pkgsrc.se | The NetBSD package collection

./www/wordpress, Blogging tool written in php

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2014Q1, Version: 3.8.2, Package name: wordpress-3.8.2, Maintainer: morr

WordPress is a state-of-the-art publishing platform with a focus on
aesthetics, web standards, and usability. WordPress is both free and
priceless at the same time.

Required to run:
[databases/php-mysql] [www/ap-php]

Required to build:
[www/apache22]

Package options: ap-php

Master sites:

http://wordpress.org/ (Download)

SHA1: bc4314abb6d4cb13b284b8ada0d6f69420557bec
RMD160: 4f9a5f26e081f101fbc1a6fe80015f75f92d36b7
Filesize: 5732.682 KB

Version history: (Expand)

(2014-04-14) Updated to version: wordpress-3.8.2
(2014-04-04) Package has been reborn
(2014-04-03) Package added to pkgsrc.se, version wordpress-3.8.1 (created)

CVS history: (Expand)

2014-04-14 14:29:38 by Matthias Scheler | Files touched by this commit (2) | Package updated

Log message:
Pullup ticket #4370 - requested by morr
www/wordpress: security update

Revisions pulled up:
- www/wordpress/Makefile                                        1.39
- www/wordpress/distinfo                                        1.31

---
   Module Name:	pkgsrc
   Committed By:	morr
   Date:		Sun Apr 13 14:10:59 UTC 2014

   Modified Files:
   	pkgsrc/www/wordpress: Makefile distinfo

   Log message:
   Update to newest version of Wordpress, containing security fixes.

   It contains 9 bugfixes and 5 security fixes:

   * Potential authentication cookie forgery. CVE-2014-0166.
   * Privilege escalation: prevent contributors from publishing posts. CVE-2014-0165.
   * (Hardening) Pass along additional information when processing pingbacks to \ 
help hosts identify potentially abusive requests.
   * (Hardening) Fix a low-impact SQL injection by trusted users.
   * (Hardening) Prevent possible cross-domain scripting through Plupload, the \ 
third-party library WordPress uses for uploading files.