From 3643f793d71928f2a22506a59ac797976690355c Mon Sep 17 00:00:00 2001 From: tron Date: Fri, 13 Nov 2009 11:07:27 +0000 Subject: Pullup ticket #2933 - requested by adrianp wordpress: security update Revisions pulled up: - www/wordpress/Makefile 1.6 - www/wordpress/PLIST 1.4 - www/wordpress/distinfo 1.5 --- Module Name: pkgsrc Committed By: adrianp Date: Thu Nov 12 22:05:55 UTC 2009 Modified Files: pkgsrc/www/wordpress: Makefile PLIST distinfo Log Message: Update to 2.8.6 - 2.8.5 * Fix for trackback DOS * Removal of permalink_structure eval * Remove some create_function() calls * Disallow unfiltered uploads by default, even for admins. Enable it again with define('ALLOW_UNFILTERED_UPLOADS', true); in wp-config.php * Add extra escapes here and there for some backside coverage * Retire two old importers * A few small bug fixes - 2.8.6 * Fixed an XSS vulnerability in Press This * Fixed issue with sanitizing uploaded file names that can be exploited in certain Apache configurations --- www/wordpress/Makefile | 4 ++-- www/wordpress/PLIST | 4 +--- www/wordpress/distinfo | 8 ++++---- 3 files changed, 7 insertions(+), 9 deletions(-) diff --git a/www/wordpress/Makefile b/www/wordpress/Makefile index 14463e03cbb..893a1fa63b6 100644 --- a/www/wordpress/Makefile +++ b/www/wordpress/Makefile @@ -1,7 +1,7 @@ -# $NetBSD: Makefile,v 1.5 2009/08/12 20:21:10 adrianp Exp $ +# $NetBSD: Makefile,v 1.5.2.1 2009/11/13 11:07:27 tron Exp $ DISTNAME= wordpress-${VERSION} -VERSION= 2.8.4 +VERSION= 2.8.6 CATEGORIES= www MASTER_SITES= http://wordpress.org/ diff --git a/www/wordpress/PLIST b/www/wordpress/PLIST index 9c4dff9334f..5e7b3b9e7ea 100644 --- a/www/wordpress/PLIST +++ b/www/wordpress/PLIST @@ -1,4 +1,4 @@ -@comment $NetBSD: PLIST,v 1.3 2009/07/28 21:20:20 adrianp Exp $ +@comment $NetBSD: PLIST,v 1.3.2.1 2009/11/13 11:07:27 tron Exp $ share/doc/wordpress/license.txt share/doc/wordpress/readme.html share/examples/wordpress/wordpress.conf @@ -133,10 +133,8 @@ share/wordpress/wp-admin/images/yes.png share/wordpress/wp-admin/import.php share/wordpress/wp-admin/import/blogger.php share/wordpress/wp-admin/import/blogware.php -share/wordpress/wp-admin/import/btt.php share/wordpress/wp-admin/import/dotclear.php share/wordpress/wp-admin/import/greymatter.php -share/wordpress/wp-admin/import/jkw.php share/wordpress/wp-admin/import/livejournal.php share/wordpress/wp-admin/import/mt.php share/wordpress/wp-admin/import/opml.php diff --git a/www/wordpress/distinfo b/www/wordpress/distinfo index e04849fc2e4..0742718a3ff 100644 --- a/www/wordpress/distinfo +++ b/www/wordpress/distinfo @@ -1,5 +1,5 @@ -$NetBSD: distinfo,v 1.4 2009/08/12 20:21:10 adrianp Exp $ +$NetBSD: distinfo,v 1.4.2.1 2009/11/13 11:07:27 tron Exp $ -SHA1 (wordpress-2.8.4.tar.gz) = af9a37283b25f26a3a3aa3a7c5db23222e18e0fc -RMD160 (wordpress-2.8.4.tar.gz) = ab449a9d20737d7fb032f6f1a247e16adba88fc4 -Size (wordpress-2.8.4.tar.gz) = 2078669 bytes +SHA1 (wordpress-2.8.6.tar.gz) = 01a996c57f54a95cf6e457b61082f520a82ad1b5 +RMD160 (wordpress-2.8.6.tar.gz) = 309816cbb85463e511d10eacc9066a5bc1c93438 +Size (wordpress-2.8.6.tar.gz) = 2078596 bytes -- cgit v1.2.3