Summary: | www/codeigniter: security/vuxml: security update 2.1.4 -> 2.2.4 (multiple vulnerabilities) | ||
---|---|---|---|
Product: | Ports & Packages | Reporter: | Jason Unovitch <junovitch> |
Component: | Individual Port(s) | Assignee: | Jason Unovitch <junovitch> |
Status: | Closed FIXED | ||
Severity: | Affects Some People | CC: | ahmedsayeed1982, appleboy.tw, ports-secteam |
Priority: | --- | Keywords: | security |
Version: | Latest | Flags: | bugzilla:
maintainer-feedback?
(appleboy.tw) |
Hardware: | Any | ||
OS: | Any |
Description
Jason Unovitch
2015-09-28 00:59:16 UTC
A commit references this bug: Author: junovitch Date: Mon Sep 28 01:09:13 UTC 2015 New revision: 398068 URL: https://svnweb.freebsd.org/changeset/ports/398068 Log: Document multiple vulnerabilities in CodeIgniter PR: 203401 Security: 5114cd11-6571-11e5-9909-002590263bf5 Security: 01bce4c6-6571-11e5-9909-002590263bf5 Security: c21f4e61-6570-11e5-9909-002590263bf5 Security: f838dcb4-656f-11e5-9909-002590263bf5 Security: b7d785ea-656d-11e5-9909-002590263bf5 Changes: head/security/vuxml/vuln.xml A commit references this bug: Author: junovitch Date: Mon Sep 28 01:14:09 UTC 2015 New revision: 398069 URL: https://svnweb.freebsd.org/changeset/ports/398069 Log: www/codeigniter: security update 2.1.4 -> 2.2.4 [1] - Add NO_ARCH - Add mcrypt to USE_PHP (2.2.0+ requirement) and sort USE_PHP - Remove hard coded PHP_DEFAULT= 5.4 [2] - Sort OPTIONS_DEFINE, fix malformed ODBC_DESC, fix sqlite3 dependency - Update pkg-descr text to match http://www.codeigniter.com/ - Update WWW to http://www.codeigniter.com/ PR: 203401 [1] PR: 200945 [2] Reported by: allanjude [2] Approved by: maintainer timeout (15 months since 2.2.0 security update) [1] Approved by: maintainer timeout (3 months) [2] Security: 5114cd11-6571-11e5-9909-002590263bf5 Security: 01bce4c6-6571-11e5-9909-002590263bf5 Security: c21f4e61-6570-11e5-9909-002590263bf5 Security: f838dcb4-656f-11e5-9909-002590263bf5 MFH: 2015Q3 Changes: head/www/codeigniter/Makefile head/www/codeigniter/distinfo head/www/codeigniter/pkg-descr head/www/codeigniter/pkg-plist CC ports-secteam@ after the fact to aid tracking. Had I named the PR properly initially that would have been done. No actions needed pending MFH approval and closure after that. A commit references this bug: Author: junovitch Date: Mon Sep 28 22:04:00 UTC 2015 New revision: 398149 URL: https://svnweb.freebsd.org/changeset/ports/398149 Log: MFH: r398069 www/codeigniter: security update 2.1.4 -> 2.2.4 [1] - Add NO_ARCH - Add mcrypt to USE_PHP (2.2.0+ requirement) and sort USE_PHP - Remove hard coded PHP_DEFAULT= 5.4 [2] - Sort OPTIONS_DEFINE, fix malformed ODBC_DESC, fix sqlite3 dependency - Update pkg-descr text to match http://www.codeigniter.com/ - Update WWW to http://www.codeigniter.com/ PR: 203401 [1] PR: 200945 [2] Reported by: allanjude [2] Approved by: maintainer timeout (15 months since 2.2.0 security update) [1] Approved by: maintainer timeout (3 months) [2] Approved by: ports-secteam (feld) Security: 5114cd11-6571-11e5-9909-002590263bf5 Security: 01bce4c6-6571-11e5-9909-002590263bf5 Security: c21f4e61-6570-11e5-9909-002590263bf5 Security: f838dcb4-656f-11e5-9909-002590263bf5 Changes: _U branches/2015Q3/ branches/2015Q3/www/codeigniter/Makefile branches/2015Q3/www/codeigniter/distinfo branches/2015Q3/www/codeigniter/pkg-descr branches/2015Q3/www/codeigniter/pkg-plist MARKED AS SPAM |