Received: from mail.netbsd.org (mail.netbsd.org [149.20.53.66]) by www.NetBSD.org (Postfix) with ESMTP id BA3B063B882 for ; Thu, 16 Aug 2012 16:05:11 +0000 (UTC) Received: by mail.netbsd.org (Postfix, from userid 605) id 8EEA214A260; Thu, 16 Aug 2012 16:05:11 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by mail.netbsd.org (Postfix) with ESMTP id 48F9414A259 for ; Thu, 16 Aug 2012 16:05:08 +0000 (UTC) X-Virus-Scanned: amavisd-new at NetBSD.org Received: from mail.netbsd.org ([127.0.0.1]) by localhost (mail.NetBSD.org [127.0.0.1]) (amavisd-new, port 10025) with ESMTP id wKOGg32Ijvds for ; Thu, 16 Aug 2012 16:05:07 +0000 (UTC) Received: from cvs.netbsd.org (cvs.NetBSD.org [IPv6:2001:4f8:3:7:2e0:81ff:fe30:95bd]) by mail.netbsd.org (Postfix) with ESMTP id 96F6B14A24E for ; Thu, 16 Aug 2012 16:05:07 +0000 (UTC) Received: by cvs.netbsd.org (Postfix, from userid 500) id 4F188175DD; Thu, 16 Aug 2012 16:05:07 +0000 (UTC) MIME-Version: 1.0 Content-Disposition: inline Content-Transfer-Encoding: 8bit Content-Type: text/plain; charset="UTF-8" Date: Thu, 16 Aug 2012 16:05:07 +0000 From: "Ryo ONODERA" Subject: CVS commit: pkgsrc/www/php-owncloud To: pkgsrc-changes@NetBSD.org Reply-To: ryoon@netbsd.org X-Mailer: log_accum Message-Id: <20120816160507.4F188175DD@cvs.netbsd.org> Sender: pkgsrc-changes-owner@NetBSD.org List-Id: pkgsrc-changes.NetBSD.org Precedence: bulk Module Name: pkgsrc Committed By: ryoon Date: Thu Aug 16 16:05:07 UTC 2012 Modified Files: pkgsrc/www/php-owncloud: Makefile PLIST distinfo Log Message: Update to 4.0.7 * It seems that http://secunia.com/advisories/49894 and http://secunia.com/advisories/50214 are fixed Changelog: Version 4.0.7 Aug 15th 2012 Show Login Button when user and password are auto-completed Sanitize LDAP base, user and groups Fix non active Adressbooks Calendar: Remove double html encoding Fix label for versioning in admin settings Add parent directory into filecache if it ©ądoesnˇ­t exist Handle non writable files correctly Disable webfinger completely if not activated Security: Disable user listings in DAV Check file blacklist for file renames Security: Fix XSS bug in Gallery Security: Several CSRF security fixes Security: Validate cookie to prevent auth bypasses Special thanks to Julien Cayssol for reporting several security problems Version 4.0.6 Aug 1th 2012 More robust LDAP integration during unexpected collisions Fix sharing for users with @ in username Additional error handling for emailing of private links Cleanup old session files Fix user space calculation Fix Ampache authentication Remove delete tipsy if file is deleted Donˇ­t delete lotˇ­s of session files during DAV requests Fix error when no adressbook is created Check if php-ldap is installed Security: Check for Admin user in appconfig.php Security: Several CSRF security fixes Version 4.0.5 July 20th 2012 Fix remember the username and autologin Offer an option to allow sharing outside the group. Fix for birthday format Fixes for several encoding fixes for unicode characters Fix invalid filesystem cache in the sharing folder Several calendar and contacts fixes Fix sending of emails Several fixes in the system log Several fixes for the external filesystem feature Several CSRF security fixes To generate a diff of this commit: cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/php-owncloud/Makefile cvs rdiff -u -r1.6 -r1.7 pkgsrc/www/php-owncloud/PLIST \ pkgsrc/www/php-owncloud/distinfo Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.