pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: pkgsrc/www/wordpress

Module Name:    pkgsrc
Committed By:   morr
Date:           Fri Jun 29 10:40:14 UTC 2012

Modified Files:
        pkgsrc/www/wordpress: Makefile PLIST distinfo

Log Message:
Security update to version of Wordpress 3.4.1.


Wordpress 3.4.1:

* Fixes an issue where a theme’s page templates were sometimes not detected.
* Addresses problems with some category permalink structures.
* Better handling for plugins or themes loading JavaScript incorrectly.
* Adds early support for uploading images on iOS 6 devices.
* Allows for a technique commonly used by plugins to detect a network-wide 
* Better compatibility with servers running certain versions of PHP (5.2.4, 5.4)
or with uncommon setups (safe mode, open_basedir), which had caused warnings or
in some cases prevented emails from being sent.

Additionally: Version 3.4.1 fixes a few security issues and contains some 
hardening. These issues were discovered and fixed by the WordPress security 

* Privilege Escalation/XSS. Critical. Administrators and editors in multisite
were accidentally allowed to use unfiltered_html for 3.4.0.
* CSRF. Additional CSRF protection in the customizer.
* Information Disclosure: Disclosure of post contents to authors and 
(such as private or draft posts).
* Hardening: Deprecate wp_explain_nonce(), which could reveal unnecessary 
* Hardening: Require a child theme to be activated with its intended parent 

Wordpress 3.4:

* Enhanced theme control
    * Customize theme options before activating a new theme using Theme 
    * Use Theme Previewer to customize current theme without changing the 
front-end design

* Custom Headers
    * Improved Custom Headers with flexible sizes
    * Selecting Custom Header Images and Custom Background Images from Media 
Library Screen

* Media improvements
    * Support HTML in image captions

* Under the Hood improvements
    * Improvements in WordPress internationalization and localization (more 
    * Different split in translation POT files for faster translations
    * Codex XML-RPC information update accessed via XML-RPC_WordPress_API
    * WP_Query improvements

To generate a diff of this commit:
cvs rdiff -u -r1.25 -r1.26 pkgsrc/www/wordpress/Makefile
cvs rdiff -u -r1.11 -r1.12 pkgsrc/www/wordpress/PLIST
cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/wordpress/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Home | Main Index | Thread Index | Old Index