Bump adodb/adodb-php from 5.21.0 to 5.21.4 #479

dependabot · 2022-01-27T15:38:13Z

Bumps adodb/adodb-php from 5.21.0 to 5.21.4.

Release notes

Sourced from adodb/adodb-php's releases.

v5.21.4

Security hotfix release addressing a critical vulnerability in PostgreSQL connections (CVE-2021-3850, see advisory GHSA-65mj-7c86-79jf). Thanks to Emmet Leahy (@meme-lord) of Sorcery Ltd for reporting this vulnerability.

See the Changelog for details.

v5.21.3

Hotfix release, see Changelog for details.

v5.21.2

Hotfix release, see Changelog for details.

v5.21.1

This is a Hotfix release, fixing over 15 issues and improving PHP 8 compatibility.

Please see the Changelog for details.

Changelog

Sourced from adodb/adodb-php's changelog.

[5.21.4] - 2022-01-22

[5.20.21] - 2022-01-22

Fixed

Methods return E_DEPRECATED with PHP8.1 #771

Security

pgsql: authentication bypass in connect functions (CVE-2021-3850) #793

[5.21.3] - 2021-10-31

Fixed

core: Ensure temp $ADODB_COUNTRECS changes really are temporary #761

mysqli: force error reporting mode to OFF (PHP 8.1 compatibility) #755

pdo: fix metaIndexes declaration to match parent #717

[5.21.2] - 2021-08-22

Fixed

Fix syntax error in toexport.inc.php #749

pgsql: fix fetchField() parameter naming #752

[5.21.1] - 2021-08-15

Changed

Standardized source code file headers #728

Code cleanup: PHPDoc, code style, whitespace, etc. #691 (and others)

Fixed

Caching in FieldTypesArray() causes problems #687

... (truncated)

Commits

c3e6a36 Bump version to 5.21.4
918dde1 Merge branch 'hotfix/5.20' into hotfix/5.21
937cd4f Reset version to avoid merge conflicts
9957860 Update Changelog
794f631 Methods return E_DEPRECATED with PHP8.1, see #771
6c38e6c Bump version to 5.20.21
cfdc1aa Update Changelog
b6f3603 Methods return E_DEPRECATED with PHP8.1, see #771
9289a3a Merge pull request from GHSA-65mj-7c86-79jf
6d02431 Merge pull request from GHSA-65mj-7c86-79jf
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
@dependabot use these labels will set the current labels as the default for future PRs for this repo and language
@dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
@dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
@dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language