From d58869921e67dbed0d54aa4c7da26db4227e3dcd Mon Sep 17 00:00:00 2001 From: morr Date: Wed, 22 Apr 2015 06:38:15 +0000 Subject: Security update to version 4.1.2. Changes: 4.1.1: Maintenance release, fixed 21 bugs. 4.1.2: - A serious critical cross-site scripting vulnerability, which could enable anonymous users to compromise a site. - Files with invalid or unsafe names could be uploaded. - Some plugins are vulnerable to an SQL injection attack. - A very limited cross-site scripting vulnerability could be used as part of a social engineering attack. - Four hardening changes, including better validation of post titles within the Dashboard. --- www/wordpress/Makefile | 4 ++-- www/wordpress/distinfo | 8 ++++---- 2 files changed, 6 insertions(+), 6 deletions(-) (limited to 'www') diff --git a/www/wordpress/Makefile b/www/wordpress/Makefile index 62a0ca87592..e5d220f8f44 100644 --- a/www/wordpress/Makefile +++ b/www/wordpress/Makefile @@ -1,7 +1,7 @@ -# $NetBSD: Makefile,v 1.44 2015/01/02 12:40:59 morr Exp $ +# $NetBSD: Makefile,v 1.45 2015/04/22 06:38:15 morr Exp $ DISTNAME= wordpress-${VERSION} -VERSION= 4.1 +VERSION= 4.1.2 CATEGORIES= www MASTER_SITES= http://wordpress.org/ diff --git a/www/wordpress/distinfo b/www/wordpress/distinfo index d12bbaaca28..69bafd5f91b 100644 --- a/www/wordpress/distinfo +++ b/www/wordpress/distinfo @@ -1,5 +1,5 @@ -$NetBSD: distinfo,v 1.36 2015/01/02 12:40:59 morr Exp $ +$NetBSD: distinfo,v 1.37 2015/04/22 06:38:15 morr Exp $ -SHA1 (wordpress-4.1.tar.gz) = f0437c96ae3d8acaba3579566f1346f4cd06468e -RMD160 (wordpress-4.1.tar.gz) = d695827effaed5cc82341ae171d8a03df10cdc24 -Size (wordpress-4.1.tar.gz) = 6183711 bytes +SHA1 (wordpress-4.1.2.tar.gz) = 9e9745bb8a1166622de866076eac73a49cb3eba0 +RMD160 (wordpress-4.1.2.tar.gz) = 2e0cb1f74cf65fb310fd44a246ce688f69feef6c +Size (wordpress-4.1.2.tar.gz) = 6192717 bytes -- cgit v1.2.3