pkgsrc-Changes archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

CVS commit: [pkgsrc-2012Q4] pkgsrc/www/geeklog



Module Name:    pkgsrc
Committed By:   tron
Date:           Mon Feb 25 16:12:48 UTC 2013

Modified Files:
        pkgsrc/www/geeklog [pkgsrc-2012Q4]: Makefile distinfo

Log Message:
Pullup ticket #4079 - requested by taca
www/geeklog: security update

Revisions pulled up:
- www/geeklog/Makefile                                          1.37
- www/geeklog/distinfo                                          1.21

---
   Module Name: pkgsrc
   Committed By:        taca
   Date:                Thu Feb 21 13:01:24 UTC 2013

   Modified Files:
        pkgsrc/www/geeklog: Makefile distinfo

   Log Message:
   Update geeklog to 1.8.2.1 (Geeklog 1.8.2sr1).

   Geeklog History/Changes:

   Feb 19, 2013 (1.8.2sr1)
   ------------

   This release addresses the following security issues:
   - High-Tech Bridge Security Research Lab reported an XSS in the calendar_type
     parameter in the Calendar plugin (HTB23143).
   - Trustwave Spiderlabs reported XSS in the install script, the Configuration,
     as well as in the Admin interfaces for the Polls plugin and the Topic 
editor
     (TWSL2013-001).

   Not security-related:
   - Fixed Twitter OAuth login by switching to version 1.1 of the Twitter API
     (feature request #0001506).


To generate a diff of this commit:
cvs rdiff -u -r1.36 -r1.36.2.1 pkgsrc/www/geeklog/Makefile
cvs rdiff -u -r1.20 -r1.20.2.1 pkgsrc/www/geeklog/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.




Home | Main Index | Thread Index | Old Index