Subject: CVS commit: pkgsrc/www/typo3
From: Takahiro Kambe
Date: 2009-01-21 14:10:05
Message id: 20090121131005.EAB21175D0@cvs.netbsd.org

Log Message:
Update www/typo3 package to 4.2.4.

This update contains security fixes and please refer ChangeLog file
for full changes.

1. System extension Install tool (install)

	Insecure Randomness

2. Authentication library

	Broken Authentication and Session Management

3. System extension Indexed Search Engine (indexed_search)

	Cross-Site Scripting, Remote Command Execution

4. System extension ADOdb (adodb)

	Cross-Site Scripting

5. Workspace module

	Cross-Site Scripting

After update, you will need to create a new encryption key.

(1) Upgrade to the new TYPO3 version.
(2) Clear the configuration cache
(3) Open the install tool and choose menu 1 ("Basic Configuration").
(4) Scroll to the bottom of the page and click on the button
    "Generate random key".
(5) Submit the form by clicking on "Update localconf.php".
(6) Clear the configuration and page cache again.

Files:
RevisionActionfile
1.10modifypkgsrc/www/typo3/Makefile
1.5modifypkgsrc/www/typo3/PLIST
1.5modifypkgsrc/www/typo3/distinfo
1.1addpkgsrc/www/typo3/MESSAGE