diff options
| author | taca <taca@pkgsrc.org> | 2014-02-03 15:20:39 +0000 |
|---|---|---|
| committer | taca <taca@pkgsrc.org> | 2014-02-03 15:20:39 +0000 |
| commit | 34d4088fd559bb3c3b9768eb91491f785f3b0ac8 (patch) | |
| tree | e15d42dbba5e31caed06b7336ad7d364136b45ed /www/contao | |
| parent | 66394e53b78628405a924aa7adfac5428cde20e5 (diff) | |
| download | pkgsrc-34d4088fd559bb3c3b9768eb91491f785f3b0ac8.tar.gz | |
Update contao211 package to 2.11.14, fix for CVE-2014-1860.
Version 2.11.14 (2014-02-03)
----------------------------
### Fixed
Do not pass POST data to the `deserialize()` function, so it is not vulnerable
to PHP object injection. Thanks to Pedro Ribeiro for his input (see #6695).
Diffstat (limited to 'www/contao')
| -rw-r--r-- | www/contao/Makefile.common | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/www/contao/Makefile.common b/www/contao/Makefile.common index a6f2a00cc98..ec28903381b 100644 --- a/www/contao/Makefile.common +++ b/www/contao/Makefile.common @@ -1,4 +1,4 @@ -# $NetBSD: Makefile.common,v 1.55 2014/01/27 18:41:15 wiz Exp $ +# $NetBSD: Makefile.common,v 1.56 2014/02/03 15:20:39 taca Exp $ # # used by www/contao/Makefile.example" # used by www/contao211/Makefile @@ -8,7 +8,7 @@ CT_MASTER_SITE= https://github.com/contao/core/archive/ # current release -CT211_VERSION= 2.11.13 +CT211_VERSION= 2.11.14 CT31_VERSION= 3.1.5 CT32_VERSION= 3.2.4 |