Tue Dec 10 15:20:03 2013 UTC ()
Update typo3_47 package to 4.7.17 (TYPO3 4.7.17).

- Fix multiple vulnerabilities in TYPO3 CMS:
	http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/
- Enable PHP_VERSIONS_ACCEPTED which was accidently commented out by previous
  commit.

2013-12-10  9e378dd                  [RELEASE] Release of TYPO3 4.7.17 (TYPO3 Release Team)
2013-12-10  efa9e0b  #45043          [SECURITY] Prevent editor controlled hmac content (Franz G. Jahn)
2013-12-10  d207548  #42772          [SECURITY] XSS in colorpicker wizard (Anja Leichsenring)
2013-12-10  92712d6  #31206          [SECURITY] XSS in header link of all content elements (Anja Leichsenring)
2013-12-10  573f720  #20811          [SECURITY] XSS vulnerability in extension manager (Marcus Krause)
2013-12-10  b7eac59  #41714          [SECURITY] Information Disclosure in Wizards (Anja Leichsenring)
2013-12-10  319a06c  #54099          [SECURITY] Fix open redirection in openid extension (Anja Leichsenring)
2013-12-10  834afa5  #48187          [SECURITY] feuser_adminLib.inc allows to set arbitrary fields (Steffen Ritter)
2013-12-10  aa08f14  #36768          [SECURITY] XSS in be_layout wizard (Anja Leichsenring)
2013-12-10  f3b5a6a  #54074          [SECURITY] Remove possible XSS from ActionController Error output (Anja Leichsenring)
2013-12-10  0bc4fc4  #54073          [SECURITY] Unsafe unserialize of GET parameter in Add-Wizard (Marcus Krause)
2013-12-02  c400e94  #54124          [BUGFIX] ClientUtility does not detect Internet Explorer 11 (Stefan Neufeind)
2013-12-02  124a913  #54120          Revert "[BUGFIX] Object passed to date()" (Markus Klein)
2013-12-01  3f2e971                  Revert "[BUGFIX] Distinguish unassigend columns and colPos 0" (Steffen Ritter)
2013-11-29  a7dbbbf  #42651          [BUGFIX] ext:adodb Restrict connection wizard to admins (Christian Kuhn)
2013-11-26  542bd7d  #25157,#45550   [BUGFIX] Distinguish unassigend columns and colPos 0 (Philipp Gampe)


(taca)
diff -r1.19 -r1.20 pkgsrc/www/typo3_47/Makefile
diff -r1.9 -r1.10 pkgsrc/www/typo3_47/PLIST
diff -r1.14 -r1.15 pkgsrc/www/typo3_47/distinfo
cvs diff -r1.19 -r1.20 pkgsrc/www/typo3_47/Attic/Makefile (expand / switch to unified diff)

