From owner-svn-ports-head@FreeBSD.ORG Tue Oct 30 21:01:17 2012 Return-Path: Delivered-To: svn-ports-head@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id BBACFAAD; Tue, 30 Oct 2012 21:01:17 +0000 (UTC) (envelope-from rm@FreeBSD.org) Received: from svn.freebsd.org (svn.freebsd.org [IPv6:2001:4f8:fff6::2c]) by mx1.freebsd.org (Postfix) with ESMTP id 9BE6F8FC1D; Tue, 30 Oct 2012 21:01:17 +0000 (UTC) Received: from svn.freebsd.org (localhost [127.0.0.1]) by svn.freebsd.org (8.14.4/8.14.4) with ESMTP id q9UL1H6x075040; Tue, 30 Oct 2012 21:01:17 GMT (envelope-from rm@svn.freebsd.org) Received: (from rm@localhost) by svn.freebsd.org (8.14.4/8.14.4/Submit) id q9UL1H4r075035; Tue, 30 Oct 2012 21:01:17 GMT (envelope-from rm@svn.freebsd.org) Message-Id: <201210302101.q9UL1H4r075035@svn.freebsd.org> From: Ruslan Mahmatkhanov Date: Tue, 30 Oct 2012 21:01:17 +0000 (UTC) To: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: svn commit: r306716 - in head: security/vuxml www/drupal7 X-SVN-Group: ports-head MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit X-BeenThere: svn-ports-head@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: SVN commit messages for the ports tree for head List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 Oct 2012 21:01:18 -0000 Author: rm Date: Tue Oct 30 21:01:16 2012 New Revision: 306716 URL: http://svn.freebsd.org/changeset/ports/306716 Log: - update to 7.16 [1] while here: - trim Makefile header - remove indefinite article in COMMENT - remove IGNORE_WITH_PHP and IGNORE_WITH_PGSQL since we have not this versions in the tree anymore - fix pkg-plist - add vuxml entry PR: 173211 Submitted by: Rick van der Zwet [1] Approved by: Nick Hilliard (maintainer) Security: 2adc3e78-22d1-11e2-b9f0-d0df9acfd7e5 Feature safe: yes Modified: head/security/vuxml/vuln.xml head/www/drupal7/Makefile head/www/drupal7/distinfo head/www/drupal7/pkg-plist Modified: head/security/vuxml/vuln.xml ============================================================================== --- head/security/vuxml/vuln.xml Tue Oct 30 20:36:34 2012 (r306715) +++ head/security/vuxml/vuln.xml Tue Oct 30 21:01:16 2012 (r306716) @@ -51,6 +51,46 @@ Note: Please add new entries to the beg --> + + drupal7 -- multiple vulnerabilities + + + drupal7 + 7.16 + + + + +

Drupal Security Team reports:

+
+
+
Arbitrary PHP code execution
+
A bug in the installer code was identified that allows an attacker + to re-install Drupal using an external database server under certain + transient conditions. This could allow the attacker to execute + arbitrary PHP code on the original server.
+
+
+
Information disclosure - OpenID module
+
For sites using the core OpenID module, an information disclosure + vulnerability was identified that allows an attacker to read files + on the local filesystem by attempting to log in to the site using a + malicious OpenID server.
+
+
+

