pkgsrc-changes: CVS commit: pkgsrc/www/trac

Subject: CVS commit: pkgsrc/www/trac
To: None <pkgsrc-changes@NetBSD.org>
From: Thomas Klausner <wiz@netbsd.org>
List: pkgsrc-changes
Date: 03/10/2007 20:55:34

Module Name:	pkgsrc
Committed By:	wiz
Date:		Sat Mar 10 20:55:34 UTC 2007

Modified Files:
	pkgsrc/www/trac: Makefile distinfo

Log Message:
Update to 0.10.3.1:

Trac 0.10.3.1 (March 8, 2007)
http://svn.edgewall.org/repos/trac/tags/trac-0.10.3.1

 Trac 0.10.3.1 is a security release:
 * Always send "Content-Disposition: attachment" headers where potentially
   unsafe (user provided) content is available for download. This behaviour
   can be altered using the "render_unsafe_content" option in the
   "attachment" and "browser" sections of trac.ini.
 * Fixed XSS vulnerability in "download wiki page as text" in combination with
   Microsoft IE. Reported by Yoshinori Oota, Business Architects Inc.


To generate a diff of this commit:
cvs rdiff -r1.24 -r1.25 pkgsrc/www/trac/Makefile
cvs rdiff -r1.17 -r1.18 pkgsrc/www/trac/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.