CVS commit: pkgsrc/www/wordpress

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/www/wordpress
From: "Daniel Horecki" <morr%netbsd.org@localhost>
Date: Wed, 22 Apr 2015 06:38:15 +0000

Module Name:    pkgsrc
Committed By:   morr
Date:           Wed Apr 22 06:38:15 UTC 2015

Modified Files:
        pkgsrc/www/wordpress: Makefile distinfo

Log Message:
Security update to version 4.1.2.

Changes:

4.1.1:

Maintenance release, fixed 21 bugs.

4.1.2:

- A serious critical cross-site scripting vulnerability, which could enable
  anonymous users to compromise a site.
- Files with invalid or unsafe names could be uploaded.
- Some plugins are vulnerable to an SQL injection attack.
- A very limited cross-site scripting vulnerability could be used as part of a
  social engineering attack.
- Four hardening changes, including better validation of post titles within the
  Dashboard.


To generate a diff of this commit:
cvs rdiff -u -r1.44 -r1.45 pkgsrc/www/wordpress/Makefile
cvs rdiff -u -r1.36 -r1.37 pkgsrc/www/wordpress/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index