pkgsrc.se | The NetBSD package collection

./devel/rt3, Industrial-grade ticketing system

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2013Q1, Version: 3.8.17, Package name: rt-3.8.17, Maintainer: spz

RT is an industrial-grade ticketing system. It lets a group of
people intelligently and efficiently manage requests submitted by
a community of users. RT is used by systems administrators, customer
support staffs, NOCs, developers and even marketing departments at
over a thousand sites around the world.

Required to run:
[www/p5-HTML-RewriteAttributes] [www/p5-HTML-Mason] [www/p5-HTTP-Server-Simple-Mason] [www/p5-Apache-Session] [www/p5-CSS-Squish] [www/p5-FCGI] [www/p5-HTML-Tree] [www/p5-HTTP-Server-Simple] [www/p5-HTML-Scrubber] [www/p5-HTML-Parser] [www/p5-libwww] [www/p5-CGI] [www/p5-HTML-Format] [net/p5-Net] [net/p5-Net-Server] [security/p5-Digest] [security/p5-Digest-MD5] [security/p5-GnuPG-Interface] [lang/perl5] [databases/p5-DBD-mysql] [databases/p5-DBI] [databases/p5-DBIx-SearchBuilder] [graphics/p5-GD] [graphics/p5-GDGraph] [graphics/p5-GDTextUtil] [mail/p5-Email-Address] [mail/p5-MIME-Types] [mail/p5-MIME-tools] [mail/p5-MailTools] [misc/p5-Locale-Maketext-Fuzzy] [misc/p5-Locale-Maketext] [misc/p5-Locale-Maketext-Lexicon] [textproc/p5-Text-Autoformat] [textproc/p5-Text-Wrapper] [textproc/p5-Text-WikiFormat] [textproc/p5-Regexp-Common] [textproc/p5-XML-Simple] [textproc/p5-Encode] [textproc/p5-Text-Template] [textproc/p5-Text-Quoted] [textproc/p5-XML-RSS] [devel/p5-Term-ReadKey] [devel/p5-PerlIO-eol] [devel/p5-Module-Versions-Report] [devel/p5-Cache-Simple-TimedExpiry] [devel/p5-Class-ReturnValue] [devel/p5-Tree-Simple] [devel/p5-UNIVERSAL-require] [devel/p5-Module-Refresh] [devel/p5-File-ShareDir] [devel/p5-Log-Dispatch] [time/p5-Calendar-Simple] [time/p5-TimeDate] [time/p5-Data-ICal] [time/p5-Time-modules]

Package options: fastcgi, mysql

Master sites:

http://download.bestpractical.com/pub/rt/release/ (Download)

SHA1: 4765c68f91a0e8e21ed0fd39397cd8e3970ca992
RMD160: 6da8fca56976233417bd47b26e1a7326fde5d2d0
Filesize: 5594.109 KB

Version history: (Expand)

(2013-05-30) Updated to version: rt-3.8.17
(2013-04-01) Package added to pkgsrc.se, version rt-3.8.15 (created)

CVS history: (Expand)

2013-05-30 10:29:36 by Matthias Scheler | Files touched by this commit (4) | Package updated

Log message:
Pullup ticket #4142 - requested by spz
devel/rt3: security update

Revisions pulled up:
- devel/rt3/Makefile                                            1.52
- devel/rt3/Makefile.install                                    1.20
- devel/rt3/PLIST                                               1.23
- devel/rt3/distinfo                                            1.24

---
   Module Name:	pkgsrc
   Committed By:	spz
   Date:		Sun May 26 16:55:53 UTC 2013

   Modified Files:
   	pkgsrc/devel/rt3: Makefile Makefile.install PLIST distinfo

   Log message:
   security update for RT3, fixing:

       CVE-2013-3368
       CVE-2013-3369
       CVE-2013-3370
       CVE-2013-3371
       CVE-2013-3372
       CVE-2013-3373
       CVE-2013-3374

   It also includes a database upgrade, so please make sure to run `make
   upgrade-database`.

   Changes in detail are:
   3.8.15->3.8.16:
   ruz 	stop RT from locking on "large" mails
   ruz 	make sure data is recorded (tests)
   alexmv 	Remove bogus argument to ->get(), which fail on HTTP::Message \ 
>= 5.05
   alexmv 	Ensure that tickets are destroyed before global destruction, in more
   alexmv 	Work around a bug in perl < 5.13.10 with open($fh, \ 
">:raw", \$string)
   sunnavy destroy more tickets and objects before global destruction for modern
   tsibley Remove the "signature" paragraph from the README's \ 
explanation of RT

   3.8.16->3.8.17:
   alexmv 	Ensure that filenames in inline image attributes are HTML-escaped
   alexmv 	Deny direct access to callbacks
   alexmv 	Protect calls to $m->comp with user input in ColumnMap
   alexmv 	Ensure that subjects cannot contain embedded newlines
   alexmv 	Remove filename= suggesions from Content-Disposition lines
   alexmv 	Ensure consistent escaping of filenames in attachment URIs
   alexmv 	Ensure that URLs placed in HTML attributes are escaped correctly, to
   	prevent XSS injection
   alexmv 	Ensure that the default replacement does not pass through unescaped
   	content
   alexmv 	Use File::Temp for non-predictable temporary filenames