Update to 1.19.2 It is a security update, fix CVE-2012-4377 CVE-2012-4378 CVE-2012-4379 CVE-2012-4380 CVE-2012-4381 CVE-2012-4382. Upstream changes: Changes since 1.19.1 (bug 39700) File: link to non-existing file can inject html (bug 39823) Hidden block text leaking to admins (bug 39184) LDAP password leakage (bug 39180) Disallow framing of api results (bug 37587) Enforce language codes to be html safe (bug 39824) Check global blocks on account creationdiff -r1.21 -r1.22 pkgsrc/www/mediawiki/Makefile
(wen)
| @@ -1,36 +1,36 @@ | @@ -1,36 +1,36 @@ | |||
| 1 | # $NetBSD: Makefile,v 1.21 2012/06/19 11:55:25 wiz Exp $ | 1 | # $NetBSD: Makefile,v 1.22 2012/09/02 00:29:34 wen Exp $ | |
| 2 | 2 | |||
| 3 | DISTNAME= mediawiki-${VER}.${PVER} | 3 | DISTNAME= mediawiki-${VER}.${PVER} | |
| 4 | CATEGORIES= www | 4 | CATEGORIES= www | |
| 5 | MASTER_SITES= http://download.wikimedia.org/mediawiki/${VER}/ | 5 | MASTER_SITES= http://download.wikimedia.org/mediawiki/${VER}/ | |
| 6 | 6 | |||
| 7 | MAINTAINER= wenheping@gmail.com | 7 | MAINTAINER= wenheping@gmail.com | |
| 8 | HOMEPAGE= http://www.mediawiki.org/ | 8 | HOMEPAGE= http://www.mediawiki.org/ | |
| 9 | COMMENT= Free software wiki package originally written for Wikipedia | 9 | COMMENT= Free software wiki package originally written for Wikipedia | |
| 10 | LICENSE= gnu-gpl-v2 | 10 | LICENSE= gnu-gpl-v2 | |
| 11 | 11 | |||
| 12 | EGDIR= share/examples/mediawiki | 12 | EGDIR= share/examples/mediawiki | |
| 13 | MEDIAWIKI= ${PREFIX}/share/mediawiki | 13 | MEDIAWIKI= ${PREFIX}/share/mediawiki | |
| 14 | 14 | |||
| 15 | PKG_DESTDIR_SUPPORT= user-destdir | 15 | PKG_DESTDIR_SUPPORT= user-destdir | |
| 16 | INSTALLATION_DIRS= ${EGDIR} share/mediawiki | 16 | INSTALLATION_DIRS= ${EGDIR} share/mediawiki | |
| 17 | 17 | |||
| 18 | .include "../../mk/bsd.prefs.mk" | 18 | .include "../../mk/bsd.prefs.mk" | |
| 19 | .include "options.mk" | 19 | .include "options.mk" | |
| 20 | 20 | |||
| 21 | PKG_INSTALLATION_TYPES= overwrite pkgviews | 21 | PKG_INSTALLATION_TYPES= overwrite pkgviews | |
| 22 | VER= 1.19 | 22 | VER= 1.19 | |
| 23 | PVER= 1 | 23 | PVER= 2 | |
| 24 | 24 | |||
| 25 | APACHE_USER?= www | 25 | APACHE_USER?= www | |
| 26 | APACHE_GROUP?= www | 26 | APACHE_GROUP?= www | |
| 27 | BUILD_DEFS+= APACHE_USER APACHE_GROUP | 27 | BUILD_DEFS+= APACHE_USER APACHE_GROUP | |
| 28 | 28 | |||
| 29 | PKG_SYSCONFSUBDIR?= httpd | 29 | PKG_SYSCONFSUBDIR?= httpd | |
| 30 | MESSAGE_SUBST+= PKG_SYSCONFDIR=${PKG_SYSCONFDIR} | 30 | MESSAGE_SUBST+= PKG_SYSCONFDIR=${PKG_SYSCONFDIR} | |
| 31 | 31 | |||
| 32 | CONF_FILES= ${PREFIX}/${EGDIR}/mediawiki.conf \ | 32 | CONF_FILES= ${PREFIX}/${EGDIR}/mediawiki.conf \ | |
| 33 | ${PKG_SYSCONFDIR}/mediawiki.conf | 33 | ${PKG_SYSCONFDIR}/mediawiki.conf | |