+ + + + http://drupal.org/node/1815912 + + + 2012-10-17 + 2012-10-31 + + + mozilla -- multiple vulnerabilities Modified: head/www/drupal7/Makefile ============================================================================== --- head/www/drupal7/Makefile Tue Oct 30 20:36:34 2012 (r306715) +++ head/www/drupal7/Makefile Tue Oct 30 21:01:16 2012 (r306716) @@ -1,19 +1,15 @@ -# Ports collection makefile for: drupal7 -# Date Created: 12 Feb 2007 -# Whom: Nick Hilliard -# +# Created by: Nick Hilliard # $FreeBSD$ -# PORTNAME= drupal7 -PORTVERSION= 7.14 +PORTVERSION= 7.16 CATEGORIES= www MASTER_SITES= http://ftp.drupal.org/files/projects/ DISTNAME= drupal-${PORTVERSION} DIST_SUBDIR= drupal MAINTAINER= nick@foobar.org -COMMENT= A database driven web content management system (CMS) +COMMENT= Database driven web content management system (CMS) LICENSE= GPLv2 GPLv3 LICENSE_COMB= dual @@ -23,7 +19,6 @@ DRUPAL_PORT= yes DRUPAL_VERSION= 7 USE_PHP= dom filter gd hash json mbstring pcre pdo session simplexml xml -IGNORE_WITH_PHP=4 WANT_PHP_WEB= yes OPTIONS+= MYSQL "MySQL database support" on \ @@ -50,7 +45,6 @@ USE_PHP+= pdo_mysql .endif .if defined(WITH_PGSQL) USE_PGSQL= yes -IGNORE_WITH_PGSQL= 73 74 80 81 82 USE_PHP+= pdo_pgsql .endif Modified: head/www/drupal7/distinfo ============================================================================== --- head/www/drupal7/distinfo Tue Oct 30 20:36:34 2012 (r306715) +++ head/www/drupal7/distinfo Tue Oct 30 21:01:16 2012 (r306716) @@ -1,2 +1,2 @@ -SHA256 (drupal/drupal-7.14.tar.gz) = 17db094aaa78d76ec6a3517171f1d8c158745eee2e19006d5ed97b7ffc2c54da -SIZE (drupal/drupal-7.14.tar.gz) = 3128473 +SHA256 (drupal/drupal-7.16.tar.gz) = 353625d8aa59a22b791fce8a00d22249900c7d3ea650662fdd6b0445e15e3c76 +SIZE (drupal/drupal-7.16.tar.gz) = 3142889 Modified: head/www/drupal7/pkg-plist ============================================================================== --- head/www/drupal7/pkg-plist Tue Oct 30 20:36:34 2012 (r306715) +++ head/www/drupal7/pkg-plist Tue Oct 30 21:01:16 2012 (r306716) @@ -651,6 +651,8 @@ %%DRUPAL_BASE%%/modules/simpletest/tests/entity_crud_hook_test.module %%DRUPAL_BASE%%/modules/simpletest/tests/entity_crud_hook_test.test %%DRUPAL_BASE%%/modules/simpletest/tests/entity_query.test +%%DRUPAL_BASE%%/modules/simpletest/tests/entity_query_access_test.module +%%DRUPAL_BASE%%/modules/simpletest/tests/entity_query_access_test.info %%DRUPAL_BASE%%/modules/simpletest/tests/error.test %%DRUPAL_BASE%%/modules/simpletest/tests/error_test.info %%DRUPAL_BASE%%/modules/simpletest/tests/error_test.module @@ -716,6 +718,8 @@ %%DRUPAL_BASE%%/modules/simpletest/tests/theme_test.info %%DRUPAL_BASE%%/modules/simpletest/tests/theme_test.module %%DRUPAL_BASE%%/modules/simpletest/tests/theme_test.template_test.tpl.php +%%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_basetheme/test_basetheme.info +%%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_subtheme/test_subtheme.info %%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_theme/template.php %%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_theme/test_theme.info %%DRUPAL_BASE%%/modules/simpletest/tests/unicode.test @@ -918,7 +922,6 @@ %%DRUPAL_BASE%%/profiles/testing/modules/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.module %%DRUPAL_BASE%%/profiles/testing/modules/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.info %%DRUPAL_BASE%%/profiles/testing/modules/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.module -%%DRUPAL_BASE%%/profiles/testing/modules/drupal_system_listing_compatible_test %%DRUPAL_BASE%%/profiles/testing/modules/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.test %%DRUPAL_BASE%%/profiles/testing/testing.info %%DRUPAL_BASE%%/profiles/testing/testing.install @@ -1119,6 +1122,8 @@ @dirrm %%DRUPAL_BASE%%/modules/simpletest/files @dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/drupal_system_listing_compatible_test @dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/drupal_system_listing_incompatible_test +@dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_basetheme +@dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_subtheme @dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/themes/test_theme @dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/themes @dirrm %%DRUPAL_BASE%%/modules/simpletest/tests/upgrade