--- pkgsrc/www/typo3_47/Attic/Makefile 2013/12/05 16:42:21 1.19
+++ pkgsrc/www/typo3_47/Attic/Makefile 2013/12/10 15:20:03 1.20
@@ -1,40 +1,40 @@ @@ -1,40 +1,40 @@
1# $NetBSD: Makefile,v 1.19 2013/12/05 16:42:21 taca Exp $ 1# $NetBSD: Makefile,v 1.20 2013/12/10 15:20:03 taca Exp $
2# 2#
3 3
4DISTNAME= ${TYPO3NAME} 4DISTNAME= ${TYPO3NAME}
5PKGNAME= typo3-${VER} 5PKGNAME= typo3-${VER}
6CATEGORIES= www 6CATEGORIES= www
7MASTER_SITES= ${MASTER_SITE_SOURCEFORGE:=typo3/} 7MASTER_SITES= ${MASTER_SITE_SOURCEFORGE:=typo3/}
8DISTFILES= ${TYPO3NAME}${EXTRACT_SUFX} ${SITESRC}${EXTRACT_SUFX} 8DISTFILES= ${TYPO3NAME}${EXTRACT_SUFX} ${SITESRC}${EXTRACT_SUFX}
9 9
10MAINTAINER= taca@NetBSD.org 10MAINTAINER= taca@NetBSD.org
11HOMEPAGE= http://typo3.com/ 11HOMEPAGE= http://typo3.com/
12COMMENT= The TYPO3 content management system, 4.7 based release 12COMMENT= The TYPO3 content management system, 4.7 based release
13LICENSE= gnu-gpl-v2 13LICENSE= gnu-gpl-v2
14 14
15DEPENDS+= ${PHP_PKG_PREFIX}-{mysql,pgsql}>=5.1.0:../../databases/php-mysql 15DEPENDS+= ${PHP_PKG_PREFIX}-{mysql,pgsql}>=5.1.0:../../databases/php-mysql
16DEPENDS+= ${PHP_PKG_PREFIX}-zlib>=5.2.0:../../archivers/php-zlib/ 16DEPENDS+= ${PHP_PKG_PREFIX}-zlib>=5.2.0:../../archivers/php-zlib/
17DEPENDS+= ${PHP_PKG_PREFIX}-json>=5.2.0:../../textproc/php-json 17DEPENDS+= ${PHP_PKG_PREFIX}-json>=5.2.0:../../textproc/php-json
18 18
19VER= 4.7.16 19VER= 4.7.17
20NO_BUILD= yes 20NO_BUILD= yes
21USE_TOOLS+= bash:run pax 21USE_TOOLS+= bash:run pax
22 22
23TYPO3NAME= typo3_src-${VER} 23TYPO3NAME= typo3_src-${VER}
24SITESRC= dummy-${VER} 24SITESRC= dummy-${VER}
25WRKSRC= ${WRKDIR}/${DISTNAME} 25WRKSRC= ${WRKDIR}/${DISTNAME}
26 26
27#PHP_VERSIONS_ACCEPTED= 53 27PHP_VERSIONS_ACCEPTED= 53
28 28
29# maybe resides in lang/php/phpversion.mk 29# maybe resides in lang/php/phpversion.mk
30REPLACE_INTERPRETER+= php 30REPLACE_INTERPRETER+= php
31REPLACE.php.old= .*php[^ ]* 31REPLACE.php.old= .*php[^ ]*
32REPLACE.php.new= ${PREFIX}/bin/php 32REPLACE.php.new= ${PREFIX}/bin/php
33REPLACE_FILES.php= typo3/cli_dispatch.phpsh 33REPLACE_FILES.php= typo3/cli_dispatch.phpsh
34 34
35REPLACE_INTERPRETER+= sh 35REPLACE_INTERPRETER+= sh
36REPLACE.sh.old= /bin/bash 36REPLACE.sh.old= /bin/bash
37REPLACE.sh.new= ${TOOLS_PATH.bash} 37REPLACE.sh.new= ${TOOLS_PATH.bash}
38REPLACE_FILES.sh= typo3/contrib/flowplayer/plugins/flowplayer.captions/example/flvtool2-cuepoints.sh 38REPLACE_FILES.sh= typo3/contrib/flowplayer/plugins/flowplayer.captions/example/flvtool2-cuepoints.sh
39 39
40TYPO3DATADIRS= fileadmin fileadmin/_temp_ fileadmin/user_upload \ 40TYPO3DATADIRS= fileadmin fileadmin/_temp_ fileadmin/user_upload \
cvs diff -r1.9 -r1.10 pkgsrc/www/typo3_47/Attic/PLIST (expand / switch to unified diff)