| 34 | 34 | |||
| 35 | NO_CONFIGURE= YES | 35 | NO_CONFIGURE= YES | |
| 36 | NO_BUILD= YES | 36 | NO_BUILD= YES | |
| @@ -38,35 +38,55 @@ NO_BUILD= YES | @@ -38,35 +38,55 @@ NO_BUILD= YES | |||
| 38 | SUBST_CLASSES+= paths | 38 | SUBST_CLASSES+= paths | |
| 39 | SUBST_MESSAGE.paths= Fixing pathnames in configuration file. | 39 | SUBST_MESSAGE.paths= Fixing pathnames in configuration file. | |
| 40 | SUBST_STAGE.paths= post-patch | 40 | SUBST_STAGE.paths= post-patch | |
| 41 | SUBST_FILES.paths= ../mediawiki.conf | 41 | SUBST_FILES.paths= ../mediawiki.conf | |
| 42 | SUBST_SED.paths= -e "s,@MEDIAWIKI@,${MEDIAWIKI},g" | 42 | SUBST_SED.paths= -e "s,@MEDIAWIKI@,${MEDIAWIKI},g" | |
| 43 | 43 | |||
| 44 | SUBST_CLASSES+= sh | 44 | SUBST_CLASSES+= sh | |
| 45 | SUBST_STAGE.sh= post-patch | 45 | SUBST_STAGE.sh= post-patch | |
| 46 | SUBST_MESSAGE.sh= Fixing path to sh | 46 | SUBST_MESSAGE.sh= Fixing path to sh | |
| 47 | SUBST_FILES.sh+= bin/ulimit-tvf.sh bin/ulimit.sh bin/ulimit4.sh | 47 | SUBST_FILES.sh+= bin/ulimit-tvf.sh bin/ulimit.sh bin/ulimit4.sh | |
| 48 | SUBST_FILES.sh+= maintenance/storage/make-blobs | 48 | SUBST_FILES.sh+= maintenance/storage/make-blobs | |
| 49 | SUBST_FILES.sh+= maintenance/dev/install.sh maintenance/dev/installphp.sh | 49 | SUBST_FILES.sh+= maintenance/dev/install.sh maintenance/dev/installphp.sh | |
| 50 | SUBST_FILES.sh+= maintenance/dev/installmw.sh maintenance/dev/start.sh | 50 | SUBST_FILES.sh+= maintenance/dev/installmw.sh maintenance/dev/start.sh | |
| 51 | SUBST_FILES.sh+= extensions/WikiEditor/modules/images/toolbar/png24/generate.sh | |||
| 51 | SUBST_SED.sh= -e "s|/bin/bash|${SH}|" | 52 | SUBST_SED.sh= -e "s|/bin/bash|${SH}|" | |
| 52 | 53 | |||
| 53 | SUBST_CLASSES+= perl | 54 | SUBST_CLASSES+= perl | |
| 54 | SUBST_STAGE.perl= post-patch | 55 | SUBST_STAGE.perl= post-patch | |
| 55 | SUBST_MESSAGE.perl= Fixing path to perl | 56 | SUBST_MESSAGE.perl= Fixing path to perl | |
| 56 | SUBST_FILES.perl+= maintenance/postgres/compare_schemas.pl | 57 | SUBST_FILES.perl+= maintenance/postgres/compare_schemas.pl | |
| 57 | SUBST_FILES.perl+= maintenance/postgres/mediawiki_mysql2postgres.pl | 58 | SUBST_FILES.perl+= maintenance/postgres/mediawiki_mysql2postgres.pl | |
| 58 | SUBST_SED.perl= -e "s|/usr/bin/perl|${PERL5}|" | 59 | SUBST_SED.perl= -e "s|/usr/bin/perl|${PERL5}|" | |
| 59 | 60 | |||
| 61 | SUBST_CLASSES+= python | |||
| 62 | SUBST_STAGE.python= post-patch | |||
| 63 | SUBST_MESSAGE.python= Fixing python path | |||
| 64 | SUBST_FILES.python+= extensions/ConfirmEdit/captcha.py includes/zhtable/Makefile.py | |||
| 65 | SUBST_FILES.python+= maintenance/cssjanus/cssjanus.py maintenance/cssjanus/csslex.py | |||
| 66 | SUBST_SED.python= -e "s,/usr/bin/python,${PYTHONBIN}," | |||
| 67 | ||||
| 68 | SUBST_CLASSES+= php | |||
| 69 | SUBST_MESSAGE.php= Fixing the path of php. | |||
| 70 | SUBST_STAGE.php= post-patch | |||
| 71 | SUBST_FILES.php+= includes/normal/UtfNormalTest2.php tests/RunSeleniumTests.php | |||
| 72 | SUBST_SED.php= -e "s,/usr/bin/php,${PREFIX}/bin/php,g" | |||
| 73 | ||||
| 74 | SUBST_CLASSES+= php2 | |||
| 75 | SUBST_MESSAGE.php2= Fixing the path of php. | |||
| 76 | SUBST_STAGE.php2= post-patch | |||
| 77 | SUBST_FILES.php2+= tests/phpunit/phpunit.php | |||
| 78 | SUBST_SED.php2= -e "s,/usr/bin/env php,${PREFIX}/bin/php,g" | |||
| 79 | ||||
| 60 | post-extract: | 80 | post-extract: | |
| 61 | ${CP} ${FILESDIR}/mediawiki.conf ${WRKDIR}/mediawiki.conf | 81 | ${CP} ${FILESDIR}/mediawiki.conf ${WRKDIR}/mediawiki.conf | |
| 62 | 82 | |||
| 63 | do-install: | 83 | do-install: | |
| 64 | cd ${WRKSRC} && ${FIND} . -type d -exec ${INSTALL_DATA_DIR} \ | 84 | cd ${WRKSRC} && ${FIND} . -type d -exec ${INSTALL_DATA_DIR} \ | |
| 65 | ${DESTDIR}${MEDIAWIKI}/{} \; -exec ${CHOWN} \ | 85 | ${DESTDIR}${MEDIAWIKI}/{} \; -exec ${CHOWN} \ | |
| 66 | ${APACHE_USER}:${APACHE_GROUP} ${DESTDIR}${MEDIAWIKI}/{} \; | 86 | ${APACHE_USER}:${APACHE_GROUP} ${DESTDIR}${MEDIAWIKI}/{} \; | |
| 67 | cd ${WRKSRC} && ${FIND} . \! -type d \! -name '.git*' \ | 87 | cd ${WRKSRC} && ${FIND} . \! -type d \! -name '.git*' \ | |
| 68 | -exec ${INSTALL_DATA} {} ${DESTDIR}${MEDIAWIKI}/{} \; \ | 88 | -exec ${INSTALL_DATA} {} ${DESTDIR}${MEDIAWIKI}/{} \; \ | |
| 69 | -exec ${CHOWN} ${APACHE_USER}:${APACHE_GROUP} \ | 89 | -exec ${CHOWN} ${APACHE_USER}:${APACHE_GROUP} \ | |
| 70 | ${DESTDIR}${MEDIAWIKI}/{} \; | 90 | ${DESTDIR}${MEDIAWIKI}/{} \; | |
| 71 | ${INSTALL_DATA} ${WRKDIR}/mediawiki.conf \ | 91 | ${INSTALL_DATA} ${WRKDIR}/mediawiki.conf \ | |
| 72 | ${DESTDIR}${PREFIX}/${EGDIR}/mediawiki.conf | 92 | ${DESTDIR}${PREFIX}/${EGDIR}/mediawiki.conf |
| @@ -1,14 +1,14 @@ | @@ -1,14 +1,14 @@ | |||
| 1 | @comment $NetBSD: PLIST,v 1.10 2012/06/19 11:55:25 wiz Exp $ | 1 | @comment $NetBSD: PLIST,v 1.11 2012/09/02 00:29:34 wen Exp $ | |
| 2 | share/examples/mediawiki/mediawiki.conf | 2 | share/examples/mediawiki/mediawiki.conf | |
| 3 | share/mediawiki/COPYING | 3 | share/mediawiki/COPYING | |
| 4 | share/mediawiki/CREDITS | 4 | share/mediawiki/CREDITS | |
| 5 | share/mediawiki/FAQ | 5 | share/mediawiki/FAQ | |
| 6 | share/mediawiki/HISTORY | 6 | share/mediawiki/HISTORY | |
| 7 | share/mediawiki/INSTALL | 7 | share/mediawiki/INSTALL | |
| 8 | share/mediawiki/README | 8 | share/mediawiki/README | |
| 9 | share/mediawiki/RELEASE-NOTES-1.19 | 9 | share/mediawiki/RELEASE-NOTES-1.19 | |
| 10 | share/mediawiki/StartProfiler.sample | 10 | share/mediawiki/StartProfiler.sample | |
