indicate on the Sum line that storage type and
collation are the default values
2006-05-18 Marc Delisle
* libraries/check_user_privileges.lib.php, /database_interface.lib.php, /db_details_links.inc.php,
/server_common.inc.php, /header.inc.php: bug #1490193 and code simplification
2006-05-17 Marc Delisle
* server_privileges.php: bug #1478812, Add user (password containing
a backslash); also minor optimization
2006-05-15 Marc Delisle
* libraries/Table.class.php: bug #1475949, removing the default value
2006-05-15 Michal Čihař
* scripts/setup.php: Compatibility with security tokens (bug #1488453).
* scripts/setup.php: Fix detection of writable config (bug #1488447).
* css/phpmyadmin.css.php, libraries/auth/cookie.auth.lib.php,
themes/darkblue_orange/css/theme_right.css.php,
themes/original/css/theme_right.css.php: Not so wide login form (RFE #1445541).
* import.php, export.php: Increase magic contstant to avoid problems with
compression of some specific data (bug #1477029).
2006-05-14 Michal Čihař
* libraries/common.lib.php: Fix reading database list with MySQL wildcards
(bug #1487613).
* changelog.php: There is no reason to make bug uppercase.
2006-05-14 Marc Delisle
* libraries/import.lib.php: bug #1482841, support USE statement in the import file
2006-05-12 Marc Delisle
### 2.8.0.4 released from MAINT_2_8_0
2006-05-12 Michal Čihař
* libraries/footer.inc.php: Escape user input to avoid XSS.
* libraries/common.lib.php, libraries/url_generating.lib.php: Better
handle other URL separator than & (bug #1487365).
2006-05-06 Michal Čihař
* Documentation.html: Describe better regullar expressions in hide_db
(patch #1482049, thanks to Isaac Bennetch).
2006-05-05 Michal Čihař
* libraries/export/sql.php: Fix UPDATE export with extended inserts
enabled (bug #1482103), fix export type selection.
* libraries/select_lang.lib.php: Use GET and POST explicitely as cookies
can override values in REQUEST (bug #1481584).
* lang/czech: Updated.
2006-05-03 Michal Čihař
* Documentation.html: Document OpenDocument export and various fixes.
2006-05-02 Michal Čihař
* libraries/select_lang.lib.php, libraries/Theme_Manager.class.php: Escape
user input (CVE-2006-2031).
* server_databases.php: Fix path to image (needs to be lower case).
* libraries/common.lib.php: Use htmlspecialchars instead of htmlentities,
it doesn't break utf-8.
2006-04-28 Michal Čihař
* Documentation.html, main.php, libraries/config.default.php: Possibility
to hide creating of database from main (RFE #1370100).
* Documentation.html, main.php, libraries/left_header.inc.php:
Customizable link under left logo (RFE #1111599).
* libraries/export/htmlword.php: Fix including column names.
* libraries/export/latex.php: Add missing crlf, remove unused code.
* libraries/export/ods.php: Use correct charset.
* libraries/export/odt.php, lang/*, libraries/config.default.php: Add Open
Document Text export (RFE #1068007).
* libraries/opendocument.lib.php: Add document metainformation.
* libraries/opendocument.lib.php, libraries/export/ods.php,
libraries/export/odt.php: Include styles.xml in Open Document, now it
can be opened in KOffice, Gnumeric and OpenOffice.org.
2006-04-27 Sebastian Mendel
* db_printview.php: fixed bug 'no tables found', refactored
* tbl_change.php, tbl_indexes.php: removed table formating, done in css
2006-04-27 Michal Čihař
* Documentation.html, libraries/config.default.php,
libraries/auth/cookie.auth.lib.php: Logout from all servers by default
(RFE #1370874).
* sql.php: Show results of REPLACE as affected as it contains both deleted
and inserted rows count (bug #1475765).
* libraries/common.lib.php: Better detection of duplicate rows (bug #1477500).
* libraries/display_tbl.lib.php: Do not check for VIEW if no table name
(eg. SELECT 1) (bug #1473484).
