From beat@chruetertee.ch  Sat Jul 28 05:39:18 2007
Return-Path: <beat@chruetertee.ch>
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 51B6A16A417
	for <FreeBSD-gnats-submit@freebsd.org>; Sat, 28 Jul 2007 05:39:18 +0000 (UTC)
	(envelope-from beat@chruetertee.ch)
Received: from mail22.bluewin.ch (mail22.bluewin.ch [195.186.19.66])
	by mx1.freebsd.org (Postfix) with ESMTP id 4045B13C467
	for <FreeBSD-gnats-submit@freebsd.org>; Sat, 28 Jul 2007 05:39:16 +0000 (UTC)
	(envelope-from beat@chruetertee.ch)
Received: from [85.0.180.11] (85.0.180.11) by mail22.bluewin.ch (Bluewin 7.3.121)
        id 469C9AFA002382E2 for FreeBSD-gnats-submit@freebsd.org; Sat, 28 Jul 2007 05:22:01 +0000
Received: by _HOSTNAME_ (sSMTP sendmail emulation); Sat, 28 Jul 2007 07:22:23 +0200
Message-Id: <469C9AFA002382E2@mail22.bluewin.ch> (added by postmaster@bluewin.ch)
Date: Sat, 28 Jul 2007 07:22:23 +0200
From: "Beat Gaetzi" <beat@chruetertee.ch>
Reply-To: Beat Gtzi <beat@chruetertee.ch>
To: FreeBSD-gnats-submit@freebsd.org
Cc:
Subject: [MAINTAINER] Update to 1.6.0 latest snapshot (security fix)
X-Send-Pr-Version: 3.113
X-GNATS-Notify:

>Number:         114983
>Category:       ports
>Synopsis:       [MAINTAINER] Update www/fluxcms to 1.6.0 latest snapshot (security fix)
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-ports-bugs
>State:          closed
>Quarter:        
>Keywords:       
>Date-Required:  
>Class:          maintainer-update
>Submitter-Id:   current-users
>Arrival-Date:   Sat Jul 28 05:40:01 GMT 2007
>Closed-Date:    Sat Jul 28 19:02:49 GMT 2007
>Last-Modified:  Sat Jul 28 19:10:08 GMT 2007
>Originator:     Beat Gtzi
>Release:        FreeBSD 6.2-RELEASE-p5 i386
>Organization:
>Environment:
System: FreeBSD daedalus.network.local 6.2-RELEASE-p5 FreeBSD 6.2-RELEASE-p5 #1: Wed Jun 6 22:22:54 CEST 2007 root@daedalus.network.local:/usr/obj/usr/src/sys/BEASTIE i386


	
>Description:
	Update to 1.6.0 latest snapshot. In previous versions it was possible for everybody to change a user
	password just by guessing the username.
>How-To-Repeat:
	
>Fix:

	

--- fluxcms.patch begins here ---
diff -Naur fluxcms.ori/Makefile fluxcms/Makefile
--- fluxcms.ori/Makefile	Wed Jun  6 23:37:27 2007
+++ fluxcms/Makefile	Fri Jul 27 12:32:14 2007
@@ -7,11 +7,11 @@
 
 PORTNAME=	fluxcms
 PORTVERSION=	1.6.0
-PORTREVISION=	2
+PORTREVISION=	3
 CATEGORIES=	www
 MASTER_SITES=	http://bitflux.org/download/ \
 		http://www.chruetertee.ch/files/download/
-DISTNAME=	${PORTNAME}-${PORTVERSION}-snapshot-20070603
+DISTNAME=	${PORTNAME}-${PORTVERSION}-snapshot-20070727
 EXTRACT_SUFX=	.tgz
 
