Path to this page:
Subject: CVS commit: [pkgsrc-2011Q1] pkgsrc/www/wordpress
From: Matthias Scheler
Date: 2011-04-11 16:20:17
Message id: 20110411142017.2FE14175DD@cvs.netbsd.org
Log Message:
Pullup ticket #3408 - requested by morr
www/wordpress security update
Revisions pulled up:
- www/wordpress/Makefile 1.17
- www/wordpress/distinfo 1.13
---
Module Name: pkgsrc
Committed By: morr
Date: Sat Apr 9 00:57:43 UTC 2011
Modified Files:
pkgsrc/www/wordpress: Makefile distinfo
Log Message:
Update to wordpress 3.1.1.
This maintenance and security release fixes almost thirty issues in 3.1,
including:
* Some security hardening to media uploads
* Performance improvements
* Fixes for IIS6 support
* Fixes for taxonomy and PATHINFO (/index.php/) permalinks
* Fixes for various query and taxonomy edge cases that caused some plugin
compatibility issues
Version 3.1.1 also addresses three security issues discovered by
WordPress core developers Jon Cave and Peter Westwood, of wordpress's security
team. The first hardens CSRF prevention in the media uploader. The
second avoids a PHP crash in certain environments when handling
devilishly devised links in comments, and the third addresses an XSS
flaw.
Files: