From owner-cvs-ports@FreeBSD.ORG  Fri Jun  9 19:59:58 2006
Return-Path: <owner-cvs-ports@FreeBSD.ORG>
X-Original-To: cvs-ports@FreeBSD.org
Delivered-To: cvs-ports@FreeBSD.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3219D16A47A;
	Fri,  9 Jun 2006 19:59:58 +0000 (UTC)
	(envelope-from aaron@FreeBSD.org)
Received: from repoman.freebsd.org (repoman.freebsd.org [216.136.204.115])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D598443D73;
	Fri,  9 Jun 2006 19:59:57 +0000 (GMT)
	(envelope-from aaron@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.13.6/8.13.6) with ESMTP id k59Jvth8012599;
	Fri, 9 Jun 2006 19:57:55 GMT
	(envelope-from aaron@repoman.freebsd.org)
Received: (from aaron@localhost)
	by repoman.freebsd.org (8.13.6/8.13.4/Submit) id k59Jvtma012598;
	Fri, 9 Jun 2006 19:57:55 GMT (envelope-from aaron)
Message-Id: <200606091957.k59Jvtma012598@repoman.freebsd.org>
From: Aaron Dalton <aaron@FreeBSD.org>
Date: Fri, 9 Jun 2006 19:57:54 +0000 (UTC)
To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org
X-FreeBSD-CVS-Branch: HEAD
Cc: 
Subject: cvs commit: ports/www/dokuwiki Makefile distinfo
X-BeenThere: cvs-ports@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: CVS commit messages for the ports tree <cvs-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-ports>
List-Post: <mailto:cvs-ports@freebsd.org>
List-Help: <mailto:cvs-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Jun 2006 19:59:58 -0000

aaron       2006-06-09 19:57:54 UTC

  FreeBSD ports repository

  Modified files:
    www/dokuwiki         Makefile distinfo 
  Log:
  - Bump PORTREVISION
  - Update distinfo
  
  Vendor's Announcement:
  Hello again!
  
  Just two days after the last security problem another flaw was discovered.
  Luckily not as bad as the last one.
  
  Andreas .kre Solberg discovered a security flaw which allows registered
  users to view page content they usually have no access to. The problem is
  in the way how a successful user profile change is handled.
  
  This affects only installs which have Access Control Lists enabled (off by
  default) and restricted the READ permission for certain pages even for
  logged in users. Non-authenticated users can not exploit this bug.
  
  The package available at http://www.splitbrain.org/go/dokuwiki was updated
  again to reflect the change but fixing it manually is simple, too. Info on
  how to do this is available at
  http://bugs.splitbrain.org/?do=details&id=825
  
  Andi
  
  I request that the package be immediately rebuilt and distributed.
  
  PR:             ports/98599
  Submitted by:   aaron
  Reviewed by:    maintainer
  Approved by:    maintainer, tobez (implicit)
  Security:       http://bugs.splitbrain.org/index.php?do=details&id=825
  
  Revision  Changes    Path
  1.22      +1 -1      ports/www/dokuwiki/Makefile
  1.12      +3 -3      ports/www/dokuwiki/distinfo