CVS commit: pkgsrc/www

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: pkgsrc/www
From: "Takahiro Kambe" <taca%netbsd.org@localhost>
Date: Wed, 14 Mar 2012 16:24:35 +0000

Module Name:    pkgsrc
Committed By:   taca
Date:           Wed Mar 14 16:24:35 UTC 2012

Modified Files:
        pkgsrc/www/contao: Makefile.common
        pkgsrc/www/contao211: distinfo

Log Message:
Update contao211 pacakge to 2.11.2.

Security release.

Version 2.11.2 (2012-03-14)
---------------------------

### Fixed
Fixed an issue with the CSS3PIE url being incorrectly rewritten (see #4074).

### Fixed
Fixed a security vulnerability in the file manager which allowed back end users
to download files from the `tl_files` directory even if they were not mounted in
their profile (thanks to Marko Cupic).

### Fixed
Fixed a potential XSS vulnerability in the undo module (thanks to Oliver Klee).
The issue is not considered critical, because it requires the script tag to be
in the list of allowed HTML tags, which is not the case by default.

### Fixed
The IDNA convert class did not run under PHP 5.2 (see #4044).


To generate a diff of this commit:
cvs rdiff -u -r1.12 -r1.13 pkgsrc/www/contao/Makefile.common
cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/contao211/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/doc
Next by Date: CVS commit: pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/doc
Next by Thread: CVS commit: pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index