CVS commit: pkgsrc/www

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/www
From: "Takahiro Kambe" <taca%netbsd.org@localhost>
Date: Mon, 24 Nov 2014 13:30:50 +0000

Module Name:    pkgsrc
Committed By:   taca
Date:           Mon Nov 24 13:30:49 UTC 2014

Modified Files:
        pkgsrc/www/contao: Makefile.common
        pkgsrc/www/contao33: Makefile distinfo

Log Message:
Update contao33 to 3.3.7, security release.

Version 3.3.7 (2014-11-24)
--------------------------

### Fixed
Fixed a potential directory traversal vulnerability.

### Fixed
Fixed a severe XSS vulnerability. In this context, the insert tag flags
`base64_encode` and `base64_decode` have been removed.

### Fixed
Handle nested insert tags in strip_insert_tags().

### Fixed
Correctly store the model in Dbafs::addResource() (see #7440).

### Fixed
Send the request token when toggling the visibility of an element (see #7406).

### Fixed
Always apply the IE security fix in the Environment class (see #7453).

### Fixed
Correctly handle archives being part of multiple RSS feeds (see #7398).

### Fixed
Correctly handle `0` in utf8_convert_encoding() (see #7403).

### Fixed
Send a 301 redirect to forward to the language root page (see #7420).


To generate a diff of this commit:
cvs rdiff -u -r1.84 -r1.85 pkgsrc/www/contao/Makefile.common
cvs rdiff -u -r1.5 -r1.6 pkgsrc/www/contao33/Makefile
cvs rdiff -u -r1.7 -r1.8 pkgsrc/www/contao33/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index