Sat Apr 16 09:41:19 2011 UTC ()
Upstream announce message:
This release, in addition to being a bugfix release, also resolves a
number of security vulnerabilities.  It resolves CVE-2011-1685,
CVE-2011-1686, CVE-2011-1687, CVE-2011-1688, CVE-2011-1689, and
CVE-2011-1690.

* Cleanups identified by perlcritic.
* Clear the system attribute cache to avoid 'sticky' attributes like
  the queue subject tag.
* Fix our signature escaping so we better match FCKEditor and don't
  misidentify signatures during processing.
* Add the ability to create BasedOn Custom Fields from intiialdata
* Provide a callback to affect the display format in admin pages
* Fix id prefixing on Custom Fields to be RTIR compatible
* Fix #16656 - Requestors with OwnTicket could show up in the owner list
  in other Queues.
* Don't attach the original multipart mail to notifications that already
  contain one part of it.
* Work around CGI.pm 3.51 and 3.52 which add ; charse=ISO-8859-1 to our
  utf-8 encoded javascript.


(spz)
diff -r1.46 -r1.47 pkgsrc/devel/rt3/Makefile
diff -r1.19 -r1.20 pkgsrc/devel/rt3/PLIST
diff -r1.19 -r1.20 pkgsrc/devel/rt3/distinfo
cvs diff -r1.46 -r1.47 pkgsrc/devel/rt3/Attic/Makefile (expand / switch to unified diff)

--- pkgsrc/devel/rt3/Attic/Makefile 2011/02/27 17:05:57 1.46
+++ pkgsrc/devel/rt3/Attic/Makefile 2011/04/16 09:41:19 1.47
@@ -1,17 +1,16 @@ @@ -1,17 +1,16 @@
1# $NetBSD: Makefile,v 1.46 2011/02/27 17:05:57 spz Exp $ 1# $NetBSD: Makefile,v 1.47 2011/04/16 09:41:19 spz Exp $
2 2
3DISTNAME= rt-3.8.9 3DISTNAME= rt-3.8.10
4PKGREVISION= 1 
5CATEGORIES= devel 4CATEGORIES= devel
6MASTER_SITES= http://download.bestpractical.com/pub/rt/release/ 5MASTER_SITES= http://download.bestpractical.com/pub/rt/release/
7 6
8MAINTAINER= spz@NetBSD.org 7MAINTAINER= spz@NetBSD.org
9HOMEPAGE= http://bestpractical.com/rt/ 8HOMEPAGE= http://bestpractical.com/rt/
10COMMENT= Industrial-grade ticketing system 9COMMENT= Industrial-grade ticketing system
11LICENSE= gnu-gpl-v2 10LICENSE= gnu-gpl-v2
12 11
13PKG_DESTDIR_SUPPORT= destdir 12PKG_DESTDIR_SUPPORT= destdir
14 13
15.include "options.mk" 14.include "options.mk"
16 15
17USE_TOOLS+= perl:run 16USE_TOOLS+= perl:run
cvs diff -r1.19 -r1.20 pkgsrc/devel/rt3/Attic/PLIST (expand / switch to unified diff)

--- pkgsrc/devel/rt3/Attic/PLIST 2011/02/27 17:05:57 1.19
+++ pkgsrc/devel/rt3/Attic/PLIST 2011/04/16 09:41:19 1.20
@@ -1,14 +1,14 @@ @@ -1,14 +1,14 @@
1@comment $NetBSD: PLIST,v 1.19 2011/02/27 17:05:57 spz Exp $ 1@comment $NetBSD: PLIST,v 1.20 2011/04/16 09:41:19 spz Exp $
2bin/mason_handler.fcgi 2bin/mason_handler.fcgi
3${PLIST.speedycgi}bin/mason_handler.scgi 3${PLIST.speedycgi}bin/mason_handler.scgi
4bin/mason_handler.svc 4bin/mason_handler.svc
5bin/rt 5bin/rt
6bin/rt-crontool 6bin/rt-crontool
7bin/rt-mailgate 7bin/rt-mailgate
8bin/standalone_httpd 8bin/standalone_httpd
9bin/webmux.pl 9bin/webmux.pl
10lib/rt3/RT.pm 10lib/rt3/RT.pm
11lib/rt3/RT.pm.in 11lib/rt3/RT.pm.in
12lib/rt3/RT/ACE.pm 12lib/rt3/RT/ACE.pm
13lib/rt3/RT/ACE_Overlay.pm 13lib/rt3/RT/ACE_Overlay.pm
14lib/rt3/RT/ACL.pm 14lib/rt3/RT/ACL.pm
@@ -86,48 +86,55 @@ lib/rt3/RT/GroupMember_Overlay.pm @@ -86,48 +86,55 @@ lib/rt3/RT/GroupMember_Overlay.pm
86lib/rt3/RT/GroupMembers.pm 86lib/rt3/RT/GroupMembers.pm
87lib/rt3/RT/GroupMembers_Overlay.pm 87lib/rt3/RT/GroupMembers_Overlay.pm
88lib/rt3/RT/Group_Overlay.pm 88lib/rt3/RT/Group_Overlay.pm
89lib/rt3/RT/Groups.pm 89lib/rt3/RT/Groups.pm
90lib/rt3/RT/Groups_Overlay.pm 90lib/rt3/RT/Groups_Overlay.pm
91lib/rt3/RT/Handle.pm 91lib/rt3/RT/Handle.pm
92lib/rt3/RT/I18N.pm 92lib/rt3/RT/I18N.pm
93lib/rt3/RT/I18N/ar.po 93lib/rt3/RT/I18N/ar.po
94lib/rt3/RT/I18N/bg.po 94lib/rt3/RT/I18N/bg.po
95lib/rt3/RT/I18N/cs.pm 95lib/rt3/RT/I18N/cs.pm
96lib/rt3/RT/I18N/cs.po 96lib/rt3/RT/I18N/cs.po
97lib/rt3/RT/I18N/da.po 97lib/rt3/RT/I18N/da.po
98lib/rt3/RT/I18N/de.po 98lib/rt3/RT/I18N/de.po
 99lib/rt3/RT/I18N/el.po
99lib/rt3/RT/I18N/en.po 100lib/rt3/RT/I18N/en.po
 101lib/rt3/RT/I18N/en_GB.po
100lib/rt3/RT/I18N/es.po 102lib/rt3/RT/I18N/es.po
 103lib/rt3/RT/I18N/et.po
101lib/rt3/RT/I18N/fi.po 104lib/rt3/RT/I18N/fi.po
102lib/rt3/RT/I18N/fr.po 105lib/rt3/RT/I18N/fr.po
103lib/rt3/RT/I18N/he.po 106lib/rt3/RT/I18N/he.po
104lib/rt3/RT/I18N/hr.po 107lib/rt3/RT/I18N/hr.po
105lib/rt3/RT/I18N/hu.po 108lib/rt3/RT/I18N/hu.po
106lib/rt3/RT/I18N/i_default.pm 109lib/rt3/RT/I18N/i_default.pm
107lib/rt3/RT/I18N/id.po 110lib/rt3/RT/I18N/id.po
108lib/rt3/RT/I18N/is.po 111lib/rt3/RT/I18N/is.po
109lib/rt3/RT/I18N/it.po 112lib/rt3/RT/I18N/it.po
110lib/rt3/RT/I18N/ja.po 113lib/rt3/RT/I18N/ja.po
 114lib/rt3/RT/I18N/lt.po
 115lib/rt3/RT/I18N/lv.po
 116lib/rt3/RT/I18N/mk.po
111lib/rt3/RT/I18N/nb.po 117lib/rt3/RT/I18N/nb.po
112lib/rt3/RT/I18N/nl.po 118lib/rt3/RT/I18N/nl.po
113lib/rt3/RT/I18N/nn.po 119lib/rt3/RT/I18N/nn.po
114lib/rt3/RT/I18N/pl.po 120lib/rt3/RT/I18N/pl.po
115lib/rt3/RT/I18N/pt.po 121lib/rt3/RT/I18N/pt.po
116lib/rt3/RT/I18N/pt_BR.po 122lib/rt3/RT/I18N/pt_BR.po
117lib/rt3/RT/I18N/pt_PT.po 123lib/rt3/RT/I18N/pt_PT.po
118lib/rt3/RT/I18N/rt.pot 124lib/rt3/RT/I18N/rt.pot
119lib/rt3/RT/I18N/ru.pm 125lib/rt3/RT/I18N/ru.pm
120lib/rt3/RT/I18N/ru.po 126lib/rt3/RT/I18N/ru.po
