./www/contao35, Contao Open Source CMS 3.5.33

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 3.5.33, Package name: php56-contao35-3.5.33, Maintainer: taca

Contao is an Open Source Content Management Framework developed by Leo Feyer
and distributed under the LGPL license (see GPL.txt and LGPL.txt for more
information). It was formerly known as TYPOlight Open Source CMS.

Its open architecture allows everybody to extend the system to fit his
needs. Contao specializes in accessible websites and is accessbile
itself (front end and back end), rendering valid HTML5 or XHTML pages.

This is version 3.5 stable, LTS (Long Term Support) release.

DEINSTALL [+/-]

Required to run:
[www/php-curl] [graphics/php-gd] [archivers/php-zlib] [shells/bash] [security/php-mcrypt] [converters/php-mbstring] [databases/php-mysqli] [net/php-soap]

Required to build:
[pkgtools/cwrappers]

Master sites:

SHA1: 3397a6b7795a987c222e68f1f89b10c39137e16c
RMD160: 8e00d0280c575d86357b2a84205d74f30e2abf9d
Filesize: 10967.555 KB

Version history: (Expand)


CVS history: (Expand)


   2018-01-22 17:11:29 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
www/contao35: update to 3.5.33

Contao 3.5.33 is available			2018/01/22 10:08 by Leo Feyer

Contao version 3.5.33 is available.  The bugfix release restores the PHP 5.4
compatibility and fixes problems with MariaDB 10.2.4+ and MySQL 8.

PHP 5.4

Even if Contao 3.5 still supports PHP 5.4, we strongly advise against using
outdated PHP versions.  Contao 3.5 is compatible with the latest PHP versions,
therefore – if the installed extensions allow it – you should run it with PHP
7 or at least PHP 5.6.

Identifier Quoting

We have revised identifier quoting, which we had added to Contao 4.4.10, and
ported it to Contao 3, so Contao 3.5 should be compatible with MariaDB 10.2.4+
and MySQL 8 now.
   2018-01-18 17:13:31 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
www/contao35: update to 3.5.32

Contao 3.5.32 is available		2018/01/18 09:48 by Leo Feyer

Contao version 3.5.32 is available. The bugfix release fixes an XSS
vulnerability in the newsletter extension (CVE-2018-5478).

CVE-2018-5478

The vulnerability is in the "unsubscribe" module of the newsletter \ 
extension
and can easily be exploited by anyone in the front end. We therefore strongly
recommend you to update.

The problem affects Contao 2.0.0 to 3.5.31 and the Contao newsletter bundle
4.0.0 to 4.0.3.

If you are not using the newsletter extension or the "unsubscribe" module,
your installation is not affected by the vulnerability.
   2017-11-15 15:07:53 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
Update contaoet to 3.5.31.

Version 3.5.31 (2017-11-15)
---------------------------

### Fixed
Prevent SQL injections in the back end search panel (see CVE-2017-16558).
   2017-10-07 15:01:17 by Takahiro Kambe | Files touched by this commit (2) | Package updated
Log message:
www/contao35: Update to 3.5.30.

Version 3.5.30 (2017-10-06)
---------------------------

### Fixed
Filter multi-day events outside the scope in the event list (see #8792).

### Fixed
Correctly show multi-day events if the shortened view is disabled (see #8782).
   2017-09-28 14:46:25 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
www/contao35: update to 3.5.29

Version 3.5.29 (2017-09-27)
---------------------------

### Fixed
Correctly handle unencoded data images in the Combiner (see #8788).

### Fixed
Correctly show multi-day events if the shortened view is disabled (see #8782).

### Fixed
Do not add a suffix when copying if the "doNotCopy" flag is set (see \ 
#8610).

### Fixed
Use the module type as group header if sorted by type (see #8402).

### Fixed
Always show the "show from" and "show until" fields (see #8766).

### Fixed
Encode the username when opening the front end preview as a member (see #8762).
   2017-09-11 18:08:41 by Takahiro Kambe | Files touched by this commit (1)
Log message:
Make bash dependecny to runtime only.
   2017-07-12 16:42:55 by Takahiro Kambe | Files touched by this commit (2) | Package updated
Log message:
Update contao35 to 3.5.28.

Version 3.5.28 (2017-07-12)
---------------------------

### Fixed
Prevent arbitrary PHP file inclusions in the back end (see CVE-2017-10993).

### Fixed
Improve the accessibility of the CAPTCHA widget (see #8709).

### Fixed
Fixed the iOS scrolling bug in the simple modal script (see #8708).

### Fixed
Correctly cache the unique keys in the SQL cache (see #8712).
   2017-04-25 17:50:41 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
Update contao35 to 3.5.27.

Version 3.5.27 (2017-04-25)
---------------------------

### Fixed
Revert the Punycode library changes (see #8693).