Bug 262197 - www/typo3-11: Update to 11.5.7
Summary: www/typo3-11: Update to 11.5.7
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Many People
Assignee: Florian Smeets
URL: https://get.typo3.org/release-notes/1...
Keywords: needs-patch, needs-qa, security
Depends on:
Blocks:
 
Reported: 2022-02-25 18:37 UTC by Helmut Ritter
Modified: 2022-02-27 20:27 UTC (History)
1 user (show)

See Also:
koobs: maintainer-feedback? (flo)
koobs: merge-quarterly?


Attachments
Update to 11.5.7 (879 bytes, text/plain)
2022-02-25 18:37 UTC, Helmut Ritter
no flags Details

Note You need to log in before you can comment on or make changes to this bug.
Description Helmut Ritter 2022-02-25 18:37:48 UTC
Created attachment 232109 [details]
Update to 11.5.7

These versions are maintenance releases and contain bug fixes only.

For details about the releases, please see:

https://get.typo3.org/release-notes/11.5.7
https://typo3.org/article/typo3-1157-and-10425-maintenance-releases-published
Comment 1 Kubilay Kocak freebsd_committer freebsd_triage 2022-02-25 23:58:31 UTC
Fixes a security vulnerability in a bundled library: 

  https://github.com/typo3/typo3/commit/9940defb21

From release notes:

Composer package roave/security-advisories reported conflicts when trying to upgrade TYPO3 packages - due to a security advisory for third-party package enshrined/svg-sanitize - more details are provided in TYPO3-PSA-2022-001 [1][2]

[1] https://typo3.org/article/typo3-psa-2022-001 [1]
[2] https://nvd.nist.gov/vuln/detail/CVE-2022-23638
Comment 2 commit-hook freebsd_committer freebsd_triage 2022-02-27 16:51:43 UTC
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=6bc3ad4d7cdbfa9a92cacf04e12d6ade466e1900

commit 6bc3ad4d7cdbfa9a92cacf04e12d6ade466e1900
Author:     Florian Smeets <flo@FreeBSD.org>
AuthorDate: 2022-02-27 16:43:37 +0000
Commit:     Florian Smeets <flo@FreeBSD.org>
CommitDate: 2022-02-27 16:43:37 +0000

    security/vuxml: Document TYPO3 vulnerabilities

    PR:             262196, 262197

 security/vuxml/vuln-2022.xml | 37 +++++++++++++++++++++++++++++++++++++
 1 file changed, 37 insertions(+)
Comment 3 commit-hook freebsd_committer freebsd_triage 2022-02-27 16:51:44 UTC
A commit in branch main references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=d7ca61866be04c0d3ef0dbee4c27f21cd071fcd0

commit d7ca61866be04c0d3ef0dbee4c27f21cd071fcd0
Author:     Helmut Ritter <freebsd-ports@charlieroot.de>
AuthorDate: 2022-02-27 16:46:52 +0000
Commit:     Florian Smeets <flo@FreeBSD.org>
CommitDate: 2022-02-27 16:46:52 +0000

    www/typo3-11: Update to 11.5.7

    PR:             262197
    Security:       0eab001a-9708-11ec-96c9-589cfc0f81b0

 www/typo3-11/Makefile | 2 +-
 www/typo3-11/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)
Comment 4 Florian Smeets freebsd_committer freebsd_triage 2022-02-27 16:52:28 UTC
Committed. Thanks.
Comment 5 commit-hook freebsd_committer freebsd_triage 2022-02-27 20:27:26 UTC
A commit in branch 2022Q1 references this bug:

URL: https://cgit.FreeBSD.org/ports/commit/?id=9fe0b906773f7351b9f3c7fdbdcf2174c71bc539

commit 9fe0b906773f7351b9f3c7fdbdcf2174c71bc539
Author:     Helmut Ritter <freebsd-ports@charlieroot.de>
AuthorDate: 2022-02-27 16:46:52 +0000
Commit:     Florian Smeets <flo@FreeBSD.org>
CommitDate: 2022-02-27 20:15:06 +0000

    www/typo3-11: Update to 11.5.7

    PR:             262197
    Security:       0eab001a-9708-11ec-96c9-589cfc0f81b0
    (cherry picked from commit d7ca61866be04c0d3ef0dbee4c27f21cd071fcd0)

 www/typo3-11/Makefile | 2 +-
 www/typo3-11/distinfo | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)