 MAINTAINER=	beat@chruetertee.ch
diff -Naur fluxcms.ori/distinfo fluxcms/distinfo
--- fluxcms.ori/distinfo	Wed Jun  6 23:37:27 2007
+++ fluxcms/distinfo	Fri Jul 27 12:28:28 2007
@@ -1,3 +1,3 @@
-MD5 (fluxcms-1.6.0-snapshot-20070603.tgz) = c85186a11df0108ca2aa3dc818c8dd39
-SHA256 (fluxcms-1.6.0-snapshot-20070603.tgz) = 46bee882e31e282d4432e25b1be84bbf5c4e81bb1e5b95abd51a8c46f7f1cd7b
-SIZE (fluxcms-1.6.0-snapshot-20070603.tgz) = 4294187
+MD5 (fluxcms-1.6.0-snapshot-20070727.tgz) = 2bb639b844236ad538ebf7dd0ec74199
+SHA256 (fluxcms-1.6.0-snapshot-20070727.tgz) = 31d48f0580c3c49b1a51b4ce2070eaf0abbc588ed524b2389aac095f90da8b52
+SIZE (fluxcms-1.6.0-snapshot-20070727.tgz) = 4269860
diff -Naur fluxcms.ori/pkg-plist fluxcms/pkg-plist
--- fluxcms.ori/pkg-plist	Wed Jun  6 23:37:27 2007
+++ fluxcms/pkg-plist	Fri Jul 27 12:30:24 2007
@@ -2,75 +2,6 @@
 %%INSTALLDIR%%/NEWS
 %%INSTALLDIR%%/README
 %%INSTALLDIR%%/README.INSTALL
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/addresource.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/admin.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/adminfields.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/blank.html
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/blog.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/collection.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/css/admin.css
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/css/blog.css
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/css/dbforms2.css
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/css/editpopup.css
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/css/formedit.css
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/css/head.css
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/css/listview.css
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/css/login.css
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/css/navi.css
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/css/overview.css
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/css/overviewhome.css
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/delete.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/edit.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/formedit.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/frameset.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/bitfluxlogo.gif
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/dbforms2/liveselect_arrowd.gif
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/dbforms2/null.gif
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/overview/blog.png
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/overview/collection.png
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/overview/gallery.png
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/overview/options.png
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/overview/resource.png
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/schloss.jpg
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/shadow1.png
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/shadow2.png
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/sxip_in.gif
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/wait_bar.gif
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/index.html
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/listview.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/login.html
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/navi.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/overview.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/plugins/dbforms2.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/plugins/properties.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/properties.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/themes.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/admin/users.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/common.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/copy.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/mastercommon.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/pagenotallowed.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/aggregator/aggregator.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/aggregator/aggregator2rss.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/blog.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/blog/blog2atom.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/blog/blog2rss.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/blog/comments2rss.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/blog/microsummary.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/blog/osd.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/blog/trackback.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/dms/dms.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/dms/dms2rss.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/gallery.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/linklog/linklog2rss.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/metainfo/podcast.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/metasearch/result2html.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/newsletter/htmlimage.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/newsletter/htmlimagelinks.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/newsletter/textfeeds.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/plugins/vote/vote.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/static.xsl
