pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/pkgsrc-2008Q4]: pkgsrc/www/mediawiki Pullup ticket #2690 - requested ...
details: https://anonhg.NetBSD.org/pkgsrc/rev/fa504c4eace4
branches: pkgsrc-2008Q4
changeset: 552316:fa504c4eace4
user: tron <tron%pkgsrc.org@localhost>
date: Sat Feb 07 19:56:33 2009 +0000
description:
Pullup ticket #2690 - requested by martti
mediawiki: security update
Revisions pulled up:
- www/mediawiki/Makefile 1.4
- www/mediawiki/PLIST 1.3
- www/mediawiki/distinfo 1.3
---
Module Name: pkgsrc
Committed By: martti
Date: Sat Feb 7 11:09:37 UTC 2009
Modified Files:
pkgsrc/www/mediawiki: Makefile PLIST distinfo
Log Message:
Updated www/mediawiki to 1.13.4
A number of cross-site scripting (XSS) security vulnerabilities were
discovered in the web-based installer (config/index.php). These
vulnerabilities all require a live installer -- once the installer has been
used to install a wiki, it is deactivated.
Note that cross-site scripting vulnerabilities can be used to attack any
website in the same cookie domain. So if you have an uninstalled copy of
MediaWiki on the same site as an active web service, MediaWiki could be used
to attack the active service. If you are hosting an old copy of MediaWiki
that you have never installed, we advise you to remove it from the web.
diffstat:
www/mediawiki/Makefile | 4 ++--
www/mediawiki/PLIST | 8 +++++++-
www/mediawiki/distinfo | 8 ++++----
3 files changed, 13 insertions(+), 7 deletions(-)
diffs (86 lines):
diff -r b33c87b3f64a -r fa504c4eace4 www/mediawiki/Makefile
--- a/www/mediawiki/Makefile Sat Feb 07 19:49:37 2009 +0000
+++ b/www/mediawiki/Makefile Sat Feb 07 19:56:33 2009 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: Makefile,v 1.3 2008/12/15 11:54:34 martti Exp $
+# $NetBSD: Makefile,v 1.3.2.1 2009/02/07 19:56:33 tron Exp $
DISTNAME= mediawiki-${VER}.${PVER}
CATEGORIES= www
@@ -15,7 +15,7 @@
PKG_INSTALLATION_TYPES= overwrite pkgviews
VER= 1.13
-PVER= 3
+PVER= 4
APACHE_USER?= www
APACHE_GROUP?= www
diff -r b33c87b3f64a -r fa504c4eace4 www/mediawiki/PLIST
--- a/www/mediawiki/PLIST Sat Feb 07 19:49:37 2009 +0000
+++ b/www/mediawiki/PLIST Sat Feb 07 19:56:33 2009 +0000
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.2 2008/12/15 11:54:34 martti Exp $
+@comment $NetBSD: PLIST,v 1.2.2.1 2009/02/07 19:56:33 tron Exp $
share/examples/mediawiki/mediawiki.conf
share/mediawiki/AdminSettings.sample
share/mediawiki/COPYING
@@ -492,6 +492,7 @@
share/mediawiki/languages/messages/MessagesBn.php
share/mediawiki/languages/messages/MessagesBo.php
share/mediawiki/languages/messages/MessagesBpy.php
+share/mediawiki/languages/messages/MessagesBqi.php
share/mediawiki/languages/messages/MessagesBr.php
share/mediawiki/languages/messages/MessagesBs.php
share/mediawiki/languages/messages/MessagesBug.php
@@ -626,6 +627,7 @@
share/mediawiki/languages/messages/MessagesMap_bms.php
share/mediawiki/languages/messages/MessagesMdf.php
share/mediawiki/languages/messages/MessagesMg.php
+share/mediawiki/languages/messages/MessagesMhr.php
share/mediawiki/languages/messages/MessagesMi.php
share/mediawiki/languages/messages/MessagesMk.php
share/mediawiki/languages/messages/MessagesMl.php
@@ -662,11 +664,13 @@
share/mediawiki/languages/messages/MessagesPam.php
share/mediawiki/languages/messages/MessagesPap.php
share/mediawiki/languages/messages/MessagesPdc.php
+share/mediawiki/languages/messages/MessagesPdt.php
share/mediawiki/languages/messages/MessagesPfl.php
share/mediawiki/languages/messages/MessagesPi.php
share/mediawiki/languages/messages/MessagesPih.php
share/mediawiki/languages/messages/MessagesPl.php
share/mediawiki/languages/messages/MessagesPms.php
+share/mediawiki/languages/messages/MessagesPnb.php
share/mediawiki/languages/messages/MessagesPnt.php
share/mediawiki/languages/messages/MessagesPs.php
share/mediawiki/languages/messages/MessagesPt.php
@@ -677,6 +681,7 @@
share/mediawiki/languages/messages/MessagesRmy.php
share/mediawiki/languages/messages/MessagesRo.php
share/mediawiki/languages/messages/MessagesRoa_rup.php
+share/mediawiki/languages/messages/MessagesRoa_tara.php
share/mediawiki/languages/messages/MessagesRu.php
share/mediawiki/languages/messages/MessagesRuq.php
share/mediawiki/languages/messages/MessagesRuq_cyrl.php
@@ -714,6 +719,7 @@
share/mediawiki/languages/messages/MessagesSw.php
share/mediawiki/languages/messages/MessagesSzl.php
share/mediawiki/languages/messages/MessagesTa.php
+share/mediawiki/languages/messages/MessagesTcy.php
share/mediawiki/languages/messages/MessagesTe.php
share/mediawiki/languages/messages/MessagesTet.php
share/mediawiki/languages/messages/MessagesTg.php
diff -r b33c87b3f64a -r fa504c4eace4 www/mediawiki/distinfo
--- a/www/mediawiki/distinfo Sat Feb 07 19:49:37 2009 +0000
+++ b/www/mediawiki/distinfo Sat Feb 07 19:56:33 2009 +0000
@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.2 2008/12/15 11:54:34 martti Exp $
+$NetBSD: distinfo,v 1.2.2.1 2009/02/07 19:56:33 tron Exp $
-SHA1 (mediawiki-1.13.3.tar.gz) = e6b19d170629c8657742236b9f827a6df0350efd
-RMD160 (mediawiki-1.13.3.tar.gz) = 643d18503d0fccfe97d0916b871813863bc3131f
-Size (mediawiki-1.13.3.tar.gz) = 9252548 bytes
+SHA1 (mediawiki-1.13.4.tar.gz) = 8b9b9761a46309359bba76e3a28521449a90c00f
+RMD160 (mediawiki-1.13.4.tar.gz) = fe71678384906bfd3d0bdd1d0bd0a0e4b86e95f9
+Size (mediawiki-1.13.4.tar.gz) = 9423425 bytes
Home |
Main Index |
Thread Index |
Old Index