Path to this page:
./
www/wordpress,
Blogging tool written in php
Branch: pkgsrc-2010Q3,
Version: 3.0.4,
Package name: wordpress-3.0.4,
Maintainer: morrWordPress is a state-of-the-art publishing platform with a focus on
aesthetics, web standards, and usability. WordPress is both free and
priceless at the same time.
Required to run:[
databases/php-mysql] [
www/ap-php]
Required to build:[
www/apache22] [
lang/perl5]
Package options: ap-php
Master sites:
SHA1: b0c0500281078fb26e591231269a3baf04fc58c3
RMD160: c0418e9622e95ecca4cc7e10c3f2ef7339de1bdf
Filesize: 2635.939 KB
Version history: (Expand)
- (2011-01-03) Updated to version: wordpress-3.0.4
- (2010-12-13) Updated to version: wordpress-3.0.3
- (2010-12-09) Updated to version: wordpress-3.0.2
- (2010-10-17) Package added to pkgsrc.se, version wordpress-3.0.1 (created)
CVS history: (Expand)
2010-12-31 08:12:18 by Steven Drake | Files touched by this commit (2) | |
Log message:
Pullup ticket #3314 - requested by morr
wordpress critical security update.
Revisions pulled up:
- www/wordpress/Makefile 1.14
- www/wordpress/distinfo 1.10
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: morr
Date: Thu Dec 30 22:27:45 UTC 2010
Modified Files:
pkgsrc/www/wordpress: Makefile distinfo
Log message:
Critical security update.
ChangeLog:
* Fix XSS vulnerabilities in the KSES library: Don't be case sensitive
to attribute names. Handle padded entities when checking for bad
protocols. Normalize entities before checking for bad protocols in
esc_url().
|
2010-12-12 16:34:39 by Matthias Scheler | Files touched by this commit (2) | |
Log message:
Pullup ticket #3300 - requested by morr
www/wordpress: security update
Revisions pulled up:
- www/wordpress/Makefile 1.13
- www/wordpress/distinfo 1.9
---
Module Name: pkgsrc
Committed By: morr
Date: Fri Dec 10 23:34:18 UTC 2010
Modified Files:
pkgsrc/www/wordpress: Makefile distinfo
Log message:
Security update to 3.0.3. Changes:
Fixes issues in the XML-RPC remote publishing interface which under certain \
circumstances allowed Author- and Contributor-level users to improperly edit, \
publish or delete posts.
|
2010-12-07 13:08:21 by Matthias Scheler | Files touched by this commit (3) | |
Log message:
Pullup ticket #3296 - requested by morr
www/wordpress: security update
Revisions pulled up:
- www/wordpress/Makefile 1.12
- www/wordpress/PLIST 1.7
- www/wordpress/distinfo 1.8
---
Module Name: pkgsrc
Committed By: morr
Date: Sun Dec 5 16:46:29 UTC 2010
Modified Files:
pkgsrc/www/wordpress: Makefile PLIST distinfo
Log message:
Security update. Changes:
* Fix moderate security issue where a malicious Author-level user could
gain further access to the site.
* Remove pingback/trackback blogroll whitelisting feature as it can
easily be abused.
* Fix canonical redirection for permalinks containing %category% with
nested categories and paging.
* Fix occasional irrelevant error messages on plugin activation.
* Minor XSS fixes in request_filesystem_credentials() and when deleting
a plugin.
* Clarify the license in the readme
* Multisite: Fix the delete_user meta capability
* Multisite: Force current_user_can_for_blog() to run map_meta_cap()
even for super admins
* Multisite: Fix ms-files.php content type headers when requesting a
URL with a query string
* Multisite: Fix the usage of the SUBDOMAIN_INSTALL constant for
upgraded WordPress MU installs
While here, set license.
|