--- pkgsrc/www/typo3_47/Attic/PLIST 2013/08/04 16:24:59 1.9
+++ pkgsrc/www/typo3_47/Attic/PLIST 2013/12/10 15:20:03 1.10
@@ -1,14 +1,14 @@ @@ -1,14 +1,14 @@
1@comment $NetBSD: PLIST,v 1.9 2013/08/04 16:24:59 taca Exp $ 1@comment $NetBSD: PLIST,v 1.10 2013/12/10 15:20:03 taca Exp $
2${EGDIR}/localconf.php 2${EGDIR}/localconf.php
3${TYPO3DIR}/${TYPO3NAME}/ChangeLog 3${TYPO3DIR}/${TYPO3NAME}/ChangeLog
4${TYPO3DIR}/${TYPO3NAME}/GPL.txt 4${TYPO3DIR}/${TYPO3NAME}/GPL.txt
5${TYPO3DIR}/${TYPO3NAME}/INSTALL.txt 5${TYPO3DIR}/${TYPO3NAME}/INSTALL.txt
6${TYPO3DIR}/${TYPO3NAME}/LICENSE.txt 6${TYPO3DIR}/${TYPO3NAME}/LICENSE.txt
7${TYPO3DIR}/${TYPO3NAME}/NEWS.txt 7${TYPO3DIR}/${TYPO3NAME}/NEWS.txt
8${TYPO3DIR}/${TYPO3NAME}/README.txt 8${TYPO3DIR}/${TYPO3NAME}/README.txt
9${TYPO3DIR}/${TYPO3NAME}/RELEASE_NOTES.txt 9${TYPO3DIR}/${TYPO3NAME}/RELEASE_NOTES.txt
10${TYPO3DIR}/${TYPO3NAME}/_.htaccess 10${TYPO3DIR}/${TYPO3NAME}/_.htaccess
11${TYPO3DIR}/${TYPO3NAME}/index.php 11${TYPO3DIR}/${TYPO3NAME}/index.php
12${TYPO3DIR}/${TYPO3NAME}/t3lib/GPL.txt 12${TYPO3DIR}/${TYPO3NAME}/t3lib/GPL.txt
13${TYPO3DIR}/${TYPO3NAME}/t3lib/README.txt 13${TYPO3DIR}/${TYPO3NAME}/t3lib/README.txt
14${TYPO3DIR}/${TYPO3NAME}/t3lib/cache/backend/class.t3lib_cache_backend_abstractbackend.php 14${TYPO3DIR}/${TYPO3NAME}/t3lib/cache/backend/class.t3lib_cache_backend_abstractbackend.php
@@ -2959,26 +2959,27 @@ ${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/db @@ -2959,26 +2959,27 @@ ${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/db
2959${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/mod1/conf.php 2959${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/mod1/conf.php
2960${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/mod1/index.php 2960${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/mod1/index.php
2961${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/mod1/locallang.xlf 2961${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/mod1/locallang.xlf
2962${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/mod1/locallang_mod.xlf 2962${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/mod1/locallang_mod.xlf
2963${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/mod1/moduleicon.gif 2963${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/mod1/moduleicon.gif
2964${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/README 2964${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/README
2965${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/Templates/install.html 2965${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/Templates/install.html
2966${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/oracle/indexed_search.diff 2966${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/oracle/indexed_search.diff
2967${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/oracle/realurl.diff 2967${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/oracle/realurl.diff
2968${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/oracle/scheduler.diff 2968${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/oracle/scheduler.diff
2969${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/oracle/templavoila.diff 2969${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/oracle/templavoila.diff
2970${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/postgresql/postgresql-compatibility.sql 2970${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/dbal/res/postgresql/postgresql-compatibility.sql
2971${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/ChangeLog 2971${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/ChangeLog
 2972${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/Tests/Unit/tools/class.tx_em_toolsTest.php
2972${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/class.tx_em_api.php 2973${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/class.tx_em_api.php
2973${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/class.tx_em_extensionmanager.php 2974${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/class.tx_em_extensionmanager.php
2974${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/conf.php 2975${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/conf.php
2975${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/connection/class.tx_em_connection_extdirectserver.php 2976${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/connection/class.tx_em_connection_extdirectserver.php
2976${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/connection/class.tx_em_connection_extdirectsoap.php 2977${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/connection/class.tx_em_connection_extdirectsoap.php
2977${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/connection/class.tx_em_connection_soap.php 2978${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/connection/class.tx_em_connection_soap.php
2978${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/connection/class.tx_em_connection_ter.php 2979${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/connection/class.tx_em_connection_ter.php
2979${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/database/class.tx_em_database.php 2980${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/database/class.tx_em_database.php
2980${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/exception/class.tx_em_connectionexception.php 2981${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/exception/class.tx_em_connectionexception.php
2981${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/exception/class.tx_em_extensionimportexception.php 2982${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/exception/class.tx_em_extensionimportexception.php
2982${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/exception/class.tx_em_extensionxmlexception.php 2983${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/exception/class.tx_em_extensionxmlexception.php
2983${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/exception/class.tx_em_mirrorxmlexception.php 2984${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/exception/class.tx_em_mirrorxmlexception.php
2984${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/exception/class.tx_em_xmlexception.php 2985${TYPO3DIR}/${TYPO3NAME}/typo3/sysext/em/classes/exception/class.tx_em_xmlexception.php
cvs diff -r1.14 -r1.15 pkgsrc/www/typo3_47/Attic/distinfo (expand / switch to unified diff)

--- pkgsrc/www/typo3_47/Attic/distinfo 2013/12/05 16:42:21 1.14
+++ pkgsrc/www/typo3_47/Attic/distinfo 2013/12/10 15:20:03 1.15
@@ -1,9 +1,9 @@ @@ -1,9 +1,9 @@
1$NetBSD: distinfo,v 1.14 2013/12/05 16:42:21 taca Exp $ 1$NetBSD: distinfo,v 1.15 2013/12/10 15:20:03 taca Exp $
2 2
3SHA1 (dummy-4.7.16.tar.gz) = aa0d418a13d1662769a4843d02aebd165a70b139 3SHA1 (dummy-4.7.17.tar.gz) = 264d5609306e29e5dfa3e963334c22977a1cf894
4RMD160 (dummy-4.7.16.tar.gz) = 8546062cd99fe7ede5da4956f74ee7f9d4bf10dd 4RMD160 (dummy-4.7.17.tar.gz) = 9b6b8a0294843e05c2191af12cd9e190efb2b8f0
5Size (dummy-4.7.16.tar.gz) = 10277 bytes 5Size (dummy-4.7.17.tar.gz) = 10277 bytes
6SHA1 (typo3_src-4.7.16.tar.gz) = 52bc88ded5fc1a353b6b31cc21e84757942f99c6 6SHA1 (typo3_src-4.7.17.tar.gz) = c0baf37a087085cb52888a0e0b96166c69add3d6
7RMD160 (typo3_src-4.7.16.tar.gz) = 3c57e004dc9aa33279f674de99c93130ef8060cd 7RMD160 (typo3_src-4.7.17.tar.gz) = efa0d326202869b07cae394bdcf8994462f22747
8Size (typo3_src-4.7.16.tar.gz) = 22630645 bytes 8Size (typo3_src-4.7.17.tar.gz) = 22632250 bytes
9SHA1 (patch-t3lib_config__default.php) = 9a016a8510adac61abff93b87495c4657b9cc131 9SHA1 (patch-t3lib_config__default.php) = 9a016a8510adac61abff93b87495c4657b9cc131