CVS commit: pkgsrc/www/wordpress

["Daniel Horecki" <morr%netbsd.org@localhost>]

Module Name:    pkgsrc
Committed By:   morr
Date:           Tue Mar  7 17:39:13 UTC 2017

Modified Files:
        pkgsrc/www/wordpress: Makefile PLIST distinfo

Log Message:
Security update to version 4.7.3.

Fixed security bugs:

* Cross-site scripting (XSS) via media file metadata. Reported by Chris Andrè
  Dale, Yorick Koster, and Simon P. Briggs.
* Control characters can trick redirect URL validation. Reported by Daniel
  Chatfield.
* Unintended files can be deleted by administrators using the plugin deletion
  functionality. Reported by xuliang.
* Cross-site scripting (XSS) via video URL in YouTube embeds. Reported by Marc
  Montpas.
* Cross-site scripting (XSS) via taxonomy term names. Reported by Delta.
* Cross-site request forgery (CSRF) in Press This leading to excessive use of
  server resources. Reported by Sipke Mellema.

More information here: https://codex.wordpress.org/Version_4.7.3


To generate a diff of this commit:
cvs rdiff -u -r1.62 -r1.63 pkgsrc/www/wordpress/Makefile
cvs rdiff -u -r1.32 -r1.33 pkgsrc/www/wordpress/PLIST
cvs rdiff -u -r1.52 -r1.53 pkgsrc/www/wordpress/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: pkgsrc/www/wordpress/Makefile
diff -u pkgsrc/www/wordpress/Makefile:1.62 pkgsrc/www/wordpress/Makefile:1.63
--- pkgsrc/www/wordpress/Makefile:1.62  Sat Jan 28 10:14:15 2017
+++ pkgsrc/www/wordpress/Makefile       Tue Mar  7 17:39:13 2017
@@ -1,7 +1,7 @@
-# $NetBSD: Makefile,v 1.62 2017/01/28 10:14:15 morr Exp $
+# $NetBSD: Makefile,v 1.63 2017/03/07 17:39:13 morr Exp $
 
 DISTNAME=              wordpress-${VERSION}
-VERSION=               4.7.2
+VERSION=               4.7.3
 CATEGORIES=            www
 MASTER_SITES=          http://wordpress.org/
 

Index: pkgsrc/www/wordpress/PLIST
diff -u pkgsrc/www/wordpress/PLIST:1.32 pkgsrc/www/wordpress/PLIST:1.33
--- pkgsrc/www/wordpress/PLIST:1.32     Mon Jan  9 19:10:16 2017
+++ pkgsrc/www/wordpress/PLIST  Tue Mar  7 17:39:13 2017
@@ -1,4 +1,4 @@
-@comment $NetBSD: PLIST,v 1.32 2017/01/09 19:10:16 morr Exp $
+@comment $NetBSD: PLIST,v 1.33 2017/03/07 17:39:13 morr Exp $
 share/doc/wordpress/license.txt
 share/doc/wordpress/readme.html
 share/examples/wordpress/wordpress.conf
@@ -534,7 +534,6 @@ share/wordpress/wp-content/plugins/akism
 share/wordpress/wp-content/plugins/akismet/views/notice.php
 share/wordpress/wp-content/plugins/akismet/views/start.php
 share/wordpress/wp-content/plugins/akismet/views/stats.php
-share/wordpress/wp-content/plugins/akismet/views/strict.php
 share/wordpress/wp-content/plugins/akismet/wrapper.php
 share/wordpress/wp-content/plugins/hello.php
 share/wordpress/wp-content/plugins/index.html

Index: pkgsrc/www/wordpress/distinfo
diff -u pkgsrc/www/wordpress/distinfo:1.52 pkgsrc/www/wordpress/distinfo:1.53
--- pkgsrc/www/wordpress/distinfo:1.52  Sat Jan 28 10:14:15 2017
+++ pkgsrc/www/wordpress/distinfo       Tue Mar  7 17:39:13 2017
@@ -1,6 +1,6 @@
-$NetBSD: distinfo,v 1.52 2017/01/28 10:14:15 morr Exp $
+$NetBSD: distinfo,v 1.53 2017/03/07 17:39:13 morr Exp $
 
-SHA1 (wordpress-4.7.2.tar.gz) = 7b687f1af589c337124e6247229af209ec1d52c3
-RMD160 (wordpress-4.7.2.tar.gz) = 94d2c79636652913bdf3b4c7058003b6d5b3f7f2
-SHA512 (wordpress-4.7.2.tar.gz) = 610a820cf2eea39a60100515f68e95a7194a4e20df9c8158111b1978d5bc7c606dd2b7adf2f4019e9108a136e12eb2db7ae5ed75681cec23ffb901f8cc7fb83a
-Size (wordpress-4.7.2.tar.gz) = 7997959 bytes
+SHA1 (wordpress-4.7.3.tar.gz) = 35adcd8162eae00d5bc37f35344fdc06b22ffc98
+RMD160 (wordpress-4.7.3.tar.gz) = 5030cb6bc1f54bfdd1f81033c44ac3991e016d63
+SHA512 (wordpress-4.7.3.tar.gz) = 071df65c3a43557faf351838a661a83e26d8de37c8633dc17a59d773cc91caef640a625b0719606df1fc563fd18af71ba1da22a5b6f345339e73761754484dc5
+Size (wordpress-4.7.3.tar.gz) = 8008833 bytes