---
- branch: pkgsrc-2008Q3
  date: Mon Nov  3 03:38:14 UTC 2008
  files:
  - new: 1.32.4.1
    old: '1.32'
    path: pkgsrc/www/drupal/Makefile
    pathrev: pkgsrc/www/drupal/Makefile@1.32.4.1
    type: modified
  - new: 1.23.4.1
    old: '1.23'
    path: pkgsrc/www/drupal/distinfo
    pathrev: pkgsrc/www/drupal/distinfo@1.23.4.1
    type: modified
  id: 20081103T033814Z.f0a3efa51911446075b9e79b95f2f19bbd4aa9dd
  log: "pullup ticket #2567 - requested by adrianp\ndrupal: update package for security
    fixes\n\nrevisions pulled up:\npkgsrc/www/drupal/Makefile\t1.33, 1.34\npkgsrc/www/drupal/distinfo\t1.24,
    1.25\n\n   Module Name:    pkgsrc\n   Committed By:   adrianp\n   Date:           Sun
    Oct 12 00:32:31 UTC 2008\n\n   Modified Files:\n           pkgsrc/www/drupal:
    Makefile distinfo\n\n   Log Message:\n   This release fixes security vulnerabilities.
    Sites are urged to upgrade\n   +immediately after reading the security announcement:\n\n
    \      * SA-2008-060 - Drupal core - Multiple vulnerabilities\n\n   In addition
    to this security vulnerability, the following bugs have been fixed\n   +in the
    5.11 release:\n\n   * - Patch 265899 by mfb: uri_brief mail token did not support
    https URLs.\n   * - Patch 170310 by mfb, JohnAlbin: avoid SSL cookie getting over-written
    by\n   +non-SSL cookie.\n   * 296096 by Damien Tournoud. Fix 5.10 Postgres install
    & update.\n   * - Patch 246143 by bjaspan, Damien Tournoud: make sure updates
    are run in\n   +numeric order, not in definition order.\n   * 181831 by Rob Loach.
    Backport of #130630 by chx: provide an id on the form\n   +item wrapper div.\n
    \  * 283026 by Damien Tournoud. Make user_authenticate from external source (for\n
    \  +existing users) work with no server part.\n   * 298535 by mkalkbrenner. Correct
    HTTP status code for failed connection.\n   * 108717 by add1sun and neclimdul.
    Code style.\n   * - Patch 230932 by ryanlath: file_scan_directory() didn't scan
    the directory\n   +called '0'. Backport by cridenour.\n   * follow up to 280621
    by lilou: the object tag was disallowed in a previous\n   +version in filter_xss_admin(),
    so disallow param as well, which is only\n   +meaningful inside an object tag\n
    \  * 208270 reported by Dries, patch by jvandyk: it was not possible to clear
    the\n   +XML-RPC error cache, making it impossible to do multiple queries in one\n
    \  +request. Add xmlrpc_clear_error() and slightly modify xmlrpc_error() to fix.\n
    \  * - Patch 308549 by lyrincz, Dave Reid: fixed broken link in PHPdoc.\n   *
    67895 patch by goba, tested by JirkaRybka and blackdog: move poll votes with\n
    \  +poll options, when an option is removed, instead of dropping all old votes,\n
    \  +solving an old data loss bug. Backport by dww.\n   * 312730 by Damien Tournoud.
    hook_requirements('install') should work for\n   +modules that don't reside in
    the main './modules' folder.\n\n   ------------------------------------------------------------------------\n\n
    \  Module Name:    pkgsrc\n   Committed By:   adrianp\n   Date:           Thu
    Oct 23 21:33:21 UTC 2008\n\n   Modified Files:\n           pkgsrc/www/drupal:
    Makefile distinfo\n\n   Log Message:\n   Update to 5.12\n   The twelfth maintenance
    and security release of the Drupal 5 series. Only\n   fixes for security vulnerabilities
    and other bugs have been committed. New\n   features are only being added to the
    forthcoming Drupal 7.0 release.\n\n   This release fixes security vulnerabilities.
    Sites are urged to upgrade\n   immediately after reading the security announcement:\n\n
    \  * SA-2008-067 - Drupal core - Multiple vulnerabilities\n"
  module: pkgsrc
  subject: 'CVS commit: [pkgsrc-2008Q3] pkgsrc/www/drupal'
  unixtime: '1225683494'
  user: rtr