diff options
| author | tron <tron> | 2013-06-29 23:38:30 +0000 |
|---|---|---|
| committer | tron <tron> | 2013-06-29 23:38:30 +0000 |
| commit | f342f0295db878117c0080730a2f3a68a1842b5b (patch) | |
| tree | bdc3ce59e1759920018ae2f6735efde3bdf07593 | |
| parent | adc47927c49cdcb51ec06550cfda2d8bba95679f (diff) | |
| download | pkgsrc-f342f0295db878117c0080730a2f3a68a1842b5b.tar.gz | |
Pullup ticket #4166 - requested by morr
www/wordpress: security update
Revisions pulled up:
- www/wordpress/Makefile 1.32-1.33
- www/wordpress/PLIST 1.15
- www/wordpress/distinfo 1.25
---
Module Name: pkgsrc
Committed By: morr
Date: Mon Jun 24 16:13:21 UTC 2013
Modified Files:
pkgsrc/www/wordpress: Makefile distinfo
Log Message:
Security update to version 3.5.2.
Fixed issues:
* Server-Side Request Forgery (SSRF) via the HTTP API. CVE-2013-2199.
* Privilege Escalation: Contributors can publish posts, and users can reassign authorship. CVE-2013-2200.
* Cross-Site Scripting (XSS) in SWFUpload. CVE-2013-2205.
* Denial of Service (DoS) via Post Password Cookies. CVE-2013-2173.
* Content Spoofing via Flash Applet in TinyMCE Media Plugin. CVE-2013-2204.
* Cross-Site Scripting (XSS) when Uploading Media. CVE-2013-2201.
* Full Path Disclosure (FPD) during File Upload. CVE-2013-2203.
* Cross-Site Scripting (XSS) (Low Severity) when Editing Media. CVE-2013-2201.
* Cross-Site Scripting (XSS) (Low Severity) when Installing/Updating Plugins/Themes. CVE-2013-2201.
* XML External Entity Injection (XXE) via oEmbed. CVE-2013-2202.
---
Module Name: pkgsrc
Committed By: morr
Date: Mon Jun 24 16:16:42 UTC 2013
Modified Files:
pkgsrc/www/wordpress: Makefile
Log Message:
Remove pkgrevision bit
---
Module Name: pkgsrc
Committed By: morr
Date: Thu Jun 27 08:04:57 UTC 2013
Modified Files:
pkgsrc/www/wordpress: PLIST
Log Message:
Fix PLIST file, unbreak build
| -rw-r--r-- | www/wordpress/Makefile | 5 | ||||
| -rw-r--r-- | www/wordpress/PLIST | 3 | ||||
| -rw-r--r-- | www/wordpress/distinfo | 8 |
3 files changed, 7 insertions, 9 deletions
diff --git a/www/wordpress/Makefile b/www/wordpress/Makefile index f1539f05a01..86e47836c90 100644 --- a/www/wordpress/Makefile +++ b/www/wordpress/Makefile @@ -1,8 +1,7 @@ -# $NetBSD: Makefile,v 1.31 2013/03/16 07:21:26 obache Exp $ +# $NetBSD: Makefile,v 1.31.2.1 2013/06/29 23:38:30 tron Exp $ DISTNAME= wordpress-${VERSION} -VERSION= 3.5.1 -PKGREVISION= 1 +VERSION= 3.5.2 CATEGORIES= www MASTER_SITES= http://wordpress.org/ diff --git a/www/wordpress/PLIST b/www/wordpress/PLIST index 5c181ba1635..d86a529f06a 100644 --- a/www/wordpress/PLIST +++ b/www/wordpress/PLIST @@ -1,4 +1,4 @@ -@comment $NetBSD: PLIST,v 1.14 2013/01/27 07:51:37 morr Exp $ +@comment $NetBSD: PLIST,v 1.14.2.1 2013/06/29 23:38:30 tron Exp $ share/doc/wordpress/license.txt share/doc/wordpress/readme.html share/examples/wordpress/wordpress.conf @@ -785,7 +785,6 @@ share/wordpress/wp-includes/js/swfupload/plugins/swfupload.cookies.js share/wordpress/wp-includes/js/swfupload/plugins/swfupload.queue.js share/wordpress/wp-includes/js/swfupload/plugins/swfupload.speed.js share/wordpress/wp-includes/js/swfupload/plugins/swfupload.swfobject.js -share/wordpress/wp-includes/js/swfupload/swfupload-all.js share/wordpress/wp-includes/js/swfupload/swfupload.js share/wordpress/wp-includes/js/swfupload/swfupload.swf share/wordpress/wp-includes/js/thickbox/loadingAnimation.gif diff --git a/www/wordpress/distinfo b/www/wordpress/distinfo index 3edc99ba3da..109a2ae2bce 100644 --- a/www/wordpress/distinfo +++ b/www/wordpress/distinfo @@ -1,5 +1,5 @@ -$NetBSD: distinfo,v 1.24 2013/01/27 07:51:37 morr Exp $ +$NetBSD: distinfo,v 1.24.2.1 2013/06/29 23:38:30 tron Exp $ -SHA1 (wordpress-3.5.1.tar.gz) = 3c1b6e4da8132aa31408bbd2d4e86062a99b77ef -RMD160 (wordpress-3.5.1.tar.gz) = baf0460f7be83f8fc952e4b299010679e17bfd49 -Size (wordpress-3.5.1.tar.gz) = 5012722 bytes +SHA1 (wordpress-3.5.2.tar.gz) = f75e9aadb1c2f754e89aacdfb5ab72bbfb10678d +RMD160 (wordpress-3.5.2.tar.gz) = 3fac241bb418350719c0cb4e5e8dfc433bb5ef11 +Size (wordpress-3.5.2.tar.gz) = 4988077 bytes |