 127lib/rt3/RT/I18N/sl.po
121lib/rt3/RT/I18N/sv.po 128lib/rt3/RT/I18N/sv.po
122lib/rt3/RT/I18N/tr.po 129lib/rt3/RT/I18N/tr.po
123lib/rt3/RT/I18N/zh_CN.po 130lib/rt3/RT/I18N/zh_CN.po
124lib/rt3/RT/I18N/zh_TW.po 131lib/rt3/RT/I18N/zh_TW.po
125lib/rt3/RT/Installer.pm 132lib/rt3/RT/Installer.pm
126lib/rt3/RT/Interface/CLI.pm 133lib/rt3/RT/Interface/CLI.pm
127lib/rt3/RT/Interface/Email.pm 134lib/rt3/RT/Interface/Email.pm
128lib/rt3/RT/Interface/Email/Auth/GnuPG.pm 135lib/rt3/RT/Interface/Email/Auth/GnuPG.pm
129lib/rt3/RT/Interface/Email/Auth/MailFrom.pm 136lib/rt3/RT/Interface/Email/Auth/MailFrom.pm
130lib/rt3/RT/Interface/Email/Filter/SpamAssassin.pm 137lib/rt3/RT/Interface/Email/Filter/SpamAssassin.pm
131lib/rt3/RT/Interface/REST.pm 138lib/rt3/RT/Interface/REST.pm
132lib/rt3/RT/Interface/Web.pm 139lib/rt3/RT/Interface/Web.pm
133lib/rt3/RT/Interface/Web/Handler.pm 140lib/rt3/RT/Interface/Web/Handler.pm
@@ -312,27 +319,27 @@ share/rt3/etc/upgrade/3.7.81/schema.Orac @@ -312,27 +319,27 @@ share/rt3/etc/upgrade/3.7.81/schema.Orac
312share/rt3/etc/upgrade/3.7.81/schema.mysql 319share/rt3/etc/upgrade/3.7.81/schema.mysql
313share/rt3/etc/upgrade/3.7.82/content 320share/rt3/etc/upgrade/3.7.82/content
314share/rt3/etc/upgrade/3.7.85/content 321share/rt3/etc/upgrade/3.7.85/content
315share/rt3/etc/upgrade/3.7.86/content 322share/rt3/etc/upgrade/3.7.86/content
316share/rt3/etc/upgrade/3.7.87/content 323share/rt3/etc/upgrade/3.7.87/content
317share/rt3/etc/upgrade/3.8.0/content 324share/rt3/etc/upgrade/3.8.0/content
318share/rt3/etc/upgrade/3.8.1/content 325share/rt3/etc/upgrade/3.8.1/content
319share/rt3/etc/upgrade/3.8.2/content 326share/rt3/etc/upgrade/3.8.2/content
320share/rt3/etc/upgrade/3.8.3/content 327share/rt3/etc/upgrade/3.8.3/content
321share/rt3/etc/upgrade/3.8.3/schema.Pg 328share/rt3/etc/upgrade/3.8.3/schema.Pg
322share/rt3/etc/upgrade/3.8.4/content 329share/rt3/etc/upgrade/3.8.4/content
323share/rt3/etc/upgrade/3.8.6/content 330share/rt3/etc/upgrade/3.8.6/content
324share/rt3/etc/upgrade/3.8.8/content 331share/rt3/etc/upgrade/3.8.8/content
325share/rt3/etc/upgrade/${PKGVERSION}/content 332share/rt3/etc/upgrade/3.8.9/content
326share/rt3/etc/vulnerable-passwords 333share/rt3/etc/vulnerable-passwords
327share/rt3/html/Admin/CustomFields/GroupRights.html 334share/rt3/html/Admin/CustomFields/GroupRights.html
328share/rt3/html/Admin/CustomFields/Modify.html 335share/rt3/html/Admin/CustomFields/Modify.html
329share/rt3/html/Admin/CustomFields/Objects.html 336share/rt3/html/Admin/CustomFields/Objects.html