| 11 | share/mediawiki/UPGRADE | 11 | share/mediawiki/UPGRADE | |
| 12 | share/mediawiki/api.php | 12 | share/mediawiki/api.php | |
| 13 | share/mediawiki/api.php5 | 13 | share/mediawiki/api.php5 | |
| 14 | share/mediawiki/bin/svnstat | 14 | share/mediawiki/bin/svnstat | |
| @@ -1617,28 +1617,30 @@ share/mediawiki/maintenance/minify.php | @@ -1617,28 +1617,30 @@ share/mediawiki/maintenance/minify.php | |||
| 1617 | share/mediawiki/maintenance/moveBatch.php | 1617 | share/mediawiki/maintenance/moveBatch.php | |
| 1618 | share/mediawiki/maintenance/mssql/tables.sql | 1618 | share/mediawiki/maintenance/mssql/tables.sql | |
| 1619 | share/mediawiki/maintenance/mwdocgen.php | 1619 | share/mediawiki/maintenance/mwdocgen.php | |
| 1620 | share/mediawiki/maintenance/namespaceDupes.php | 1620 | share/mediawiki/maintenance/namespaceDupes.php | |
| 1621 | share/mediawiki/maintenance/nextJobDB.php | 1621 | share/mediawiki/maintenance/nextJobDB.php | |
| 1622 | share/mediawiki/maintenance/nukeNS.php | 1622 | share/mediawiki/maintenance/nukeNS.php | |
| 1623 | share/mediawiki/maintenance/nukePage.php | 1623 | share/mediawiki/maintenance/nukePage.php | |
| 1624 | share/mediawiki/maintenance/oracle/alterSharedConstraints.php | 1624 | share/mediawiki/maintenance/oracle/alterSharedConstraints.php | |
| 1625 | share/mediawiki/maintenance/oracle/archives/patch-ar_sha1_field.sql | 1625 | share/mediawiki/maintenance/oracle/archives/patch-ar_sha1_field.sql | |
| 1626 | share/mediawiki/maintenance/oracle/archives/patch-job_timestamp_field.sql | 1626 | share/mediawiki/maintenance/oracle/archives/patch-job_timestamp_field.sql | |
| 1627 | share/mediawiki/maintenance/oracle/archives/patch-job_timestamp_index.sql | 1627 | share/mediawiki/maintenance/oracle/archives/patch-job_timestamp_index.sql | |
| 1628 | share/mediawiki/maintenance/oracle/archives/patch-logging_type_action_index.sql | 1628 | share/mediawiki/maintenance/oracle/archives/patch-logging_type_action_index.sql | |
| 1629 | share/mediawiki/maintenance/oracle/archives/patch-page_redirect_namespace_len.sql | 1629 | share/mediawiki/maintenance/oracle/archives/patch-page_redirect_namespace_len.sql | |
| 1630 | share/mediawiki/maintenance/oracle/archives/patch-page_restrictions_pkuk_fix.sql | |||
| 1630 | share/mediawiki/maintenance/oracle/archives/patch-rev_sha1_field.sql | 1631 | share/mediawiki/maintenance/oracle/archives/patch-rev_sha1_field.sql | |
| 1631 | share/mediawiki/maintenance/oracle/archives/patch-testrun.sql | 1632 | share/mediawiki/maintenance/oracle/archives/patch-testrun.sql | |
| 1633 | share/mediawiki/maintenance/oracle/archives/patch-ufg_group-length-increase.sql | |||
