Subject: CVS commit: pkgsrc/www/typo3_61
From: Takahiro Kambe
Date: 2013-12-10 16:22:20
Message id: 20131210152220.2609A96@cvs.netbsd.org
Log Message:
Update typo3_61 package to 6.1.7 (TYPO3 6.1.7).

- Fix multiple vulnerabilities in TYPO3 CMS:
	http://typo3.org/teams/security/security-bulletins/typo3-core/typo3-core-sa-2013-004/

2013-12-10  afbadea                  [RELEASE] Release of TYPO3 6.1.7 (TYPO3 \ 
Release Team)
2013-12-10  7481971  #31206          [SECURITY] XSS in header link of all \ 
content elements (Anja Leichsenring)
2013-12-10  cb8db28  #42772          [SECURITY] XSS in colorpicker wizard \ 
(Marcus Krause)
2013-12-10  2d29894  #45043          [SECURITY] Prevent editor controlled hmac \ 
content (Franz G. Jahn)
2013-12-10  dca9c88  #48691          [SECURITY] XSS in backend user \ 
adminstration (Marc Bastian Heinrichs)
2013-12-10  450e5d3  #41714          [SECURITY] Information Disclosure in \ 
Wizards (Helmut Hummel)
2013-12-10  7e7f9e3  #54099          [SECURITY] Fix open redirection in openid \ 
extension (Helmut Hummel)
2013-12-10  ad11945  #36768          [SECURITY] XSS in be_layout wizard (Anja \ 
Leichsenring)
2013-12-10  18e0491  #47086          [SECURITY] XSS in beuser VH (Anja Leichsenring)
2013-12-10  cbbeefd  #54074          [SECURITY] Remove possible XSS from \ 
ActionController Error output (Anja Leichsenring)
2013-12-10  163947a  #54073          [SECURITY] Unsafe unserialize of GET \ 
parameter in Add-Wizard (Steffen Ritter)
2013-12-02  d21a628  #54124          [BUGFIX] ClientUtility does not detect \ 
Internet Explorer 11 (Stefan Neufeind)
2013-12-02  e538020  #54117          [BUGFIX] Add missing namespacing for \ 
calling GeneralUtility (Stefan Neufeind)
2013-11-29  3a66a0e  #42651          [BUGFIX] ext:adodb Restrict connection \ 
wizard to admins (Christian Kuhn)
Files:
RevisionActionfile
1.3modifypkgsrc/www/typo3_61/Makefile
1.3modifypkgsrc/www/typo3_61/distinfo