ports/94027: www/gallery2: update to 2.0.3
tjs
tjs at cdpa.nsysu.edu.tw
Thu Mar 2 16:20:11 UTC 2006
>Number: 94027
>Category: ports
>Synopsis: www/gallery2: update to 2.0.3
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: update
>Submitter-Id: current-users
>Arrival-Date: Thu Mar 02 16:20:09 GMT 2006
>Closed-Date:
>Last-Modified:
>Originator: Jin-Shan Tseng
>Release: FreeBSD 5.4-STABLE i386
>Organization:
NCHC
>Environment:
System: FreeBSD CDPA.cc 5.4-STABLE FreeBSD 5.4-STABLE #0: Mon Jan 16 23:24:46 CST 2006 tjs at CDPA.cc:/usr/obj/usr/src/sys/CDPA i386
>Description:
Gallery 2.0.3 Security Fix Release
http://gallery.menalto.com/gallery_2.0.3_released
This release adds no new features. It fixes a minor XSS exploit and an exploit in the session code that could allow users to remotely delete session files.
>How-To-Repeat:
>Fix:
--- patch begins here ---
--- Makefile.orig Thu Mar 2 23:54:25 2006
+++ Makefile Fri Mar 3 00:02:06 2006
@@ -6,11 +6,11 @@
#
PORTNAME= gallery2
-PORTVERSION= 2.0.2
+PORTVERSION= 2.0.3
CATEGORIES= www
MASTER_SITES= ${MASTER_SITE_SOURCEFORGE}
MASTER_SITE_SUBDIR= gallery
-DISTNAME= gallery-2.0.2-full
+DISTNAME= gallery-2.0.3-full
DIST_SUBDIR= gallery2
MAINTAINER= freebsd-ports at varju.ca
--- distinfo.orig Thu Mar 2 23:54:29 2006
+++ distinfo Fri Mar 3 00:02:12 2006
@@ -1,3 +1,3 @@
-MD5 (gallery2/gallery-2.0.2-full.tar.gz) = b833b195d1713745b97be0abfec221f6
-SHA256 (gallery2/gallery-2.0.2-full.tar.gz) = d18916b5300f47b69fb941da5591ab986a673f4ef1148a6a2aa0f922d1b6f564
-SIZE (gallery2/gallery-2.0.2-full.tar.gz) = 5426443
+MD5 (gallery2/gallery-2.0.3-full.tar.gz) = 6339132698e8cfae6328d365f3f7270c
+SHA256 (gallery2/gallery-2.0.3-full.tar.gz) = cb9687f54c268ac52659a07c848810b8729c001a8ac2216bbbac0db79c9099c1
+SIZE (gallery2/gallery-2.0.3-full.tar.gz) = 5429191
--- patch ends here ---
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list