svn commit: r306716 - in head: security/vuxml www/drupal7
Ruslan Mahmatkhanov
rm at FreeBSD.org
Tue Oct 30 21:01:17 UTC 2012
Author: rm
Date: Tue Oct 30 21:01:16 2012
New Revision: 306716
URL: http://svn.freebsd.org/changeset/ports/306716
Log:
- update to 7.16 [1]
while here:
- trim Makefile header
- remove indefinite article in COMMENT
- remove IGNORE_WITH_PHP and IGNORE_WITH_PGSQL since
we have not this versions in the tree anymore
- fix pkg-plist
- add vuxml entry
PR: 173211
Submitted by: Rick van der Zwet <info at rickvanderzwet dot nl> [1]
Approved by: Nick Hilliard <nick at foobar dot org> (maintainer)
Security: 2adc3e78-22d1-11e2-b9f0-d0df9acfd7e5
Feature safe: yes
Modified:
head/security/vuxml/vuln.xml
head/www/drupal7/Makefile
head/www/drupal7/distinfo
head/www/drupal7/pkg-plist
Modified: head/security/vuxml/vuln.xml
==============================================================================
--- head/security/vuxml/vuln.xml Tue Oct 30 20:36:34 2012 (r306715)
+++ head/security/vuxml/vuln.xml Tue Oct 30 21:01:16 2012 (r306716)
@@ -51,6 +51,46 @@ Note: Please add new entries to the beg
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="2adc3e78-22d1-11e2-b9f0-d0df9acfd7e5">
+ <topic>drupal7 -- multiple vulnerabilities</topic>
+ <affects>
+ <package>
+ <name>drupal7</name>
+ <range><lt>7.16</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>Drupal Security Team reports:</p>
+ <blockquote cite="http://drupal.org/node/1815912">
+ <ol>
+ <li>
+ <p>Arbitrary PHP code execution</p>
+ <p>A bug in the installer code was identified that allows an attacker
+ to re-install Drupal using an external database server under certain
+ transient conditions. This could allow the attacker to execute
+ arbitrary PHP code on the original server.</p>
+ </li>
+ <li>
+ <p>Information disclosure - OpenID module</p>
+ <p>For sites using the core OpenID module, an information disclosure
+ vulnerability was identified that allows an attacker to read files
+ on the local filesystem by attempting to log in to the site using a
+ malicious OpenID server.</p>
+ </li>
+ </ol>
+ </blockquote>
+ </body>
+ </description>
+ <references>
+ <url>http://drupal.org/node/1815912</url>
+ </references>
+ <dates>
+ <discovery>2012-10-17</discovery>
+ <entry>2012-10-31</entry>
+ </dates>
+ </vuln>
+
<vuln vid="6b3b1b97-207c-11e2-a03f-c8600054b392">
<topic>mozilla -- multiple vulnerabilities</topic>
<affects>
Modified: head/www/drupal7/Makefile
==============================================================================
--- head/www/drupal7/Makefile Tue Oct 30 20:36:34 2012 (r306715)
+++ head/www/drupal7/Makefile Tue Oct 30 21:01:16 2012 (r306716)
@@ -1,19 +1,15 @@
-# Ports collection makefile for: drupal7
-# Date Created: 12 Feb 2007
-# Whom: Nick Hilliard <nick at foobar.org>
-#
+# Created by: Nick Hilliard <nick at foobar.org>
# $FreeBSD$
-#
PORTNAME= drupal7
-PORTVERSION= 7.14
+PORTVERSION= 7.16
CATEGORIES= www
MASTER_SITES= http://ftp.drupal.org/files/projects/
DISTNAME= drupal-${PORTVERSION}
DIST_SUBDIR= drupal
MAINTAINER= nick at foobar.org
-COMMENT= A database driven web content management system (CMS)
+COMMENT= Database driven web content management system (CMS)
LICENSE= GPLv2 GPLv3
LICENSE_COMB= dual
@@ -23,7 +19,6 @@ DRUPAL_PORT= yes
DRUPAL_VERSION= 7
USE_PHP= dom filter gd hash json mbstring pcre pdo session simplexml xml
-IGNORE_WITH_PHP=4
