pkgsrc-Changes-HG archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

[pkgsrc/trunk]: pkgsrc/www/wordpress Security update to Wordpress 3.3.2.



details:   https://anonhg.NetBSD.org/pkgsrc/rev/889ffbe10ea5
branches:  trunk
changeset: 602978:889ffbe10ea5
user:      morr <morr%pkgsrc.org@localhost>
date:      Wed Apr 25 13:00:37 2012 +0000

description:
Security update to Wordpress 3.3.2.

Three external libraries included in WordPress received security updates:

* Plupload (version 1.5.4), which WordPress uses for uploading media.
* SWFUpload, which WordPress previously used for uploading media, and may still be in use by plugins.
* SWFObject, which WordPress previously used to embed Flash content, and may still be in use by plugins and themes.

WordPress 3.3.2 also addresses:

* Limited privilege escalation where a site administrator could deactivate network-wide plugins when running a WordPress network under particular circumstances.
* Cross-site scripting vulnerability when making URLs clickable.
* Cross-site scripting vulnerabilities in redirects after posting comments in older browsers, and when filtering URLs.

diffstat:

 www/wordpress/Makefile |  4 ++--
 www/wordpress/distinfo |  8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diffs (26 lines):

diff -r 4cd8a1cd5d01 -r 889ffbe10ea5 www/wordpress/Makefile
--- a/www/wordpress/Makefile    Wed Apr 25 12:24:12 2012 +0000
+++ b/www/wordpress/Makefile    Wed Apr 25 13:00:37 2012 +0000
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.24 2012/01/04 21:10:33 morr Exp $
+# $NetBSD: Makefile,v 1.25 2012/04/25 13:00:37 morr Exp $
 
 DISTNAME=              wordpress-${VERSION}
-VERSION=               3.3.1
+VERSION=               3.3.2
 CATEGORIES=            www
 MASTER_SITES=          http://wordpress.org/
 
diff -r 4cd8a1cd5d01 -r 889ffbe10ea5 www/wordpress/distinfo
--- a/www/wordpress/distinfo    Wed Apr 25 12:24:12 2012 +0000
+++ b/www/wordpress/distinfo    Wed Apr 25 13:00:37 2012 +0000
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.19 2012/01/04 21:10:33 morr Exp $
+$NetBSD: distinfo,v 1.20 2012/04/25 13:00:37 morr Exp $
 
-SHA1 (wordpress-3.3.1.tar.gz) = c250cf66da88c49c927161172af2264caac6d2d5
-RMD160 (wordpress-3.3.1.tar.gz) = 956a99348b965c2bc0fa4083e5295425958e90a4
-Size (wordpress-3.3.1.tar.gz) = 3879784 bytes
+SHA1 (wordpress-3.3.2.tar.gz) = f4c0ee4d14d3364d158755072a944cd8cf685475
+RMD160 (wordpress-3.3.2.tar.gz) = 1fce1f9402308f9e4689778656a2e7e8fab45211
+Size (wordpress-3.3.2.tar.gz) = 3883667 bytes



Home | Main Index | Thread Index | Old Index