Update to 3.20170111. From the changelog:

* passwordauth: prevent authentication bypass via multiple name parameters (CVE-2017-0356, OVE-20170111-0001) * passwordauth: avoid userinfo forgery via repeated email parameter (also in the scope of CVE-2017-0356) * CGI, attachment, passwordauth: harden against repeated parameters (not believed to have been a vulnerability) * remove: make it clearer that repeated page parameter is OK here * t/passwordauth.t: new automated test for passwordauth
author: schmonz <schmonz@pkgsrc.org> 2017-01-12 00:44:15 +0000
committer: schmonz <schmonz@pkgsrc.org> 2017-01-12 00:44:15 +0000
commit: 36d2d23aedb149ed221979f3a8d18076a8e6d874 (patch)
tree: a2095a518cf8a4ead558a9e3c753469316cd3bd2 /www/ikiwiki/Makefile
parent: 424c31360c083ffb1173acbcd3f911f05f2cdd68 (diff)
download: pkgsrc-36d2d23aedb149ed221979f3a8d18076a8e6d874.tar.gz
1 files changed, 2 insertions, 2 deletions
diff --git a/www/ikiwiki/Makefile b/www/ikiwiki/Makefile
index 2f4b62eb0a1..75732f92c5a 100644
--- a/www/ikiwiki/Makefile
+++ b/www/ikiwiki/Makefile
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.147 2017/01/11 02:15:54 schmonz Exp $
+# $NetBSD: Makefile,v 1.148 2017/01/12 00:44:15 schmonz Exp $
 #
 
-DISTNAME=		ikiwiki_3.20170110
+DISTNAME=		ikiwiki_3.20170111
 PKGNAME=		${DISTNAME:S/_/-/}
 CATEGORIES=		www textproc
 MASTER_SITES=		${MASTER_SITE_DEBIAN:=pool/main/i/ikiwiki/}
author	schmonz <schmonz@pkgsrc.org>	2017-01-12 00:44:15 +0000
committer	schmonz <schmonz@pkgsrc.org>	2017-01-12 00:44:15 +0000
commit	36d2d23aedb149ed221979f3a8d18076a8e6d874 (patch)
tree	a2095a518cf8a4ead558a9e3c753469316cd3bd2 /www/ikiwiki/Makefile
parent	424c31360c083ffb1173acbcd3f911f05f2cdd68 (diff)
download	pkgsrc-36d2d23aedb149ed221979f3a8d18076a8e6d874.tar.gz