Bug 262197 - www/typo3-11: Update to 11.5.7
Summary: www/typo3-11: Update to 11.5.7
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Many People
Assignee: Florian Smeets
URL: https://get.typo3.org/release-notes/1...
Keywords: needs-patch, needs-qa, security
Depends on:
Blocks:
 
Reported: 2022-02-25 18:37 UTC by Helmut Ritter
Modified: 2022-02-27 20:27 UTC (History)
1 user (show)

See Also:
koobs: maintainer-feedback? (flo)
koobs: merge-quarterly?

Attachments
Update to 11.5.7 (879 bytes, text/plain)
2022-02-25 18:37 UTC, Helmut Ritter 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Helmut Ritter 2022-02-25 18:37:48 UTC 
Created attachment 232109 [details]
Update to 11.5.7

These versions are maintenance releases and contain bug fixes only.

For details about the releases, please see:

https://get.typo3.org/release-notes/11.5.7
https://typo3.org/article/typo3-1157-and-10425-maintenance-releases-published
Comment 1 Kubilay Kocak freebsd_committer freebsd_triage 2022-02-25 23:58:31 UTC 
Fixes a security vulnerability in a bundled library: 

  https://github.com/typo3/typo3/commit/9940defb21

From release notes:

Composer package roave/security-advisories reported conflicts when trying to upgrade TYPO3 packages - due to a security advisory for third-party package enshrined/svg-sanitize - more details are provided in TYPO3-PSA-2022-001 [1][2]

[1] https://typo3.org/article/typo3-psa-2022-001 [1]
[2] https://nvd.nist.gov/vuln/detail/CVE-2022-23638
Comment 2 commit-hook freebsd_committer freebsd_triage 2022-02-27 16:51:43 UTC 
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=6bc3ad4d7cdbfa9a92cacf04e12d6ade466e1900

commit 6bc3ad4d7cdbfa9a92cacf04e12d6ade466e1900
Author:     Florian Smeets <flo@FreeBSD.org>
AuthorDate: 2022-02-27 16:43:37 +0000
Commit:     Florian Smeets <flo@FreeBSD.org>
CommitDate: 2022-02-27 16:43:37 +0000

    security/vuxml: Document TYPO3 vulnerabilities

    PR:             262196, 262197

 security/vuxml/vuln-2022.xml | 37 +++++++++++++++++++++++++++++++++++++
 1 file changed, 37 insertions(+)
Comment 3 commit-hook freebsd_committer freebsd_triage 2022-02-27 16:51:44 UTC 
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=d7ca61866be04c0d3ef0dbee4c27f21cd071fcd0

commit d7ca61866be04c0d3ef0dbee4c27f21cd071fcd0
Author:     Helmut Ritter <freebsd-ports@charlieroot.de>
AuthorDate: 2022-02-27 16:46:52 +0000
Commit:     Florian Smeets <flo@FreeBSD.org>
CommitDate: 2022-02-27 16:46:52 +0000

    www/typo3-11: Update to 11.5.7

    PR:             262197
    Security:       0eab001a-9708-11ec-96c9-589cfc0f81b0

 www/typo3-11/Makefile | 2 +-
 www/typo3-11/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)
Comment 4 Florian Smeets freebsd_committer freebsd_triage 2022-02-27 16:52:28 UTC 
Committed. Thanks.
Comment 5 commit-hook freebsd_committer freebsd_triage 2022-02-27 20:27:26 UTC 
A commit in branch 2022Q1 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=9fe0b906773f7351b9f3c7fdbdcf2174c71bc539

commit 9fe0b906773f7351b9f3c7fdbdcf2174c71bc539
Author:     Helmut Ritter <freebsd-ports@charlieroot.de>
AuthorDate: 2022-02-27 16:46:52 +0000
Commit:     Florian Smeets <flo@FreeBSD.org>
CommitDate: 2022-02-27 20:15:06 +0000

    www/typo3-11: Update to 11.5.7

    PR:             262197
    Security:       0eab001a-9708-11ec-96c9-589cfc0f81b0
    (cherry picked from commit d7ca61866be04c0d3ef0dbee4c27f21cd071fcd0)

 www/typo3-11/Makefile | 2 +-
 www/typo3-11/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)