Subject: CVS commit: [pkgsrc-2014Q3] pkgsrc/www/drupal7
From: Matthias Scheler
Date: 2014-11-25 15:30:41
Message id: 20141125143042.05C7498@cvs.netbsd.org

Log Message:
Pullup ticket #4556 - requested by taca
www/drupal7: security update

Revisions pulled up:
- www/drupal7/Makefile                                          1.30
- www/drupal7/PLIST                                             1.11
- www/drupal7/distinfo                                          1.23

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Nov 23 16:40:10 UTC 2014

   Modified Files:
   	pkgsrc/www/drupal7: Makefile PLIST distinfo

   Log Message:
   Update drupal7 to 7.34.

   Drupal 7.34, 2014-11-19
   ----------------------
   - Fixed security issues (multiple vulnerabilities). See SA-CORE-2014-006.

   Drupal 7.33, 2014-11-07
   -----------------------
   - Began storing the file modification time of each module and theme in the
     {system} database table so that contributed modules can use it to identify
     recently changed modules and themes (minor data structure change to the
     return value of system_get_info() and other related functions).
   - Added a "Did you mean?" feature to the run-tests.sh script for running
     automated tests from the command line, to help developers who are attempting
     to run a particular test class or group.
   - Changed the date format used in various HTTP headers output by Drupal core
     from RFC 1123 format to RFC 7231 format.
   - Added a "block_cache_bypass_node_grants" variable to allow sites \ 
which have
     node access modules enabled to use the block cache if desired (API addition).
   - Made image derivative generation HTTP requests return a 404 error (rather
     than a 500 error) when the source image does not exist.
   - Fixed a bug which caused user pictures to be removed from the user object
     after saving, and resulted in data loss if the user account was subsequently
     re-saved.
   - Fixed a bug in which field_has_data() did not return TRUE for fields that
     only had data in older entity revisions, leading to loss of the field's data
     when the field configuration was edited.
   - Fixed a bug which caused the Ajax progress throbber to appear misaligned in
     many situatons (minor styling change).
   - Prevented the Bartik theme from lower-casing the "Permalink" link on
     comments, for improved multilingual support (minor UI change).
   - Added a "preferred_menu_links" tag to the database query that is \ 
used by
     menu_link_get_preferred() to find the preferred menu link for a given path,
     to make it easier to alter.
   - Increased the maximum allowed length of block titles to 255 characters
     (database schema change to the {block} table).
   - Removed the Field module's field_modules_uninstalled() function, since it did
     not do anything when it was invoked.
   - Added a "theme_hook_original" variable to templates and theme \ 
functions and
     an optional sitewide theme debug mode, to provide contextual information in
     the page's HTML to theme developers. The theme debug mode is based on the one
     used with Twig in Drupal 8 and can be accessed by setting the \ 
"theme_debug"
     variable to TRUE (API addition).
   - Added an entity_view_mode_prepare() API function to allow entity-defining
     modules to properly invoke hook_entity_view_mode_alter(), and used it
     throughout Drupal core to fix bugs with the invocation of that hook (API
     change: https://www.drupal.org/node/2369141).
   - Security improvement: Made the database API's orderBy() method sanitize the
     sort direction ("ASC" or "DESC") for queries built with \ 
db_select(), so that
     calling code does not have to.
   - Changed the RDF module to consistently output RDF metadata for nodes and
     comments near where the node is rendered in the HTML (minor markup and data
     structure change).
   - Added an HTML class to RDFa metatags throughout Drupal to prevent them from
     accidentally affecting the site appearance (minor markup change).
   - Fixed a bug in the Unicode requirements check which prevented installing
     Drupal on PHP 5.6.
   - Fixed a bug which caused drupal_get_bootstrap_phase() to abort the bootstrap
     when called early in the page request.
   - Renamed the "Search result" view mode to "Search result \ 
highlighting input"
     to better reflect how it is used (UI change).
   - Improved database queries generated by EntityFieldQuery in the case where
     delta or language condition groups are used, to reduce the number of INNER
     JOINs (this is a minor data structure change affecting code which implements
     hook_query_alter() on these queries).
   - Removed special-case behavior for file uploads which allowed user #1 to
     bypass maximum file size and user quota limits.
   - Numerous small bug fixes.
   - Numerous API documentation improvements.
   - Additional automated test coverage.

Files:
RevisionActionfile
1.28.2.2modifypkgsrc/www/drupal7/Makefile
1.10.2.1modifypkgsrc/www/drupal7/PLIST
1.21.2.2modifypkgsrc/www/drupal7/distinfo