WANT_PHP_WEB= yes
OPTIONS+= MYSQL "MySQL database support" on \
@@ -50,7 +45,6 @@ USE_PHP+= pdo_mysql
.endif
.if defined(WITH_PGSQL)
USE_PGSQL= yes
-IGNORE_WITH_PGSQL= 73 74 80 81 82
USE_PHP+= pdo_pgsql
.endif
Modified: head/www/drupal7/distinfo
==============================================================================
--- head/www/drupal7/distinfo Tue Oct 30 20:36:34 2012 (r306715)
+++ head/www/drupal7/distinfo Tue Oct 30 21:01:16 2012 (r306716)
@@ -1,2 +1,2 @@
-SHA256 (drupal/drupal-7.14.tar.gz) = 17db094aaa78d76ec6a3517171f1d8c158745eee2e19006d5ed97b7ffc2c54da
-SIZE (drupal/drupal-7.14.tar.gz) = 3128473
+SHA256 (drupal/drupal-7.16.tar.gz) = 353625d8aa59a22b791fce8a00d22249900c7d3ea650662fdd6b0445e15e3c76
+SIZE (drupal/drupal-7.16.tar.gz) = 3142889
Modified: head/www/drupal7/pkg-plist
==============================================================================
--- head/www/drupal7/pkg-plist Tue Oct 30 20:36:34 2012 (r306715)
+++ head/www/drupal7/pkg-plist Tue Oct 30 21:01:16 2012 (r306716)
@@ -651,6 +651,8 @@
%%DRUPAL_BASE%%/modules/simpletest/tests/entity_crud_hook_test.module
%%DRUPAL_BASE%%/modules/simpletest/tests/entity_crud_hook_test.test
%%DRUPAL_BASE%%/modules/simpletest/tests/entity_query.test
+%%DRUPAL_BASE%%/modules/simpletest/tests/entity_query_access_test.module
+%%DRUPAL_BASE%%/modules/simpletest/tests/entity_query_access_test.info
%%DRUPAL_BASE%%/modules/simpletest/tests/error.test
%%DRUPAL_BASE%%/modules/simpletest/tests/error_test.info
%%DRUPAL_BASE%%/modules/simpletest/tests/error_test.module
@@ -716,6 +718,8 @@
%%DRUPAL_BASE%%/modules/simpletest/tests/theme_test.info
%%DRUPAL_BASE%%/modules/simpletest/tests/theme_test.module
%%DRUPAL_BASE%%/modules/simpletest/tests/theme_test.template_test.tpl.php
+%%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_basetheme/test_basetheme.info
+%%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_subtheme/test_subtheme.info
%%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_theme/template.php
%%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_theme/test_theme.info
%%DRUPAL_BASE%%/modules/simpletest/tests/unicode.test
@@ -918,7 +922,6 @@
%%DRUPAL_BASE%%/profiles/testing/modules/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.module
%%DRUPAL_BASE%%/profiles/testing/modules/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.info
%%DRUPAL_BASE%%/profiles/testing/modules/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.module
-%%DRUPAL_BASE%%/profiles/testing/modules/drupal_system_listing_compatible_test
%%DRUPAL_BASE%%/profiles/testing/modules/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.test
%%DRUPAL_BASE%%/profiles/testing/testing.info
%%DRUPAL_BASE%%/profiles/testing/testing.install
@@ -1119,6 +1122,8 @@
@dirrm %%DRUPAL_BASE%%/modules/simpletest/files
@dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/drupal_system_listing_compatible_test
@dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/drupal_system_listing_incompatible_test
+ at dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_basetheme
+ at dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_subtheme
@dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_theme
@dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/themes
@dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/upgrade
More information about the svn-ports-all
mailing list