Bug 103499

Summary: www/dotproject needs vulnerability update from 2.0.2 to 2.0.4
Product: Ports & Packages Reporter: Fred Cox <sailorfred>
Component: Individual Port(s)Assignee: freebsd-ports-bugs (Nobody) <ports-bugs>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
file.diff none

Description Fred Cox 2006-09-23 00:00:34 UTC 
www/dotproject 2.0.2 has a XSS vulnerability that was fixed in June.  See http://www.dotproject.net/

This patch is a update to get the right version, plus a dependency on PHP 4 and documentation of the requirement for using a MySQL 3.23 server or a pointer to a patch to use a later MySQL.
Comment 1 Edwin Groothuis freebsd_committer freebsd_triage 2006-09-23 00:00:45 UTC 
State Changed
From-To: open->feedback

Awaiting maintainers feedback
Comment 2 Pav Lucistnik freebsd_committer freebsd_triage 2006-10-04 17:22:58 UTC 
State Changed
From-To: feedback->closed

Committed with minor fix (you forgot to check pkg-plist for updates). 
Granted maintainership, too.
Comment 3 dfilter service freebsd_committer freebsd_triage 2006-10-04 17:23:02 UTC 
pav         2006-10-04 16:22:50 UTC

  FreeBSD ports repository

  Modified files:
    www/dotproject       Makefile distinfo pkg-plist 
    www/dotproject/files pkg-message.in 
  Log:
  - Update to 2.0.4
  - Take maintainership
  
  PR:             ports/103499
  Submitted by:   Fred Cox <sailorfred@yahoo.com>
  
  Revision  Changes    Path
  1.4       +6 -3      ports/www/dotproject/Makefile
  1.4       +3 -3      ports/www/dotproject/distinfo
  1.2       +10 -0     ports/www/dotproject/files/pkg-message.in
  1.4       +2 -0      ports/www/dotproject/pkg-plist
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"