* libraries/import/sql.php: Do not strip MySQL conditional statements in
comments (patch #1459782, thanks to unconed).
* Documentation.html: Various fixes in documentation, mostly grammmar
(patch #1453198, thanks to Isaac Bennetch).
* lang/*: Remove *font_family.
* Documentation.html, import.php, querywindow.php, js/functions.js,
libraries/header.inc.php, libraries/import.lib.php: Improve
functionality of limiting DROP DATABASE (bug #1456082).
* libraries/language.lib.php, libraries/common.lib.php,
libraries/database_interface.lib.php, libraries/select_lang.lib.php:
Reload language file after switch to utf-8 translation (bug #1442605).
* tbl_properties_operations.php,
libraries/tbl_properties_table_info.inc.php: Allow to set PACK_KEYS to
DEFAULT (bug #1440966).
2006-04-26 Michal Čihař
* libraries/plugin_interface.lib.php:
- Display information that there are no settings.
- Be more verbose on error.
- Drop tables used for layout.
- Add support for groupping options.
- Support for forcing one of two bool/bgroups.
- Add documentation.
- Support for localised texts in defaults.
* css/phpmyadmin.css.php, themes/darkblue_orange/css/theme_right.css.php,
themes/original/css/theme_right.css.php: New style for non table forms
used in plugins.
* libraries/config.default.php, libraries/display_export.lib.php,
libraries/export/*: Convert export to plugin architecture, so that
plugins are independant piece of code (RFE #1325937).
* db_operations.php, tbl_properties_operations.php,
libraries/Table.class.php: Adapt to changes in export.
* export.php, libraries/export/*: Use plugins for extension and MIME type.
* libraries/export/ods.php, libraries/opendocument.lib.php,
libraries/config.default.php, lang/*: Export to OASIS OpenDocument
Spreadsheet (RFE #1068007).
* lang/czech: Update.
* export.php, libraries/plugin_interface.lib.php, libraries/export/*:
Allow forcing of export to file, it makes no sense to display PDF in
textarea ;-).
* libraries/display_export.lib.php: Reinclude table selection (bug #1477226).
* libraries/auth/cookie.auth.lib.php: Remove unused function.
* libraries/auth/cookie.auth.lib.php, Documentation.html,
libraries/config.default.php: Allow configuration of cookie storage on
client (RFE #1095227).
* server_privileges.php, lang/*: Create database for newly created user
(RFE #479640).
2006-04-26 Sebastian Mendel
* themes/*:
updated themes;
fixed bug #1452131 Fonts too large;
fixed bug #1446211 Colors hardcoded in theme css files;
* libraries/Theme_Manager.class.php: search themes on every script start
* libraries/Theme_Manager.class.php, libraries/Theme.class.php:
use fallback (original) css file if not found in current theme
(no need to include unchanged files into theme, f. e. print.css)
2006-04-25 Michal Čihař
* libraries/common.lib.php: Make cookie login form work with token
protection.
* libraries/auth/cookie.auth.lib.php: Do not include empty values.
* changelog.php: Generate proper XHTML, make URLs clickable.
2006-04-25 Sebastian Mendel
* db_details_qbe.php, db_printview.php, libraries/display_tbl.lib.php,
css/phpmyadmin.css.php, js/functions.js, pdf_pages.php, pdf_schema.php,
server_binlog.php, server_variables.php, tbl_change.php,
transformation_overview.php:
style upgrade
* changelog.php: replaced php short open tag
2006-04-24 Michal Čihař
* main.php: Fix logout link (bug #1474694).
2006-04-21 Michal Čihař
* libraries/import/csv.php: Fix importing files without trailing new line
(bug #1473944).
* Documentation.html: Document problems with PMA_blowfish on clusters of
different architectures (bug #1470912).
* Documentation.html: Document LoginCookieValidity (bug #1473357).
2006-04-20 Michal Čihař
* index.php: Check target against goto_whitelist.
