./devel/mantis, PHP/MySQL/web based bugtracking system

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 1.3.1nb1, Package name: mantis-1.3.1nb1, Maintainer: pkgsrc-users

Mantis is a web-based bugtracking system. It is written in the PHP scripting
language and requires the MySQL database and a webserver. Mantis has been
installed on Windows, MacOS, OS/2, and a variety of Unix operating systems.
Almost any web browser should be able to function as a client. It is released
under the terms of the GNU General Public License (GPL).

Mantis is free to use and modify. It is free to redistribute as long as you
abide by the distribution terms of the GPL.


Required to run:
[textproc/php-json] [shells/bash] [databases/php-mysqli]


Package options: mysql

Master sites:

SHA1: baa398bd59356ed4142270b38fcdf67c6df54a4c
RMD160: 828fc4f24dc17e77dacd20c12fc7917f1834a8bc
Filesize: 13129.575 KB

Version history: (Expand)


CVS history: (Expand)


   2016-09-11 19:03:29 by Takahiro Kambe | Files touched by this commit (53)
Log message:
Drop "55" (php55) from PHP_VERSIONS_ACCEPTED.
   2016-09-01 15:22:45 by Ryo ONODERA | Files touched by this commit (2)
Log message:
Make pkglint more happy
   2016-09-01 15:20:55 by Ryo ONODERA | Files touched by this commit (1)
Log message:
Add ldap option
   2016-09-01 15:16:15 by Ryo ONODERA | Files touched by this commit (1) | Package updated
Log message:
Bump PKGREVISION from adding textproc/php-json dependency
   2016-08-30 14:37:43 by Ryo ONODERA | Files touched by this commit (5) | Package updated
Log message:
Update to 1.3.1

* Remove Apache httpd and php module dependency. This package works fine with
  nginx and php-fpm too
* Add database option for MySQL and PostgreSQL
* For MySQL, php-mysqli is recommended. Use it as MySQL option

Changelog:
Not available.
1.3.x is new stable branch.
   2015-12-06 13:13:13 by Takahiro Kambe | Files touched by this commit (25)
Log message:
Explicitly restrict PHP_VERSIONS_ACCEPTED to 55 and 56 for packages which
use php-mysql package.
   2015-11-03 04:29:40 by Alistair G. Crooks | Files touched by this commit (1995)
Log message:
Add SHA512 digests for distfiles for devel category

Issues found with existing distfiles:
	distfiles/eclipse-sourceBuild-srcIncluded-3.0.1.zip
	distfiles/fortran-utils-1.1.tar.gz
	distfiles/ivykis-0.39.tar.gz
	distfiles/enum-1.11.tar.gz
	distfiles/pvs-3.2-libraries.tgz
	distfiles/pvs-3.2-linux.tgz
	distfiles/pvs-3.2-solaris.tgz
	distfiles/pvs-3.2-system.tgz
No changes made to these distinfo files.

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.
   2014-09-24 03:06:26 by Blue Rats | Files touched by this commit (5) | Package updated
Log message:
Update to 1.2.17. pkgsrc changes: Add bash:run to USE_TOOLS and
REPLACE_BASH in installed file. Replace PHP interpreter in installed *.php
files. Move options framework into options.mk. Use INSTALLATION_DIRS
instead of INSTALL_DATA_DIR. From doc/RELEASE:

1.2.17 Security Release (2014-03-04)
-------------------------------------------------

MantisBT 1.2.17 is a security update for the stable 1.2.x branch. All
installations that are currently running any 1.2.x version are strongly advised
to upgrade to this release. Download it from [3].

An SQL injection vulnerability (CVE-2014-2238) in adm_config_report.php was
patched. Refer to issue #17055 for detailed information.

This release also includes a few bug fixes for the tracker, including News API
correction for the regression issue #16940 introduced in 1.2.16, as well as
updated translations in many languages.

A full changelog for the 1.2.x series can be found on the official site. [1]

1.2.16 Security Release (2014-02-07)
-------------------------------------------------

MantisBT 1.2.16 is a security update for the stable 1.2.x branch. All
installations that are currently running any 1.2.x version are strongly advised
to upgrade to this release. Download it from [3].

The following security issues were resolved:

 - Cross-site scripting (XSS) issue in account_sponsor_page.php, allowing a
   malicious user with project manager access to execute arbitrary JavaScript
   code (CVE-2013-4460). Affects MantisBT 1.1.0 and later.
   Refer to issue #16513 for detailed information.

 - SQL injection attacks through the SOAP API's mc_attachment_get() function
   (CVE-2014-1608). Affects MantisBT 1.1.0a4 and later.
   Refer to issue #16879 for detailed information.

 - Additional cases of unsanitized SQL query parameters usage were identified,
   potentially allowing SQL injection attacks (CVE-2014-1609).
   Refer to issue #16880 for detailed information.

This release also includes many bug fixes and enhancements to the tracker
and the SOAP api, as well as updated translations in many languages.

A full changelog for the 1.2.x series can be found on the official site. [1]

[1] The changelog is split between multiple releases:

1.2.17     http://www.mantisbt.org/bugs/changelog_ … ion_id=189
1.2.16     http://www.mantisbt.org/bugs/changelog_ … ion_id=183