diff options
| author | morr <morr@pkgsrc.org> | 2014-08-17 08:48:33 +0000 |
|---|---|---|
| committer | morr <morr@pkgsrc.org> | 2014-08-17 08:48:33 +0000 |
| commit | e8002a786818e8f8976e4e0c8c6aa7c72692d9f7 (patch) | |
| tree | 992d8ab677ed62eb44f0a89d1d4efc1036fec971 | |
| parent | 9dfc9e404d148f78a4aadadec424bf12befa7d1a (diff) | |
| download | pkgsrc-e8002a786818e8f8976e4e0c8c6aa7c72692d9f7.tar.gz | |
Security update to version 3.9.2
Changes:
* Fixes a possible denial of service issue in PHP’s XML processing, reported by
Nir Goldshlager of the Salesforce.com Product Security Team. Fixed by Michael
Adams and Andrew Nacin of the WordPress security team and David Rothstein of
the Drupal security team.
* Fixes a possible but unlikely code execution when processing widgets
(WordPress is not affected by default), discovered by Alex Concha of the
WordPress security team.
* Prevents information disclosure via XML entity attacks in the external GetID3
library, reported by Ivan Novikov of ONSec.
* Adds protections against brute attacks against CSRF tokens, reported by David
Tomaschik of the Google Security Team.
* Contains some additional security hardening, like preventing cross-site
scripting that could be triggered only by administrators.
| -rw-r--r-- | www/wordpress/Makefile | 4 | ||||
| -rw-r--r-- | www/wordpress/PLIST | 3 | ||||
| -rw-r--r-- | www/wordpress/distinfo | 8 |
3 files changed, 8 insertions, 7 deletions
diff --git a/www/wordpress/Makefile b/www/wordpress/Makefile index 07873f4928b..1b7420d3566 100644 --- a/www/wordpress/Makefile +++ b/www/wordpress/Makefile @@ -1,7 +1,7 @@ -# $NetBSD: Makefile,v 1.40 2014/05/16 19:55:07 morr Exp $ +# $NetBSD: Makefile,v 1.41 2014/08/17 08:48:33 morr Exp $ DISTNAME= wordpress-${VERSION} -VERSION= 3.9.1 +VERSION= 3.9.2 CATEGORIES= www MASTER_SITES= http://wordpress.org/ diff --git a/www/wordpress/PLIST b/www/wordpress/PLIST index 885e08a60d9..a6867d136a7 100644 --- a/www/wordpress/PLIST +++ b/www/wordpress/PLIST @@ -1,4 +1,4 @@ -@comment $NetBSD: PLIST,v 1.20 2014/05/16 19:55:07 morr Exp $ +@comment $NetBSD: PLIST,v 1.21 2014/08/17 08:48:33 morr Exp $ share/doc/wordpress/license.txt share/doc/wordpress/readme.html share/examples/wordpress/wordpress.conf @@ -423,6 +423,7 @@ share/wordpress/wp-admin/widgets.php share/wordpress/wp-blog-header.php share/wordpress/wp-comments-post.php share/wordpress/wp-content/index.php +share/wordpress/wp-content/plugins/akismet/.htaccess share/wordpress/wp-content/plugins/akismet/_inc/akismet.css share/wordpress/wp-content/plugins/akismet/_inc/akismet.js share/wordpress/wp-content/plugins/akismet/_inc/form.js diff --git a/www/wordpress/distinfo b/www/wordpress/distinfo index 393127b768e..b407ddb127f 100644 --- a/www/wordpress/distinfo +++ b/www/wordpress/distinfo @@ -1,5 +1,5 @@ -$NetBSD: distinfo,v 1.32 2014/05/16 19:55:07 morr Exp $ +$NetBSD: distinfo,v 1.33 2014/08/17 08:48:33 morr Exp $ -SHA1 (wordpress-3.9.1.tar.gz) = 4c8cded9eb66bc82c9f13e24cfd005be530de52a -RMD160 (wordpress-3.9.1.tar.gz) = 8f1f9afe163a2a40296105453e4cb576de4e0a86 -Size (wordpress-3.9.1.tar.gz) = 5812042 bytes +SHA1 (wordpress-3.9.2.tar.gz) = a2e3518bcf2733f9fa82f7a2bed09ab65ac63c72 +RMD160 (wordpress-3.9.2.tar.gz) = eb0c24aa281885bfab8591d4f99f68255ed270d0 +Size (wordpress-3.9.2.tar.gz) = 5813685 bytes |