* libraries/url_generating.lib.php, libraries/session.inc.php,
libraries/common.lib.php: Protect against external links which could
perform any action (CVE-2006-1804).
* changelog.php: Link to CAN/CVE security issues, highlight releases, fix
email links, link releases to tags in CVS.
2006-04-13 Marc Delisle
* server_databases.php: need brackets for correct calculation of page
2006-04-13 Sebastian Mendel
* server_databases.php, libraries/database_interface.lib.php:
disable table stats for MySQL 5 by default
* server_databases.php:
use new functionality of PMA_DBI_get_databases_full() to limit display
* libraries/database_interface.lib.php:
- extended PMA_DBI_get_databases_full() to allow limiting and sorting
- added new function PMA_DBI_get_databases_count()
* libraries/config.default.php:
added new paramter to limit maximum displayed databases
* sql.php:
- fixed bug #1469469 cyclic redirect with sql.php as default table-page
- re-use already existing code
* changelog.php:
link also js, html, pl, and sh files, FAQ entries
and contributors to their sf.net user page, smaller regex fixes
2006-04-13 Marc Delisle
* export.php: bug #1443004 part 2: export views after the tables
2006-04-12 Marc Delisle
* export.php: bug #1443004 part 1: do not generate INSERT statements
for an exported VIEW
2006-04-12 Sebastian Mendel
* css/phpmyadmin.css.php:
fixed bug #1446017 red border in outdated themes
* libraries/common.lib.php:
- added option to PMA_arrayWalkRecursive() to use function also on keys
- un-magic_quotes_gpc also keys in GPC arrays
* libraries/db_table_exists.lib.php:
cleanup - what a mess; fixed several undefined variables
* tbl_printview.php:
fixed undefined variable by including libraries/tbl_properties_common.php
* changelog.php:
link users, files, bugs, rfes and patches
* libraries/footer.inc.php:
fixed bug #1454874 Javascript error in new (not framed) print window
* css/phpmyadmin.css.php, scripts/setup.php, test/theme.php
themes/darkblue_orange/css/theme_right.css.php,
themes/original/css/theme_right.css.php:
fixed bug #1444466 theme directory not being processed correctly
* libraries/common.lib.php, libraries/Theme_Manager.class.php:
fixed bug #1469174 configuration changes not accepted in theme manager
* libraries/Theme_Manager.class.php:
fixed bug #1469120 missing property in Theme_Manager class
* libraries/common.lib.php:
fixed bug #1469109 PMA_backquote() issues
2006-04-11 Marc Delisle
* Documentation.html: clarification about config.default.php
2006-04-11 Sebastian Mendel
* tbl_relation.php:
fixed bug #1459418 Add foreign key fail on column with ' in name
* index.php, libraries/auth/cookie.auth.lib.php,
libraries/auth/http.auth.lib.php, libraries/common.lib.php,
libraries/footer.inc.php, libraries/fpdf/fpdf.php,
libraries/grab_globals.lib.php, libraries/header.inc.php,
libraries/ip_allow_deny.lib.php, libraries/select_lang.lib.php,
libraries/Config.class.php:
use PMA_getenv()
* libraries/Config.class.php:
fixed not initilized variable in getCookiePath();
* libraries/common.lib.php:
added PMA_getenv() as a wrapper to $_SERVER, $_ENV, getenv() and apache_getenv()
2006-04-11 Michal Čihař
* lang/galician: Fix missing ; (bug #1468439).
* libraries/Config.class.php: Fix parsing of paths containing : (patch #1461766).
2006-04-10 Michal Čihař
* libraries/Config.class.php: Check also default config mtime (bug #1467620).
* libraries/Config.class.php: Better check for server system (patch #1462738).
* libraries/import/csv.php: Fix parsing of large CSV files (bug #1456331).
2006-04-09 Marc Delisle
* tbl_replace.php, libraries/dbi/mysqli.dbi.lib.php: bug #1255923,
detect and report silent truncation (mysqli only)
2006-04-08 Marc Delisle
* libraries/display_import.lib.php, lang/*: bug #1449793,
respect file_uploads = Off
2006-04-07 Michal Čihař
* scripts/setup.php: Parse correctly new version numbers.
