Bug 99601

Summary: [UPDATE] : www/joomla Several Security Update. Affect ALL Previous versions!
Product: Ports & Packages Reporter: Francisco Alves Cabrita <include>
Component: Individual Port(s)Assignee: Martin Wilke <miwi>
Status: Closed FIXED    
Severity: Affects Only Me    
Priority: Normal    
Version: Latest   
Hardware: Any   
OS: Any   
Attachments:
Description Flags
file.diff none

Description Francisco Alves Cabrita 2006-06-29 12:20:22 UTC 
All existing Joomla! users MUST UPGRADE to this version, due to several High Level vulnerabilities that affect ALL Previous versions of Joomla! 

1.0.10 contains the following important security fixes:

    * 03 High Level Security Fixes
    * 01 Medium Level Security Fixes
    * 05 Low Level security
    * 40+ General bug fixes

If you are using ANY previous version of Joomla!, you need to upgrade to 1.0.10 

1.0.10 is available as a Full Package, which contains all Joomla! files and Patch Packages which contain only the files that have been changed by the Stability work conducted from previous Joomla! 1.0.x versions.
Comment 1 Edwin Groothuis freebsd_committer freebsd_triage 2006-06-29 12:20:55 UTC 
State Changed
From-To: open->feedback

Awaiting maintainers feedback
Comment 2 Martin Wilke freebsd_committer freebsd_triage 2006-06-29 12:53:07 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->miwi

I'll take it.
Comment 3 Francisco Cabrita <include> 2006-06-29 14:49:16 UTC 
I already sended the vuxml entry to security-team@FreeBSD.org but no one 
as updated the database, so I will past it here again.

<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
   <vuln vid="1f935f61-075d-11db-822b-728b50d539a3">
     <topic>Joomla -- High Level vulnerabilities affect ALL Previous 
versions!</topic>
     <affects>
       <package>
         <name>joomla</name>
         <range><lt>1.0.10</lt></range>
       </package>
     </affects>
     <description>
       <body xmlns="http://www.w3.org/1999/xhtml">
         <p>Joomla Site reports:</p>
         <blockquote cite="http://www.joomla.org/content/view/1510/74/">
           <p>All existing Joomla! users MUST UPGRADE to this version,
             due to several High Level vulnerabilities that affect ALL
             Previous versions of Joomla!
             1.0.10 contains the following important security fixes:
             * 03 High Level Security Fixes
             * 01 Medium Level Security Fixes
             * 05 Low Level security
             * 40+ General bug fixes
             If you are using ANY previous version of Joomla!, you need
             to upgrade to 1.0.10.
             1.0.10 is available as a Full Package, which contains all
             Joomla! files and Patch Packages which contain only the
             files that have been changed by the Stability work conducted
             from previous Joomla! 1.0.x versions.
           </p>
         </blockquote>
       </body>
     </description>
     <references>
       <url>http://secunia.com/advisories/20746/</url>
       <url>http://www.joomla.org/content/view/1510/74/</url>
     </references>
     <dates>
       <discovery>2006-06-26</discovery>
       <entry>2006-06-29</entry>
     </dates>
   </vuln>

Best Regards
Francisco

--
Nucleo Portugues de FreeBSD - Core Member
http://npf.pt.freebsd.org
http://npf.pt.freebsd.org/~include/
Comment 4 Martin Wilke freebsd_committer freebsd_triage 2006-06-30 23:49:22 UTC 
State Changed
From-To: feedback->closed

Committed, with minor changes. Thanks!