Bug 106074 - [update] www/plone update for known vulnerability
Summary: [update] www/plone update for known vulnerability
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: Gabor Kovesdan
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2006-11-30 17:50 UTC by HAYASHI Yasushi
Modified: 2006-12-27 16:37 UTC (History)
0 users

See Also:

Attachments
plone.diff (524.18 KB, patch)
2006-11-30 17:50 UTC, HAYASHI Yasushi 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description HAYASHI Yasushi 2006-11-30 17:50:12 UTC 
www/plone has vulnerability because doesn't include required hotfix.
See:  http://plone.org/products/plone-hotfix/releases/20061031

And also, it fetches wrong source tarball.

This PR fixes both.
Comment 1 Edwin Groothuis freebsd_committer freebsd_triage 2006-11-30 18:42:45 UTC 
State Changed
From-To: open->feedback

Awaiting maintainers feedback
Comment 2 Gabor Kovesdan freebsd_committer freebsd_triage 2006-12-18 19:18:55 UTC 
State Changed
From-To: feedback->open

Maintainer timeout.
Comment 3 Gabor Kovesdan freebsd_committer freebsd_triage 2006-12-26 00:19:10 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->gabor

Take.
Comment 4 dfilter service freebsd_committer freebsd_triage 2006-12-27 13:44:41 UTC 
gabor       2006-12-27 13:44:34 UTC

  FreeBSD ports repository

  Modified files:
    www/plone            Makefile distinfo pkg-plist 
  Log:
  - Fetch the correct tarball
  - Fix security issue
  - Bump PORTREVISION
  
  PR:             ports/106074
  Submitted by:   HAYASHI Yasushi <yasi@yasi.to>
  Approved by:    erwin (mentor), maintainer timeout
  Security:       http://plone.org/products/plone-hotfix/releases/20061031
  
  Revision  Changes      Path
  1.24      +9 -3        ports/www/plone/Makefile
  1.14      +6 -3        ports/www/plone/distinfo
  1.8       +2892 -2884  ports/www/plone/pkg-plist
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
Comment 5 Gabor Kovesdan freebsd_committer freebsd_triage 2006-12-27 16:36:43 UTC 
State Changed
From-To: open->closed

Committed, thanks!