From 8aa934914c7d6b6f5ae668fe4c9aa9c54b006420 Mon Sep 17 00:00:00 2001
From: tron <tron@pkgsrc.org>
Date: Tue, 17 Dec 2013 13:10:12 +0000
Subject: Pullup ticket #4274 - requested by taca www/typo3_45: security update
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Revisions pulled up:
- www/typo3_45/Makefile                                         1.28-1.29
- www/typo3_45/PLIST                                            1.13
- www/typo3_45/distinfo                                         1.23-1.24

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Dec  5 16:41:07 UTC 2013

   Modified Files:
   	pkgsrc/www/typo3_45: Makefile distinfo

   Log Message:
   Update typo345 to 4.5.31 (TYPO3 4.5.31).

   2013-11-26  434ce71                  [RELEASE] Release of TYPO3 4.5.31 (TYPO3 Release Team)
   2013-11-19  396534e  #53758          [BUGFIX] Table cache_imagesizes is defined twice (Michiel Roos)
   2013-11-19  3f2ed1d  #53750          [BUGFIX] Scheduler extension sql file is invalid (Michiel Roos)
   2013-11-15  428baac  #17493          [BUGFIX] Fix broken edit icons on cType HTML (Stefan Neufeind)
   2013-11-11  6755f40  #37948          [BUGFIX] Correctly append additionalTreelistUpdateFields (Bart Dubelaar)
   2013-11-11  082facd  #31998          [BUGFIX] Faulty check for missing SMTP port (Stefan Neufeind)
   2013-11-09  c581f33  #29179          [BUGFIX] Escape title, extension, description of scheduler tasks (Stefan Neufeind)
   2013-11-09  7b08aa9  #53195          [BUGFIX] T3editor: Honour fileDenyPattern on saving included TS (Stefan Neufeind)
   2013-11-04  d372f5f  #38055          [BUGFIX] Remove declare(encoding=) (Josef Florian Glatz)
   2013-10-28  5ae438c  #53075          [BUGFIX] Cannot auto-load SC_* classes (Ernesto Baschny)
   2013-10-22  b5d6e9f  #50881          [TASK] Added missing core autoloaded files (Ernesto Baschny)
   2013-10-13  5b072ff  #52759          [BUGFIX] Object passed to date() (Philipp Gampe)
   2013-10-12  6371e46  #52104          [BUGFIX] Wrong calculation of maximum value for checkbox fields (Nicole Cordes)
   2013-10-12  78871e2  #37611          [BUGFIX] Select available page when changing WS (Thorsten Kahler)
   2013-10-11  ce02c01  #36573          [BUGFIX] Add workspace overlay for fetched records. (Anja Leichsenring)
   2013-10-11  d114ddb  #37065          [BUGFIX] Don't show duplicates in workspace preview (Timo Webler)
   2013-10-06  3289c39  #52045          [BUGFIX] EmConfUtility accesses non-arrays (Markus Klein)
   2013-09-27  cd1e12b  #52091,#51684   [BUGFIX] Check for string before using strlen (Markus Klein)
   2013-09-26  c8d2033  #34886          [BUGFIX] CF FileBackend unlimited lifetime support (Dominique Feyer)
   2013-09-18  ef6dc06                  [BUGFIX] Fix cropping of transparent gifs with im6. (Felix Bu$(Q+m(Bnemann)
   2013-09-12  70ce540  #51803          [TASK] Use a 401 header if login is not successful (Georg Ringer)

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Dec 10 15:18:33 UTC 2013

   Modified Files:
   	pkgsrc/www/typo3_45: Makefile PLIST distinfo

   Log Message:
   Update typo3_45 package to 4.5.32 (TYPO3 4.5.32).

   - Fix multiple vulnerabilities in TYPO3 CMS:
   	http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/
   - Enable PHP_VERSIONS_ACCEPTED which was accidently commented out by previous
     commit.

   2013-12-10  1956962                  [RELEASE] Release of TYPO3 4.5.32 (TYPO3 Release Team)
   2013-12-10  60576d1  #31206          [SECURITY] XSS in header link of all content elements (Anja Leichsenring)
   2013-12-10  77dc1c4  #42772          [SECURITY] XSS in colorpicker wizard (Anja Leichsenring)
   2013-12-10  52d3bff  #45043          [SECURITY] Prevent editor controlled hmac content (Franz G. Jahn)
   2013-12-10  cae8739  #20811          [SECURITY] XSS vulnerability in extension manager (Marcus Krause)
   2013-12-10  ba92f0a  #41714          [SECURITY] Information Disclosure in Wizards (Anja Leichsenring)
   2013-12-10  63ff910  #54099          [SECURITY] Fix open redirection in openid extension (Anja Leichsenring)
   2013-12-10  c4d1336  #48187          [SECURITY] feuser_adminLib.inc allows to set arbitrary fields (Steffen Ritter)
   2013-12-10  5342284  #36768          [SECURITY] XSS in be_layout wizard (Anja Leichsenring)
   2013-12-10  b360a1a  #54074          [SECURITY] Remove possible XSS from ActionController Error output (Anja Leichsenring)
   2013-12-10  78ee538  #54073          [SECURITY] Unsafe unserialize of GET parameter in Add-Wizard (Marcus Krause)
   2013-12-08  5aa4ab2  #54282          [BUGFIX] Fix failing test (Anja Leichsenring)
   2013-12-08  6add221  #54280          [BUGFIX] Fix failing test (Anja Leichsenring)
   2013-12-02  0c3fa95  #54124          [BUGFIX] ClientUtility does not detect Internet Explorer 11 (Stefan Neufeind)
   2013-12-02  d353ab0  #54120          Revert "[BUGFIX] Object passed to date()" (Markus Klein)
   2013-11-29  309e93a  #42651          [BUGFIX] ext:adodb Restrict connection wizard to admins (Christian Kuhn)
   2013-11-26  1d95cad  #25157,#45550   [BUGFIX] Distinguish unassigend columns and colPos 0 (Philipp Gampe)
---
 www/typo3_45/Makefile |  4 ++--
 www/typo3_45/PLIST    |  3 ++-
 www/typo3_45/distinfo | 14 +++++++-------
 3 files changed, 11 insertions(+), 10 deletions(-)