2006-04-06 Marc Delisle
### 2.8.0.3 released from branch MAINT_2_8_0
* themes/*/css/theme_left.css.php, /theme_right.css.php:
protection from unplanned execution path
2006-03-28 Marc Delisle
* libraries/Table_class.php, /sqlparser.lib.php: bug #1458245,
copy a db containing a VIEW
2006-03-26 Marc Delisle
* sql.php: bug #1448890 Column expander doesn't work
* libraries/tbl_properties.inc.php: bug #1458334, undefined offset
* libraries/sqlparser.data.php: bug #1455373, CONVERT in reserved words
2006-03-25 Marc Delisle
* db_operations.php, libraries/Table.class.php,
libraries/display_export.lib.php libraries/export/sql.php:
bug #1401864, DROP VIEW instead of DROP TABLE
2006-03-23 Marc Delisle
* db_operations.php, tbl_properties_operations.php,
libraries/display_export.lib.php, lang/*: start work for bug #1401864,
generation of DROP VIEW statements where appropriate
2006-03-23 Michal Čihař
* libraries/import/sql.php: Fix handling of -- (bug #1453430).
2006-03-23 Alexander M. Turek
* lang/german-*.inc.php: Updates, sync'ed some technical terms with the
German MySQL manual.
2006-03-23 Marc Delisle
* libraries/display_tbl.lib.php: bug #1444417 blobs are centered
* libraries/common.lib.php: patch #1455286, catch 'permission denied'
error on SHOW DATABASES, thanks to Bernard Dautrevaux
2006-03-22 Alexander M. Turek
* lang/spanish-*.inc.php: Updates, thanks to Daniel Hinostroza.
* lang/galician-*.inc.php: Updates, thanks to Xosé Calvo.
2006-03-21 Alexander M. Turek
* libraries/german-*.inc.php:
- Reviewed recently translated strings;
- updated some untranslated messages.
2006-03-21 Marc Delisle
* server_privileges.php: bug #1427707 Priv->user->pass radio buttons
unselectable: Sebastian's fix was not in HEAD
* libraries/Table.class.php: bug #1439002, drop basetable of a view gives
error on overview Table.class.php
2006-03-20 Alexander M. Turek
* Documentation.html: Added a note about Connector/PHP to FAQ 1.17.
2006-03-19 Marc Delisle
* db_details_structure.php: bug #1445853, overhead should use the
same display units
* lang/english*, /french*: use IEC binary units; use "B" for Bytes
and "o" for "Octets" in French
* db_details_importdocsql.php: bug #1444025, dead code about DOCUMENT_ROOT
2006-03-17 Marc Delisle
* libraries/dbi/mysqli.dbi.lib.php: if $cfg['Servers'][$i]['nopassword']
is not defined (using an older config.inc.php), an error is displayed
when login fails
2006-03-17 Michal Čihař
* scripts/setup.php: Allow empty socket (bug #1452142).
2006-03-16 Marc Delisle
* libraries/display_tbl.lib.php: undefined variable when a BLOB is NULL
* libraries/Theme_Manager.class.php: XSS vulnerability
* libraries/common.lib.php: bug #1392554, turn off
zend.ze1_compatibility_mode due to mysqli problems
### 2.8.0.2 released from branch MAINT_2_8_0
2006-03-16 Michal Čihař
* libraries/select_server.lib.php: Move end of fieldset to correct place
after button (patch #1450559).
* libraries/plugin_interface.lib.php: Add support for hidden inputs.
* libraries/common.lib.php: Do not forget wrongly configured servers,
otherwise user gets warning only on first access (RFE #1451521).
* libraries/auth/config.auth.lib.php: Show possible error messages.
* show_config_errors.php, libraries/common.lib.php: Add wrapper to show
config errors even with no error reporting (RFE #1447173).
