CVS commit: [pkgsrc-2013Q3] pkgsrc/www/typo3_47

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: [pkgsrc-2013Q3] pkgsrc/www/typo3_47
From: "Matthias Scheler" <tron%netbsd.org@localhost>
Date: Mon, 16 Dec 2013 17:22:21 +0000

Module Name:    pkgsrc
Committed By:   tron
Date:           Mon Dec 16 17:22:21 UTC 2013

Modified Files:
        pkgsrc/www/typo3_47 [pkgsrc-2013Q3]: Makefile PLIST distinfo
Added Files:
        pkgsrc/www/typo3_47 [pkgsrc-2013Q3]: MESSAGE

Log Message:
Pullup ticket #4270 - requested by taca
www/typo3_47: security update

Revisions pulled up:
- www/typo3_47/MESSAGE                                          1.1
- www/typo3_47/Makefile                                         1.19-1.20
- www/typo3_47/PLIST                                            1.10
- www/typo3_47/distinfo                                         1.14-1.15

---
   Module Name: pkgsrc
   Committed By:        taca
   Date:                Thu Dec  5 16:42:21 UTC 2013

   Modified Files:
        pkgsrc/www/typo3_47: Makefile distinfo
   Added Files:
        pkgsrc/www/typo3_47: MESSAGE

   Log Message:
   Update typo347 to 4.7.16 (TYPO3 4.7.16).

   2013-11-26  95a730f                  [RELEASE] Release of TYPO3 4.7.16 
(TYPO3 Release Team)
   2013-11-19  5975854  #53758          [BUGFIX] Table cache_imagesizes is 
defined twice (Michiel Roos)
   2013-11-19  7d0a241  #53750          [BUGFIX] Scheduler extension sql file 
is invalid (Michiel Roos)
   2013-11-11  90f4945  #31998          [BUGFIX] Faulty check for missing SMTP 
port (Stefan Neufeind)
   2013-11-11  f328884  #47040          [BUGFIX] Enable treeConfig overriding 
by Page TSconfig (Stefan Neufeind)
   2013-11-09  2c82f33  #29179          [BUGFIX] Escape title, extension, 
description of scheduler tasks (Stefan Neufeind)
   2013-11-09  d683693  #53195          [BUGFIX] T3editor: Honour 
fileDenyPattern on saving included TS (Stefan Neufeind)
   2013-10-28  37c4f0b  #53075          [BUGFIX] Cannot auto-load SC_* classes 
(Ernesto Baschny)
   2013-10-23  ceba809  #31572          [BUGFIX] Exception using cObject FORM 
in TypoScript (Andreas Bouche)
   2013-10-23  f8f155e  #43540          [BUGFIX] TS is fetched from cache 
incorrectly sometimes (Jigal van Hemert)
   2013-10-22  2ce69d2  #50881          [TASK] Added missing core autoloaded 
files (Ernesto Baschny)
   2013-10-13  d361b29  #52759          [BUGFIX] Object passed to date() 
(Philipp Gampe)
   2013-10-12  3699866  #52104          [BUGFIX] Wrong calculation of maximum 
value for checkbox fields (Nicole Cordes)
   2013-10-11  073dd57  #36573          [BUGFIX] Add workspace overlay for 
fetched records. (Anja Leichsenring)
   2013-10-06  f26f2f1  #52045          [BUGFIX] EmConfUtility accesses 
non-arrays (Markus Klein)
   2013-09-27  fda9783  #52091,#51684   [BUGFIX] Check for string before using 
strlen (Markus Klein)
   2013-09-26  9673d7e  #50913          [BUGFIX] Fix PHP warning trigged in 
getAuthInfoArray() (Christian Finkemeier)
   2013-09-26  e06f05a  #34886          [BUGFIX] CF FileBackend unlimited 
lifetime support (Dominique Feyer)

---
   Module Name: pkgsrc
   Committed By:        taca
   Date:                Tue Dec 10 15:20:03 UTC 2013

   Modified Files:
        pkgsrc/www/typo3_47: Makefile PLIST distinfo

   Log Message:
   Update typo3_47 package to 4.7.17 (TYPO3 4.7.17).

   - Fix multiple vulnerabilities in TYPO3 CMS:
        
http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/
   - Enable PHP_VERSIONS_ACCEPTED which was accidently commented out by previous
     commit.

   2013-12-10  9e378dd                  [RELEASE] Release of TYPO3 4.7.17 
(TYPO3 Release Team)
   2013-12-10  efa9e0b  #45043          [SECURITY] Prevent editor controlled 
hmac content (Franz G. Jahn)
   2013-12-10  d207548  #42772          [SECURITY] XSS in colorpicker wizard 
(Anja Leichsenring)
   2013-12-10  92712d6  #31206          [SECURITY] XSS in header link of all 
content elements (Anja Leichsenring)
   2013-12-10  573f720  #20811          [SECURITY] XSS vulnerability in 
extension manager (Marcus Krause)
   2013-12-10  b7eac59  #41714          [SECURITY] Information Disclosure in 
Wizards (Anja Leichsenring)
   2013-12-10  319a06c  #54099          [SECURITY] Fix open redirection in 
openid extension (Anja Leichsenring)
   2013-12-10  834afa5  #48187          [SECURITY] feuser_adminLib.inc allows 
to set arbitrary fields (Steffen Ritter)
   2013-12-10  aa08f14  #36768          [SECURITY] XSS in be_layout wizard 
(Anja Leichsenring)
   2013-12-10  f3b5a6a  #54074          [SECURITY] Remove possible XSS from 
ActionController Error output (Anja Leichsenring)
   2013-12-10  0bc4fc4  #54073          [SECURITY] Unsafe unserialize of GET 
parameter in Add-Wizard (Marcus Krause)
   2013-12-02  c400e94  #54124          [BUGFIX] ClientUtility does not detect 
Internet Explorer 11 (Stefan Neufeind)
   2013-12-02  124a913  #54120          Revert "[BUGFIX] Object passed to 
date()" (Markus Klein)
   2013-12-01  3f2e971                  Revert "[BUGFIX] Distinguish unassigend 
columns and colPos 0" (Steffen Ritter)
   2013-11-29  a7dbbbf  #42651          [BUGFIX] ext:adodb Restrict connection 
wizard to admins (Christian Kuhn)
   2013-11-26  542bd7d  #25157,#45550   [BUGFIX] Distinguish unassigend columns 
and colPos 0 (Philipp Gampe)


To generate a diff of this commit:
cvs rdiff -u -r0 -r1.1.2.2 pkgsrc/www/typo3_47/MESSAGE
cvs rdiff -u -r1.18 -r1.18.2.1 pkgsrc/www/typo3_47/Makefile
cvs rdiff -u -r1.9 -r1.9.2.1 pkgsrc/www/typo3_47/PLIST
cvs rdiff -u -r1.13 -r1.13.2.1 pkgsrc/www/typo3_47/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [pkgsrc-2013Q3] pkgsrc
Next by Date: CVS commit: [pkgsrc-2013Q3] pkgsrc/www/typo3_60
Previous by Thread: CVS commit: [pkgsrc-2013Q3] pkgsrc
Next by Thread: CVS commit: [pkgsrc-2013Q3] pkgsrc/www/typo3_60
Indexes:

Home | Main Index | Thread Index | Old Index