pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/trunk]: pkgsrc/www/wordpress Security update to Wordpress 3.3.2.
details: https://anonhg.NetBSD.org/pkgsrc/rev/889ffbe10ea5
branches: trunk
changeset: 602978:889ffbe10ea5
user: morr <morr%pkgsrc.org@localhost>
date: Wed Apr 25 13:00:37 2012 +0000
description:
Security update to Wordpress 3.3.2.
Three external libraries included in WordPress received security updates:
* Plupload (version 1.5.4), which WordPress uses for uploading media.
* SWFUpload, which WordPress previously used for uploading media, and may still be in use by plugins.
* SWFObject, which WordPress previously used to embed Flash content, and may still be in use by plugins and themes.
WordPress 3.3.2 also addresses:
* Limited privilege escalation where a site administrator could deactivate network-wide plugins when running a WordPress network under particular circumstances.
* Cross-site scripting vulnerability when making URLs clickable.
* Cross-site scripting vulnerabilities in redirects after posting comments in older browsers, and when filtering URLs.
diffstat:
www/wordpress/Makefile | 4 ++--
www/wordpress/distinfo | 8 ++++----
2 files changed, 6 insertions(+), 6 deletions(-)
diffs (26 lines):
diff -r 4cd8a1cd5d01 -r 889ffbe10ea5 www/wordpress/Makefile
--- a/www/wordpress/Makefile Wed Apr 25 12:24:12 2012 +0000
+++ b/www/wordpress/Makefile Wed Apr 25 13:00:37 2012 +0000
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.24 2012/01/04 21:10:33 morr Exp $
+# $NetBSD: Makefile,v 1.25 2012/04/25 13:00:37 morr Exp $
DISTNAME= wordpress-${VERSION}
-VERSION= 3.3.1
+VERSION= 3.3.2
CATEGORIES= www
MASTER_SITES= http://wordpress.org/
diff -r 4cd8a1cd5d01 -r 889ffbe10ea5 www/wordpress/distinfo
--- a/www/wordpress/distinfo Wed Apr 25 12:24:12 2012 +0000
+++ b/www/wordpress/distinfo Wed Apr 25 13:00:37 2012 +0000
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.19 2012/01/04 21:10:33 morr Exp $
+$NetBSD: distinfo,v 1.20 2012/04/25 13:00:37 morr Exp $
-SHA1 (wordpress-3.3.1.tar.gz) = c250cf66da88c49c927161172af2264caac6d2d5
-RMD160 (wordpress-3.3.1.tar.gz) = 956a99348b965c2bc0fa4083e5295425958e90a4
-Size (wordpress-3.3.1.tar.gz) = 3879784 bytes
+SHA1 (wordpress-3.3.2.tar.gz) = f4c0ee4d14d3364d158755072a944cd8cf685475
+RMD160 (wordpress-3.3.2.tar.gz) = 1fce1f9402308f9e4689778656a2e7e8fab45211
+Size (wordpress-3.3.2.tar.gz) = 3883667 bytes
Home |
Main Index |
Thread Index |
Old Index