330share/rt3/html/Admin/CustomFields/UserRights.html 337share/rt3/html/Admin/CustomFields/UserRights.html
331share/rt3/html/Admin/CustomFields/index.html 338share/rt3/html/Admin/CustomFields/index.html
332share/rt3/html/Admin/Elements/AddCustomFieldValue 339share/rt3/html/Admin/Elements/AddCustomFieldValue
333share/rt3/html/Admin/Elements/ConfigureMyRT 340share/rt3/html/Admin/Elements/ConfigureMyRT
334share/rt3/html/Admin/Elements/CreateUserCalled 341share/rt3/html/Admin/Elements/CreateUserCalled
335share/rt3/html/Admin/Elements/CustomFieldTabs 342share/rt3/html/Admin/Elements/CustomFieldTabs
336share/rt3/html/Admin/Elements/EditCustomField 343share/rt3/html/Admin/Elements/EditCustomField
337share/rt3/html/Admin/Elements/EditCustomFieldValues 344share/rt3/html/Admin/Elements/EditCustomFieldValues
338share/rt3/html/Admin/Elements/EditCustomFieldValuesSource 345share/rt3/html/Admin/Elements/EditCustomFieldValuesSource
@@ -921,26 +928,27 @@ share/rt3/html/NoAuth/RichText/FCKeditor @@ -921,26 +928,27 @@ share/rt3/html/NoAuth/RichText/FCKeditor
921share/rt3/html/NoAuth/RichText/FCKeditor/editor/skins/silver/images/toolbar.end.gif 928share/rt3/html/NoAuth/RichText/FCKeditor/editor/skins/silver/images/toolbar.end.gif
922share/rt3/html/NoAuth/RichText/FCKeditor/editor/skins/silver/images/toolbar.expand.gif 929share/rt3/html/NoAuth/RichText/FCKeditor/editor/skins/silver/images/toolbar.expand.gif
923share/rt3/html/NoAuth/RichText/FCKeditor/editor/skins/silver/images/toolbar.separator.gif 930share/rt3/html/NoAuth/RichText/FCKeditor/editor/skins/silver/images/toolbar.separator.gif
924share/rt3/html/NoAuth/RichText/FCKeditor/editor/skins/silver/images/toolbar.start.gif 931share/rt3/html/NoAuth/RichText/FCKeditor/editor/skins/silver/images/toolbar.start.gif
925share/rt3/html/NoAuth/RichText/FCKeditor/editor/wsc/ciframe.html 932share/rt3/html/NoAuth/RichText/FCKeditor/editor/wsc/ciframe.html
926share/rt3/html/NoAuth/RichText/FCKeditor/editor/wsc/tmpFrameset.html 933share/rt3/html/NoAuth/RichText/FCKeditor/editor/wsc/tmpFrameset.html
927share/rt3/html/NoAuth/RichText/FCKeditor/editor/wsc/w.html 934share/rt3/html/NoAuth/RichText/FCKeditor/editor/wsc/w.html
928share/rt3/html/NoAuth/RichText/FCKeditor/fckconfig.js 935share/rt3/html/NoAuth/RichText/FCKeditor/fckconfig.js
929share/rt3/html/NoAuth/RichText/FCKeditor/fckeditor.js 936share/rt3/html/NoAuth/RichText/FCKeditor/fckeditor.js
930share/rt3/html/NoAuth/RichText/FCKeditor/fckpackager.xml 937share/rt3/html/NoAuth/RichText/FCKeditor/fckpackager.xml
931share/rt3/html/NoAuth/RichText/FCKeditor/fckstyles.xml 938share/rt3/html/NoAuth/RichText/FCKeditor/fckstyles.xml
