pkgsrc-Bugs archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

pkg/33942: www/ja-trac 0.9.5.1 have breach of privacy and denial of service vulnerability, should update to 0.9.6.1.

>Number:         33942
>Category:       pkg
>Synopsis:       www/ja-trac 0.9.5.1 have breach of privacy and denial of 
>service vulnerability, should update to 0.9.6.1
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    pkg-manager
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Fri Jul 07 17:15:00 +0000 2006
>Originator:     OBATA Akio
>Release:        NetBSD 3.0.0_STABLE
>Organization:
        LINS, Japan.
>Environment:
System: NetBSD miki.lins.jp 3.0.0_STABLE NetBSD 3.0.0_STABLE (MIKI) #17: Fri 
Jun 16 20:50:15 JST 2006 
obata%miki.lins.jp@localhost:/usr/src/sys/arch/i386/compile/MIKI i386
Architecture: i386
Machine: i386
>Description:
        from ChangeLog:

        Trac-0.9.6-ja-1 (Jul 7, 2006)

         * Merge trac-0.9.6
         * Update to current statement.
           * README.trac-ja
           * wiki-default/TracJa

        Trac 0.9.6  (Jul 6, 2006)
        http://svn.edgewall.com/repos/trac/tags/trac-0.9.6

         * Fixed reStructuredText breach of privacy and denial of service 
vulnerability
           found by Felix Wiemann.
         * trac-post-commit-hook fixes.
         * Fixed bugs: #2894, #3058, #3209 #3325.

>How-To-Repeat:
        N/A
>Fix:
        Here is a patch for update:

Index: www/ja-trac/Makefile
===================================================================
RCS file: /home/cvsroot/NetBSD/pkgsrc/www/ja-trac/Makefile,v
retrieving revision 1.3
diff -u -r1.3 Makefile
--- www/ja-trac/Makefile        26 Apr 2006 16:09:49 -0000      1.3
+++ www/ja-trac/Makefile        7 Jul 2006 16:47:58 -0000
@@ -1,8 +1,8 @@
 # $NetBSD: Makefile,v 1.3 2006/04/26 16:09:49 salo Exp $
 #
 
-DISTNAME=      trac-0.9.5-ja-1
-PKGNAME=       ja-trac-0.9.5.1
+DISTNAME=      trac-0.9.6-ja-1
+PKGNAME=       ja-trac-0.9.6.1
 CATEGORIES=    www devel
 MASTER_SITES=  http://www.i-act.co.jp/project/products/downloads/
 EXTRACT_SUFX=  .zip
Index: www/ja-trac/distinfo
===================================================================
RCS file: /home/cvsroot/NetBSD/pkgsrc/www/ja-trac/distinfo,v
retrieving revision 1.3
diff -u -r1.3 distinfo
--- www/ja-trac/distinfo        26 Apr 2006 16:09:49 -0000      1.3
+++ www/ja-trac/distinfo        7 Jul 2006 16:48:17 -0000
@@ -1,6 +1,6 @@
 $NetBSD: distinfo,v 1.3 2006/04/26 16:09:49 salo Exp $
 
-SHA1 (trac-0.9.5-ja-1.zip) = 940108934a6c56d6617c4551ab756410623d6e38
-RMD160 (trac-0.9.5-ja-1.zip) = 4ff0792c721f27309843ff442e18082cf428ed3f
-Size (trac-0.9.5-ja-1.zip) = 502764 bytes
+SHA1 (trac-0.9.6-ja-1.zip) = 9872fe0952b131b4eae35a46d76b11289bd77a84
+RMD160 (trac-0.9.6-ja-1.zip) = 4c529921f3171269fdc44b779d365e12ba1b5943
+Size (trac-0.9.6-ja-1.zip) = 503233 bytes
 SHA1 (patch-aa) = 577475956c91ae995bbffb03ac5f8e8752912475
Home | Main Index | Thread Index | Old Index