Fri Nov 13 11:07:27 2009 UTC ()
Pullup ticket #2933 - requested by adrianp
wordpress: security update

Revisions pulled up:
- www/wordpress/Makefile			1.6
- www/wordpress/PLIST				1.4
- www/wordpress/distinfo			1.5
---
Module Name:    pkgsrc
Committed By:   adrianp
Date:           Thu Nov 12 22:05:55 UTC 2009

Modified Files:
        pkgsrc/www/wordpress: Makefile PLIST distinfo

Log Message:
Update to 2.8.6

- 2.8.5
* Fix for trackback DOS
* Removal of permalink_structure eval
* Remove some create_function() calls
* Disallow unfiltered uploads by default, even for admins. Enable it again with
define('ALLOW_UNFILTERED_UPLOADS', true); in wp-config.php
* Add extra escapes here and there for some backside coverage
* Retire two old importers
* A few small bug fixes

- 2.8.6
* Fixed an XSS vulnerability in Press This
* Fixed issue with sanitizing uploaded file names that can be exploited in
certain Apache configurations


(tron)
diff -r1.5 -r1.5.2.1 pkgsrc/www/wordpress/Makefile
diff -r1.3 -r1.3.2.1 pkgsrc/www/wordpress/PLIST
diff -r1.4 -r1.4.2.1 pkgsrc/www/wordpress/distinfo
cvs diff -r1.5 -r1.5.2.1 pkgsrc/www/wordpress/Makefile (expand / switch to unified diff)

--- pkgsrc/www/wordpress/Makefile 2009/08/12 20:21:10 1.5
+++ pkgsrc/www/wordpress/Makefile 2009/11/13 11:07:27 1.5.2.1
@@ -1,17 +1,17 @@ @@ -1,17 +1,17 @@
1# $NetBSD: Makefile,v 1.5 2009/08/12 20:21:10 adrianp Exp $ 1# $NetBSD: Makefile,v 1.5.2.1 2009/11/13 11:07:27 tron Exp $
2 2
3DISTNAME= wordpress-${VERSION} 3DISTNAME= wordpress-${VERSION}
4VERSION= 2.8.4 4VERSION= 2.8.6
5CATEGORIES= www 5CATEGORIES= www
6MASTER_SITES= http://wordpress.org/ 6MASTER_SITES= http://wordpress.org/
7 7
8MAINTAINER= adrianp@NetBSD.org 8MAINTAINER= adrianp@NetBSD.org
9HOMEPAGE= http://wordpress.org/ 9HOMEPAGE= http://wordpress.org/
10COMMENT= Blogging tool written in php 10COMMENT= Blogging tool written in php
11 11
12PKG_DESTDIR_SUPPORT= user-destdir 12PKG_DESTDIR_SUPPORT= user-destdir
13 13
14USE_TOOLS+= pax 14USE_TOOLS+= pax
15 15
16.include "../../mk/bsd.prefs.mk" 16.include "../../mk/bsd.prefs.mk"
17.include "../../lang/php/phpversion.mk" 17.include "../../lang/php/phpversion.mk"
cvs diff -r1.3 -r1.3.2.1 pkgsrc/www/wordpress/PLIST (expand / switch to unified diff)

