pkgsrc.se | The NetBSD package collection

./www/davical, Simple CalDAV server using a PostgreSQL backend

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2019Q3, Version: 1.1.9.2, Package name: php71-davical-1.1.9.2, Maintainer: jym

DAViCal is a server for calendar sharing. It is an implementation of the
CalDAV protocol which is designed for storing calendaring resources (in
iCalendar format) on a remote shared server.

DAViCal supports basic delegation of read/write access among calendar users,
multiple users (or clients) reading and writing the same calendar entries over
time, and scheduling of meetings with free/busy time displayed.

An increasing number of calendar clients support the maintenance of shared
remote calendars through CalDAV, including Evolution, Mulberry, Chandler,
Mozilla Calendar (Sunbird/Lightning), and various other closed-source
products such as Apple's iCal and iPhone.

Required to run:
[devel/php-libawl] [sysutils/pwgen] [databases/postgresql95-client] [databases/p5-DBD-postgresql] [databases/p5-DBI] [databases/php-pdo_pgsql] [databases/php-pgsql] [textproc/p5-YAML] [time/php-calendar] [www/php-curl]

Required to build:
[pkgtools/cwrappers]

Master sites:

-https://gitlab.com/davical-project/davical/repository/archive.tar.gz?ref=r1.1.9.2 (Download)

SHA1: 0c86bd7755dfc14be3a1ca37cade8c5f72cf76af
RMD160: af68c13afc349c8f5fefd9e19ebe6fcd781b9050
Filesize: 1796.51 KB

Version history: (Expand)

(2019-12-12) Updated to version: php71-davical-1.1.9.2
(2019-10-02) Package added to pkgsrc.se, version php71-davical-1.1.8nb2 (created)

CVS history: (Expand)

2019-12-12 13:13:11 by Benny Siegert | Files touched by this commit (3)

Log message:
Pullup ticket #6100 - requested by hauke
www/davical: security fix

Revisions pulled up:
- www/davical/Makefile                                          1.42
- www/davical/PLIST                                             1.12
- www/davical/distinfo                                          1.17

---
   Module Name:    pkgsrc
   Committed By:   hauke
   Date:           Thu Dec 12 08:12:27 UTC 2019

   Modified Files:
            pkgsrc/www/davical: Makefile PLIST distinfo

   Log message:
   Update www/davical to v1.1.9.2

    >From upstream's changelog:

   1.1.9.2:

   Bug Fixes

        Fix CSRF not being checked in collection-edit.php

   Other Changes

        use foreach() instead of deprecated each()

   1.1.9.1:

   Bug Fixes

        Corrects reflected cross-site scripting (XSS) vulnerability
        Corrects persistent XSS vulnerability in user/group/resource details
        Corrects persistent XSS vulnerability in user/group/resource list
        Adds token to address cross-site request forgery (CSRF) vulnerability
        Corrects syntax error in name of collection_id
        Make calquery aware of default timezone
        Corrections to range-based calendar queries
        Add missing 'break' to rrule.php

   Other Changes

        Updated PHP version requirement