diff --git a/www/typo3_45/Makefile b/www/typo3_45/Makefile
index 66bdccf6bcc..86aa640e872 100644
--- a/www/typo3_45/Makefile
+++ b/www/typo3_45/Makefile
@@ -1,4 +1,4 @@
-# $NetBSD: Makefile,v 1.27 2013/09/13 11:23:18 taca Exp $
+# $NetBSD: Makefile,v 1.27.2.1 2013/12/17 13:10:12 tron Exp $
 #
 
 DISTNAME=	${TYPO3NAME}
@@ -16,7 +16,7 @@ DEPENDS+=	${PHP_PKG_PREFIX}-{mysql,pgsql}>=5.1.0:../../databases/php-mysql
 DEPENDS+=	${PHP_PKG_PREFIX}-zlib>=5.2.0:../../archivers/php-zlib/
 DEPENDS+=	${PHP_PKG_PREFIX}-json>=5.2.0:../../textproc/php-json
 
-VER=		4.5.30
+VER=		4.5.32
 NO_BUILD=	yes
 USE_TOOLS+=	pax
 
diff --git a/www/typo3_45/PLIST b/www/typo3_45/PLIST
index 38a0ae12a34..885504c8816 100644
--- a/www/typo3_45/PLIST
+++ b/www/typo3_45/PLIST
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.12 2013/08/04 16:23:57 taca Exp $
+@comment $NetBSD: PLIST,v 1.12.2.1 2013/12/17 13:10:12 tron Exp $
 ${EGDIR}/localconf.php
 ${TYPO3DIR}/${TYPO3NAME}/ChangeLog
 ${TYPO3DIR}/${TYPO3NAME}/GPL.txt
@@ -2771,6 +2771,7 @@ ${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/oracle/scheduler.diff
 ${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/oracle/templavoila.diff
 ${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/postgresql/postgresql-compatibility.sql
 ${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/ChangeLog
+${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/Tests/Unit/tools/class.tx_em_toolsTest.php
 ${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/class.tx_em_api.php
 ${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/class.tx_em_extensionmanager.php
 ${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/conf.php
diff --git a/www/typo3_45/distinfo b/www/typo3_45/distinfo
index cb60a364f15..9b355726bec 100644
--- a/www/typo3_45/distinfo
+++ b/www/typo3_45/distinfo
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.22 2013/09/13 11:23:18 taca Exp $
+$NetBSD: distinfo,v 1.22.2.1 2013/12/17 13:10:12 tron Exp $
 
-SHA1 (dummy-4.5.30.tar.gz) = 6ab310b81369eb52a087f8d6e1103463a237db64
-RMD160 (dummy-4.5.30.tar.gz) = 7eadb757357c917d2dfe1a696ce251e23860dfa8
-Size (dummy-4.5.30.tar.gz) = 9981 bytes
-SHA1 (typo3_src-4.5.30.tar.gz) = 1d868811a39492464e64fa813299bb5a99d5d562
-RMD160 (typo3_src-4.5.30.tar.gz) = 0842b6c2f9d45d3868e4b13eb32a27f8bf994323
-Size (typo3_src-4.5.30.tar.gz) = 20760711 bytes
+SHA1 (dummy-4.5.32.tar.gz) = a004affb516ee82ec4ae42d03101b52dbee622bf
+RMD160 (dummy-4.5.32.tar.gz) = 49cf719e7d2c84290a2ca37f55ecd1f3fd7d01d3
+Size (dummy-4.5.32.tar.gz) = 9978 bytes
+SHA1 (typo3_src-4.5.32.tar.gz) = ce39440fc1f69088dad6f78e7c655990c4300397
+RMD160 (typo3_src-4.5.32.tar.gz) = 48bca0f86d9634d23e3b5f1679c133c711d09836
+Size (typo3_src-4.5.32.tar.gz) = 20769345 bytes
 SHA1 (patch-aa) = dd0847334b30215a822bcdcd9231862d7eab68a6
-- 
cgit v1.2.3