--- pkgsrc/www/wordpress/PLIST 2009/07/28 21:20:20 1.3
+++ pkgsrc/www/wordpress/PLIST 2009/11/13 11:07:27 1.3.2.1
@@ -1,14 +1,14 @@ @@ -1,14 +1,14 @@
1@comment $NetBSD: PLIST,v 1.3 2009/07/28 21:20:20 adrianp Exp $ 1@comment $NetBSD: PLIST,v 1.3.2.1 2009/11/13 11:07:27 tron Exp $
2share/doc/wordpress/license.txt 2share/doc/wordpress/license.txt
3share/doc/wordpress/readme.html 3share/doc/wordpress/readme.html
4share/examples/wordpress/wordpress.conf 4share/examples/wordpress/wordpress.conf
5share/examples/wordpress/wp-config-sample.php 5share/examples/wordpress/wp-config-sample.php
6share/wordpress/index.php 6share/wordpress/index.php
7share/wordpress/wp-admin/admin-ajax.php 7share/wordpress/wp-admin/admin-ajax.php
8share/wordpress/wp-admin/admin-footer.php 8share/wordpress/wp-admin/admin-footer.php
9share/wordpress/wp-admin/admin-functions.php 9share/wordpress/wp-admin/admin-functions.php
10share/wordpress/wp-admin/admin-header.php 10share/wordpress/wp-admin/admin-header.php
11share/wordpress/wp-admin/admin-post.php 11share/wordpress/wp-admin/admin-post.php
12share/wordpress/wp-admin/admin.php 12share/wordpress/wp-admin/admin.php
13share/wordpress/wp-admin/async-upload.php 13share/wordpress/wp-admin/async-upload.php
14share/wordpress/wp-admin/categories.php 14share/wordpress/wp-admin/categories.php
@@ -123,30 +123,28 @@ share/wordpress/wp-admin/images/visit-si @@ -123,30 +123,28 @@ share/wordpress/wp-admin/images/visit-si
123share/wordpress/wp-admin/images/wheel.png 123share/wordpress/wp-admin/images/wheel.png
124share/wordpress/wp-admin/images/white-grad-active.png 124share/wordpress/wp-admin/images/white-grad-active.png
125share/wordpress/wp-admin/images/white-grad.png 125share/wordpress/wp-admin/images/white-grad.png
126share/wordpress/wp-admin/images/wordpress-logo.png 126share/wordpress/wp-admin/images/wordpress-logo.png
127share/wordpress/wp-admin/images/wp-logo-vs.gif 127share/wordpress/wp-admin/images/wp-logo-vs.gif
128share/wordpress/wp-admin/images/wp-logo.gif 128share/wordpress/wp-admin/images/wp-logo.gif
129share/wordpress/wp-admin/images/wpspin_dark.gif 129share/wordpress/wp-admin/images/wpspin_dark.gif
130share/wordpress/wp-admin/images/wpspin_light.gif 130share/wordpress/wp-admin/images/wpspin_light.gif
131share/wordpress/wp-admin/images/xit.gif 131share/wordpress/wp-admin/images/xit.gif
132share/wordpress/wp-admin/images/yes.png 132share/wordpress/wp-admin/images/yes.png
133share/wordpress/wp-admin/import.php 133share/wordpress/wp-admin/import.php
134share/wordpress/wp-admin/import/blogger.php 134share/wordpress/wp-admin/import/blogger.php
135share/wordpress/wp-admin/import/blogware.php 135share/wordpress/wp-admin/import/blogware.php
136share/wordpress/wp-admin/import/btt.php 
137share/wordpress/wp-admin/import/dotclear.php 136share/wordpress/wp-admin/import/dotclear.php
138share/wordpress/wp-admin/import/greymatter.php 137share/wordpress/wp-admin/import/greymatter.php
139share/wordpress/wp-admin/import/jkw.php 
140share/wordpress/wp-admin/import/livejournal.php 138share/wordpress/wp-admin/import/livejournal.php
141share/wordpress/wp-admin/import/mt.php 139share/wordpress/wp-admin/import/mt.php
142share/wordpress/wp-admin/import/opml.php 140share/wordpress/wp-admin/import/opml.php
143share/wordpress/wp-admin/import/rss.php 141share/wordpress/wp-admin/import/rss.php
144share/wordpress/wp-admin/import/stp.php 142share/wordpress/wp-admin/import/stp.php
145share/wordpress/wp-admin/import/textpattern.php 143share/wordpress/wp-admin/import/textpattern.php
146share/wordpress/wp-admin/import/utw.php 144share/wordpress/wp-admin/import/utw.php
147share/wordpress/wp-admin/import/wordpress.php 145share/wordpress/wp-admin/import/wordpress.php
148share/wordpress/wp-admin/import/wp-cat2tag.php 146share/wordpress/wp-admin/import/wp-cat2tag.php
149share/wordpress/wp-admin/includes/admin.php 147share/wordpress/wp-admin/includes/admin.php
150share/wordpress/wp-admin/includes/bookmark.php 148share/wordpress/wp-admin/includes/bookmark.php
151share/wordpress/wp-admin/includes/class-ftp-pure.php 149share/wordpress/wp-admin/includes/class-ftp-pure.php
152share/wordpress/wp-admin/includes/class-ftp-sockets.php 150share/wordpress/wp-admin/includes/class-ftp-sockets.php
cvs diff -r1.4 -r1.4.2.1 pkgsrc/www/wordpress/distinfo (expand / switch to unified diff)

--- pkgsrc/www/wordpress/distinfo 2009/08/12 20:21:10 1.4
+++ pkgsrc/www/wordpress/distinfo 2009/11/13 11:07:27 1.4.2.1
@@ -1,5 +1,5 @@ @@ -1,5 +1,5 @@
1$NetBSD: distinfo,v 1.4 2009/08/12 20:21:10 adrianp Exp $ 1$NetBSD: distinfo,v 1.4.2.1 2009/11/13 11:07:27 tron Exp $
2 2
3SHA1 (wordpress-2.8.4.tar.gz) = af9a37283b25f26a3a3aa3a7c5db23222e18e0fc 3SHA1 (wordpress-2.8.6.tar.gz) = 01a996c57f54a95cf6e457b61082f520a82ad1b5
4RMD160 (wordpress-2.8.4.tar.gz) = ab449a9d20737d7fb032f6f1a247e16adba88fc4 4RMD160 (wordpress-2.8.6.tar.gz) = 309816cbb85463e511d10eacc9066a5bc1c93438
5Size (wordpress-2.8.4.tar.gz) = 2078669 bytes 5Size (wordpress-2.8.6.tar.gz) = 2078596 bytes