CVS commit: pkgsrc/www

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/www
From: "Takahiro Kambe" <taca%netbsd.org@localhost>
Date: Mon, 3 Feb 2014 15:20:39 +0000

Module Name:    pkgsrc
Committed By:   taca
Date:           Mon Feb  3 15:20:39 UTC 2014

Modified Files:
        pkgsrc/www/contao: Makefile.common
        pkgsrc/www/contao211: distinfo

Log Message:
Update contao211 package to 2.11.14, fix for CVE-2014-1860.

Version 2.11.14 (2014-02-03)
----------------------------

### Fixed
Do not pass POST data to the `deserialize()` function, so it is not vulnerable
to PHP object injection. Thanks to Pedro Ribeiro for his input (see #6695).


To generate a diff of this commit:
cvs rdiff -u -r1.55 -r1.56 pkgsrc/www/contao/Makefile.common
cvs rdiff -u -r1.18 -r1.19 pkgsrc/www/contao211/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/net/dnscheck
Next by Date: CVS commit: pkgsrc/www
Previous by Thread: CVS commit: pkgsrc/net/dnscheck
Next by Thread: CVS commit: pkgsrc/www
Indexes:

Home | Main Index | Thread Index | Old Index