* scripts/create-release.sh: Use w3m instead of lynx (bug #1451635).
2006-03-15 Michal Čihař
* libraries/export/htmlexcel.php: Fix output handling (bug #1450555).
2006-03-14 Michal Čihař
* lang/czech: Update, use binary prefixes.
* lang/english: Nothing to translate here.
* scripts/setup.php: Fix config loading (bug #1449821).
2006-03-14 Alexander M. Turek
* lang/german-*.inc.php: Use correct binary prefixes for byte units.
2006-03-14 Marc Delisle
* libraries/common.lib.php: bug #1449715, loading of binary data very slow
* server_privileges.php: compatibility with MySQL < 4.0.2
* server_databases.php: bug #1445991, compatibility with MySQL 3.23.52
2006-03-13 Marc Delisle
* libraries/Config.class.php, /common.lib.php: bug #1445120,
cookie login not working on IIS
2006-03-10 Marc Delisle
* libraries/display_tbl.lib.php: reactivate in-line image display
* transformation_wrapper.php: bug #1444121, octetstream download fails
on versions of PHP accepting only one line per header,
thanks to Ryan Schmidt
2006-03-08 Marc Delisle
* libraries/database_interface.lib.php, tbl_create.php,
tbl_properties_operations.php: bug #1444892, TYPE deprecated in
MySQL 5.1
### 2.8.0.1 released from branch MAINT_2_8_0
2006-03-07 Marc Delisle
* libraries/Config.class.php: bug #1444867, does not load config.inc.php
under PHP < 4.3.0, thanks to Julian Ladisch
2006-03-06 Marc Delisle
* main.php: bug #1443337, homepage link
### 2.8.0 released from branch MAINT_2_8_0
2006-03-06 Sebastian Mendel
* libraries/Config.class.php, libraries/select_lang.lib.php,
libraries/footer.inc.php, libraries/ip_allow_deny.lib.php,
libraries/common.lib.php, libraries/header.inc.php,
libraries/grab_globals.lib.php, libraries/auth/cookie.auth.lib.php,
libraries/auth/http.auth.lib.php, libraries/fpdf/fdpf.php, index.php:
replaced $_SERVER and $_ENV with getenv()
PMA should now work without registered $_ENV and $_SERVER variables
2006-03-04 Marc Delisle
* lang/swedish: Update, thanks to Björn T. Hallberg.
* import.php, libraries/common.lib.php: bug #1413880, page status not
preserved on Refresh
* lang/chinese_traditional: Updates, thanks to Siu Sun.
2006-03-03 Michal Čihař
* libraries/Theme_Manager.class.php: Fix include path (bug #1442008).
2006-03-02 Marc Delisle
* libraries/session.inc.php and removed .htaccess:
bug #1411996: now we destroy an auto-started session
### 2.8.0-rc2 released from MAINT_2_8_0 branch
2006-03-02 Michal Čihař
* libraries/display_tbl.lib.php: Fix parameter to transformation (bug #1440926).
* libraries/transformations/application_octetstream__hex.inc.php, lang/*:
Allow to configure how often space is added (RFE #1440384).
2006-02-24 Marc Delisle
* libraries/relation.lib.php: bug #1437754, search combos default to
key zero
* lang/swedish: Update, thanks to Björn T. Hallberg.
2006-02-23 Michal Čihař
* libraries/config.default.php, libraries/header.inc.php,
Documentation.html: More replacements for page title (RFE #1408241).
* contrib/packaging/Fedora/phpMyAdmin.spec: Update.
2006-02-23 Marc Delisle
* libraries/Config.class.php: bug #1418769 part 1: stat failed for
./config.inc.php (under PHP 4)
* sql.php: bug #1437499, LIMIT clause when query ends with semicolon
2006-02-22 Marc Delisle
* libraries/display_tbl.lib.php: bug #1435303, error on empty BLOB transf.
* .htaccess: added a reference to FAQ 1.36
2006-02-22 Michal Čihař
* libraries/iconv_wrapper.lib.php,