932share/rt3/html/NoAuth/RichText/FCKeditor/fcktemplates.xml 939share/rt3/html/NoAuth/RichText/FCKeditor/fcktemplates.xml
933share/rt3/html/NoAuth/RichText/FCKeditor/license.txt 940share/rt3/html/NoAuth/RichText/FCKeditor/license.txt
 941share/rt3/html/NoAuth/RichText/autohandler
934share/rt3/html/NoAuth/RichText/dhandler 942share/rt3/html/NoAuth/RichText/dhandler
935share/rt3/html/NoAuth/css/3.4-compat/body.css 943share/rt3/html/NoAuth/css/3.4-compat/body.css
936share/rt3/html/NoAuth/css/3.4-compat/footer.css 944share/rt3/html/NoAuth/css/3.4-compat/footer.css
937share/rt3/html/NoAuth/css/3.4-compat/forms.css 945share/rt3/html/NoAuth/css/3.4-compat/forms.css
938share/rt3/html/NoAuth/css/3.4-compat/header.css 946share/rt3/html/NoAuth/css/3.4-compat/header.css
939share/rt3/html/NoAuth/css/3.4-compat/login.css 947share/rt3/html/NoAuth/css/3.4-compat/login.css
940share/rt3/html/NoAuth/css/3.4-compat/main.css 948share/rt3/html/NoAuth/css/3.4-compat/main.css
941share/rt3/html/NoAuth/css/3.4-compat/misc.css 949share/rt3/html/NoAuth/css/3.4-compat/misc.css
942share/rt3/html/NoAuth/css/3.4-compat/nav.css 950share/rt3/html/NoAuth/css/3.4-compat/nav.css
943share/rt3/html/NoAuth/css/3.4-compat/quickbar.css 951share/rt3/html/NoAuth/css/3.4-compat/quickbar.css
944share/rt3/html/NoAuth/css/3.4-compat/ticket.css 952share/rt3/html/NoAuth/css/3.4-compat/ticket.css
945share/rt3/html/NoAuth/css/3.4-compat/titlebox.css 953share/rt3/html/NoAuth/css/3.4-compat/titlebox.css
946share/rt3/html/NoAuth/css/3.4-compat/transactions.css 954share/rt3/html/NoAuth/css/3.4-compat/transactions.css
cvs diff -r1.19 -r1.20 pkgsrc/devel/rt3/Attic/distinfo (expand / switch to unified diff)

--- pkgsrc/devel/rt3/Attic/distinfo 2011/02/26 20:58:15 1.19
+++ pkgsrc/devel/rt3/Attic/distinfo 2011/04/16 09:41:19 1.20
@@ -1,7 +1,7 @@ @@ -1,7 +1,7 @@
1$NetBSD: distinfo,v 1.19 2011/02/26 20:58:15 spz Exp $ 1$NetBSD: distinfo,v 1.20 2011/04/16 09:41:19 spz Exp $
2 2
3SHA1 (rt-3.8.9.tar.gz) = 4dc78880220ccc8bf7b49b2c4efca0eeb3372133 3SHA1 (rt-3.8.10.tar.gz) = 98678a4ce4dbdfb13ceeeb88236d49bd0f5562c7
4RMD160 (rt-3.8.9.tar.gz) = 6f9ddaae4886769c35684ede064563670fee6129 4RMD160 (rt-3.8.10.tar.gz) = 779ba2e04e87d20f30b03a9e7348c23b09062038
5Size (rt-3.8.9.tar.gz) = 5212874 bytes 5Size (rt-3.8.10.tar.gz) = 5642566 bytes
6SHA1 (patch-aa) = 23964ba8d686931e1f92be88fa3a5d5e06070fce 6SHA1 (patch-aa) = 23964ba8d686931e1f92be88fa3a5d5e06070fce
7SHA1 (patch-ab) = 0cbfa31fb20b2c53e7beeed5591437361bbcf173 7SHA1 (patch-ab) = 0cbfa31fb20b2c53e7beeed5591437361bbcf173