| 1632 | share/mediawiki/maintenance/oracle/archives/patch-ug_group-length-increase.sql | 1634 | share/mediawiki/maintenance/oracle/archives/patch-ug_group-length-increase.sql | |
| 1633 | share/mediawiki/maintenance/oracle/archives/patch-up_property.sql | 1635 | share/mediawiki/maintenance/oracle/archives/patch-up_property.sql | |
| 1634 | share/mediawiki/maintenance/oracle/archives/patch-uploadstash.sql | 1636 | share/mediawiki/maintenance/oracle/archives/patch-uploadstash.sql | |
| 1635 | share/mediawiki/maintenance/oracle/archives/patch-us_chunk_inx_field.sql | 1637 | share/mediawiki/maintenance/oracle/archives/patch-us_chunk_inx_field.sql | |
| 1636 | share/mediawiki/maintenance/oracle/archives/patch-user_email_index.sql | 1638 | share/mediawiki/maintenance/oracle/archives/patch-user_email_index.sql | |
| 1637 | share/mediawiki/maintenance/oracle/archives/patch-user_former_groups.sql | 1639 | share/mediawiki/maintenance/oracle/archives/patch-user_former_groups.sql | |
| 1638 | share/mediawiki/maintenance/oracle/archives/patch_16_17_schema_changes.sql | 1640 | share/mediawiki/maintenance/oracle/archives/patch_16_17_schema_changes.sql | |
| 1639 | share/mediawiki/maintenance/oracle/archives/patch_create_17_functions.sql | 1641 | share/mediawiki/maintenance/oracle/archives/patch_create_17_functions.sql | |
| 1640 | share/mediawiki/maintenance/oracle/archives/patch_fk_rename_deferred.sql | 1642 | share/mediawiki/maintenance/oracle/archives/patch_fk_rename_deferred.sql | |
| 1641 | share/mediawiki/maintenance/oracle/archives/patch_namespace_defaults.sql | 1643 | share/mediawiki/maintenance/oracle/archives/patch_namespace_defaults.sql | |
| 1642 | share/mediawiki/maintenance/oracle/archives/patch_rebuild_dupfunc.sql | 1644 | share/mediawiki/maintenance/oracle/archives/patch_rebuild_dupfunc.sql | |
| 1643 | share/mediawiki/maintenance/oracle/archives/patch_recentchanges_fk2_cascade.sql | 1645 | share/mediawiki/maintenance/oracle/archives/patch_recentchanges_fk2_cascade.sql | |
| 1644 | share/mediawiki/maintenance/oracle/archives/patch_remove_not_null_empty_defs.sql | 1646 | share/mediawiki/maintenance/oracle/archives/patch_remove_not_null_empty_defs.sql |
| @@ -1,5 +1,5 @@ | @@ -1,5 +1,5 @@ | |||
| 1 | $NetBSD: distinfo,v 1.14 2012/06/19 11:55:25 wiz Exp $ | 1 | $NetBSD: distinfo,v 1.15 2012/09/02 00:29:34 wen Exp $ | |
| 2 | 2 | |||
| 3 | SHA1 (mediawiki-1.19.1.tar.gz) = 7e827714aab2110719bb13ae0f10919ed01c08d7 | 3 | SHA1 (mediawiki-1.19.2.tar.gz) = 0e95a4c376bbcf77450adb1dca0180ac16da1b67 | |
| 4 | RMD160 (mediawiki-1.19.1.tar.gz) = c54d8ae8534146237766b392dac4578ecf883b0c | 4 | RMD160 (mediawiki-1.19.2.tar.gz) = a5799d3853327d4e279c3ea46613344471de2fa1 | |
| 5 | Size (mediawiki-1.19.1.tar.gz) = 17929538 bytes | 5 | Size (mediawiki-1.19.2.tar.gz) = 18266096 bytes |