./www/contao44, Contao Open Source CMS 4.4.18

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: CURRENT, Version: 4.4.18, Package name: php71-contao44-4.4.18, Maintainer: taca

Contao is an Open Source Content Management Framework developed by Leo Feyer
and distributed under the LGPL license.

Its open architecture allows everybody to extend the system to fit his
needs. Contao specializes in accessible websites and is accessbile
itself (front end and back end), rendering valid HTML5.

Contao 4.4 is fourth minor release of Contao 4 and it is LTS (Long Term
Support) release until June 2021.

Additionally, these new features from 4.3.

* Improved backend theme
* Improved element preview
* Detect version conflicts
* Improved handling of image meta data
* Details view contains path addition to their UUIDs
* Honeypot anti-spam
* Allowed member groups
* Import options for some form fields
* DCA picker
* Filter pages and articles
* Search files
* Contao Manager support

DEINSTALL [+/-]

Required to run:
[textproc/php-json] [www/php-curl] [graphics/php-gd] [databases/php-pdo_mysql] [archivers/php-zlib] [shells/bash] [converters/php-mbstring] [net/php-soap] [textproc/php-intl] [security/php-pecl-mcrypt]

Required to build:
[pkgtools/cwrappers]

Master sites:

SHA1: 184687abd1b52e1fae9fa2768e98e61c0f5df2fb
RMD160: 9b1818ad5fb08a29fba2c50e203b1a266459b972
Filesize: 30503.289 KB

Version history: (Expand)


CVS history: (Expand)


   2018-04-23 16:19:00 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
www/contao44: update to 4.4.18

Contao 4.4.17 (2018-04-04)

Contao version 4.4.17 is available.  The bugfix release fixes a few minor
issues including a problem with rendering custom layout sections.

Contao 4.4.18 (2018-04-18)

Contao version 4.4.18 is available.  The bugfix release fixes an XSS
vulnerability in the system log of the back end (CVE-2018-10125).

CVE-2018-10125

With a manipulated request, an attacker can implant a script which is executed
when a logged in back end user opens the system log.  The attacker themselves
does not have to be logged in.

The problem affects Contao 3.0.0 to 3.5.34, 4.0.0 to 4.4.17 and 4.5.0 to
4.5.7. We highly recommend you to update.
   2018-03-09 15:12:34 by Takahiro Kambe | Files touched by this commit (2) | Package updated
Log message:
www/contao44: update to 4.4.16

Contao 4.4.16 is available			2018/03/08 15:39 by Leo Feyer

Contao version 4.4.16 is available. The bugfix release fixes a problem with
the page picker in TinyMCE.
   2018-03-06 17:26:28 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
www/contao44: update to 4.4.15

Contao 4.4.15 is available			2018/03/06 09:52 by Leo Feyer

Contao version 4.4.15 is available. The bugfix release fixes several issues
including problems with the HTTP cache and improves the folder hash
calculation.
   2018-02-28 16:57:30 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
www/contao44: update to 4.4.14

Contao 4.4.14 is released on 14th Feb 2018.

Release note:

Contao version 4.4.14 is available. The bugfix release fixes several issues
including a problem with rebuilding the search index.
   2018-01-24 14:54:50 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
www/contao44: update to 4.4.13

Contao 4.4.13 is available			2018/1/23 10:59 by Leo Feyer

Contao version 4.4.13 is available. The bugfix release fixes issues with PHP
7.2 as well as with MariaDB 10.2.4+ and MySQL 8.
   2018-01-04 14:23:04 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
www/contao44: update to 4.4.12

From release announce:

4.4.9 (2017/12/14)

* Fixes several minor PHP 7.2 related issues.

4.4.10 (2017/12/27)

* Fixes a few minor issues including a problem with the comments bundle.

4.4.11 (2017/12/28)

* Reverts the identifier quoting changes.

  MySQL 8 and MariaDB 10.2

    In MySQL 8.0.2 and MariaDB 10.2.7 rows has been added as reserved
    word. Since we are using a field named rows in the tl_layout
    table, Contao is no longer compatible with the mentioned database
    versions.

    To avoid renaming the field in Contao and potentially causing
    theme import issues, we have added identifier quoting in version
    4.4.10(*1). Unfortunately this led to several unforeseen
    problems(*2), so we had to revert the changes in version 4.4.11.

    (*1) https://github.com/contao/core-bundle/pull/1262
    (*2) https://github.com/contao/core/pull/881 … -354094845

4.4.12 (2018/1/3)

* Optimizes adding pages to the search index and fixes a few minor issues.
   2017-11-20 05:53:56 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
www/contao44: Update due to repacakge.

Add DIST_SUBDIR due to repacakging.

Bump PKGREVISION.
   2017-11-15 15:09:16 by Takahiro Kambe | Files touched by this commit (3) | Package updated
Log message:
www/contao44: update to 4.4.8

# Contao core bundle change log

### 4.4.8 (2017-11-15)

 * Prevent SQL injections in the back end search panel (see CVE-2017-16558).
 * Support class named services in System::import() and System::importStatic()
   (see #1176).
 * Only show pretty error screens on Contao routes (see #1149).

# Contao listing bundle change log

### 4.4.8 (2017-11-15)

 * Prevent SQL injections in the listing module (see CVE-2017-16558).