Alpine 3.21 & phpMyAdmin 5.2.2

phpMyAdmin

• fix possible security issue in sql-parser which could cause long execution times that could create a DOS attack (thanks to Maximilian Krög https://github.com/MoonE)
• fix an XSS vulnerability in the check tables feature (PMASA-2025-1, thanks to bluebird https://github.com/blue-bird1)
• fix an XSS vulnerability in the Insert tab (PMASA-2025-2, thanks to frequent contributor Kamil Tekiela https://github.com/kamil-tekiela)
• fix possible security issue with library code slim/psr7 (CVE-2023-30536)
• fix possible security issue relating to iconv (CVE-2024-2961, PMASA-2025-3)
• fix a full path disclosure in the Monitoring tab
• issue #18268 Fix UI issue the theme manager is disabled
• issue Allow opening server breadcrumb links in new tab with Ctrl/Meta key
• issue #19141 Add cookie prefix '-__Secure-' to cookies to help prevent cookie smuggling
• issue #18106 Fix renaming database with a view
• issue #18120 Fix bug with numerical tables during renaming database
• issue #16851 Fix ($cfg['Order']) default column order doesn't have have any effect since phpMyAdmin 4.2.0
• issue #18258 Speed improvements when exporting a database
• issue #18769 Improved collations support for MariaDB 10.10

Move to Nginx Unit

This is a small update to switch out nginx/PHP-fpm for Nginx unit/php

You should not see any difference in function, but has a smaller footprint

Alpine 3.20

Update to Alpine v3.20

Alpine 3.19 & PHP 8.2

• update Apline to 3.19.1
• update to PHP 8.2

Alpine 3.19

Update to Alpine 3.19

Alpine 3.18

This is a bug fix for Alpine to v3.18

phpMyAdmin 5.2.1

Welcome to the release of phpMyAdmin version 5.2.1. This is a bugfix release that also contains a security fix for an XSS vulnerability in the drag-and-drop upload functionality (PMASA-2023-01).

This release contains many bug fixes.

Some highlights include:

• issue #17506 Fix error when configuring 2FA without XMLWriter or Imagick
• issue #17519 Fix Export pages not working in certain conditions
• issue #17121 Fix password_hash function incorrectly adding single quotes to password before hashing
• issue #17736 Add utf8mb3 as an alias of utf8 on the charset description page
• issue #17248 Support the UUID data type for MariaDB >= 10.7
• issue #16042 Fixes malformed downloads when using gzip compression type and FireFox browser
• Add spellcheck="false" to all password fields and some text fields to avoid spell-jacking data leaks
• Fixes for JavaScript errors when using Designer
• Fixes for PHP 8.2 compatibility

There are, of course, many more fixes and new features that you can see in the ChangeLog file included with this release or online at https://demo.phpmyadmin.net/master-config/index.php?route=/changelog

Released 2023-01-26

• Update Alpine to 3.17
• Update github actions

Released 2022-05-18

ALPINE LINUX 3.16.0 RELEASED

We are pleased to announce the release of Alpine Linux 3.16.0, the first in the v3.16 stable series.

Highlights

• Various improvements in the setup scripts:
  • Better support for NVMe
  • Administrator user creation
  • Possibility to add SSH keys
  • New setup-desktop script for easy install of desktop environment
• Go 1.18
• LLVM 13
• Node.js (current) 18.2
• Ruby 3.1
• Rust 1.60
• GNOME 42
• KDE Plasma 5.24 / KDE Applications 22.04 / Plasma Mobile Gear 22.04
• Python 3.10
• PHP 8.1
• R 4.2
• Xen 4.16
• Podman 4.0

Deprecation notes

• php7 was removed.

Released 2022-05-18

Welcome to the release of phpMyAdmin version 5.2.0. This release contains many new features and quite a few bug fixes. Simultaneously, we are releasing phpMyAdmin 5.1.4, which is the last release of the 5.1 line and is intended to help downstream packaging teams.

Most notably, these releases resolve a networking error when exporting a file (phpmyadmin/phpmyadmin#17445).

Some highlights of 5.2.0 include:

• Removed support for Microsoft Internet Explorer
• Requires PHP 7.2 or newer
• Requires the openssl PHP extension
• Improved handling of system CA bundle and cacert.pem, falling back to Mozilla CA if needed
• Replace "master/slave" terms with "primary/replica"
• Add "NOT LIKE %...%" operator to Table search
• Add support for the Mroonga engine
• Add support for account locking
• Several fixes and improvements to the SQL parser library