-%%INSTALLDIR%%/_hosts/live/themes/standard/text.xsl
 %%INSTALLDIR%%/admin/data/admin/addresource/.configxml
 %%INSTALLDIR%%/admin/data/admin/collection/.configxml
 %%INSTALLDIR%%/admin/data/admin/copy/.configxml
@@ -107,6 +38,7 @@
 %%INSTALLDIR%%/admin/sitemap/admin.xml
 %%INSTALLDIR%%/admin/sitemap/assets.xml
 %%INSTALLDIR%%/admin/sitemap/blog.xml
+%%INSTALLDIR%%/admin/sitemap/boxes.xml
 %%INSTALLDIR%%/admin/sitemap/bxe.xml
 %%INSTALLDIR%%/admin/sitemap/dbform.xml
 %%INSTALLDIR%%/admin/sitemap/fck.xml
@@ -359,6 +291,7 @@
 %%INSTALLDIR%%/dbforms2/blogpodcasts.xml
 %%INSTALLDIR%%/dbforms2/blogposts.xml
 %%INSTALLDIR%%/dbforms2/blogposts2.xml
+%%INSTALLDIR%%/dbforms2/boxes.xml
 %%INSTALLDIR%%/dbforms2/events.xml
 %%INSTALLDIR%%/dbforms2/newsletter_feeds.xml
 %%INSTALLDIR%%/dbforms2/newsletter_from.xml
@@ -376,8 +309,6 @@
 %%INSTALLDIR%%/div/db/dbexport.sh
 %%INSTALLDIR%%/div/db/dbexport40.sh
 %%INSTALLDIR%%/div/db/webdavlocks_sqlite.sql
-%%INSTALLDIR%%/div/phpfiles
-%%INSTALLDIR%%/div/phpfiles.old
 %%INSTALLDIR%%/favicon.ico
 %%INSTALLDIR%%/forms/blogcategories/config.xml
 %%INSTALLDIR%%/forms/blogcategories/index.php
@@ -756,6 +687,8 @@
 %%INSTALLDIR%%/inc/bx/editors/blog/sub/xsl/subeditor.xsl
 %%INSTALLDIR%%/inc/bx/editors/blog/tabs.xsl
 %%INSTALLDIR%%/inc/bx/editors/blog/uploadimage.xsl
+%%INSTALLDIR%%/inc/bx/editors/boxes.php
+%%INSTALLDIR%%/inc/bx/editors/boxes/boxes.xsl
 %%INSTALLDIR%%/inc/bx/editors/bxe.php
 %%INSTALLDIR%%/inc/bx/editors/bxe/bxe.xsl
 %%INSTALLDIR%%/inc/bx/editors/bxe/config.xml
@@ -897,6 +830,7 @@
 %%INSTALLDIR%%/inc/bx/php/browser.php
 %%INSTALLDIR%%/inc/bx/php/dynButton.php
 %%INSTALLDIR%%/inc/bx/php/dynimage.php
+%%INSTALLDIR%%/inc/bx/php/i18njs.php
 %%INSTALLDIR%%/inc/bx/php/livesearch.php
 %%INSTALLDIR%%/inc/bx/php/openid/common.php
 %%INSTALLDIR%%/inc/bx/php/openid/finish_auth.php
@@ -951,6 +885,7 @@
 %%INSTALLDIR%%/inc/bx/plugins/blog/tagarchive.php
 %%INSTALLDIR%%/inc/bx/plugins/blog/trackback.php
 %%INSTALLDIR%%/inc/bx/plugins/blogauthors.php
+%%INSTALLDIR%%/inc/bx/plugins/boxes.php
 %%INSTALLDIR%%/inc/bx/plugins/collection.php
 %%INSTALLDIR%%/inc/bx/plugins/comments.php
 %%INSTALLDIR%%/inc/bx/plugins/db2xml.php
@@ -967,6 +902,7 @@
 %%INSTALLDIR%%/inc/bx/plugins/graph.php
 %%INSTALLDIR%%/inc/bx/plugins/image.php
 %%INSTALLDIR%%/inc/bx/plugins/linklog.php
+%%INSTALLDIR%%/inc/bx/plugins/linklog/queries.php
 %%INSTALLDIR%%/inc/bx/plugins/linklog/tags.php
 %%INSTALLDIR%%/inc/bx/plugins/links.php
 %%INSTALLDIR%%/inc/bx/plugins/metadata.php
@@ -2739,6 +2675,7 @@
 @dirrm %%INSTALLDIR%%/inc/bx/editors/dbform/xsl
 @dirrm %%INSTALLDIR%%/inc/bx/editors/dbform
 @dirrm %%INSTALLDIR%%/inc/bx/editors/bxe
+@dirrm %%INSTALLDIR%%/inc/bx/editors/boxes
 @dirrm %%INSTALLDIR%%/inc/bx/editors/blog/sub/xsl
 @dirrm %%INSTALLDIR%%/inc/bx/editors/blog/sub
 @dirrm %%INSTALLDIR%%/inc/bx/editors/blog
@@ -2915,23 +2852,4 @@
 @dirrm %%INSTALLDIR%%/admin/data/admin
 @dirrm %%INSTALLDIR%%/admin/data
 @dirrm %%INSTALLDIR%%/admin
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/plugins/vote
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/plugins/newsletter
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/plugins/metasearch
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/plugins/metainfo
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/plugins/linklog
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/plugins/dms
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/plugins/blog
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/plugins/aggregator
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/plugins
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/admin/plugins
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/overview
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/admin/images/dbforms2
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/admin/images
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/admin/css
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard/admin
-@dirrm %%INSTALLDIR%%/_hosts/live/themes/standard
-@dirrm %%INSTALLDIR%%/_hosts/live/themes
-@dirrm %%INSTALLDIR%%/_hosts/live
-@dirrm %%INSTALLDIR%%/_hosts
 @dirrm %%INSTALLDIR%%
--- fluxcms.patch ends here ---


>Release-Note:
>Audit-Trail:

From: =?ISO-8859-1?Q?Beat_G=E4tzi?= <beat@chruetertee.ch>
To: bug-followup@FreeBSD.org
Cc:  
Subject: Re: ports/114983: [MAINTAINER] Update to 1.6.0 latest snapshot (security
 fix)
Date: Sat, 28 Jul 2007 09:34:09 +0200

 I forgot to add the port name in the subject. The correct subject is:
 [MAINTAINER] www/fluxcms: Update to 1.6.0 latest snapshot (security fix)
 
 Sorry, Beat
State-Changed-From-To: open->closed 
State-Changed-By: pav 
State-Changed-When: Sat Jul 28 18:40:55 UTC 2007 
State-Changed-Why:  
Committed, thanks! 

http://www.freebsd.org/cgi/query-pr.cgi?pr=114983 

From: dfilter@FreeBSD.ORG (dfilter service)
To: bug-followup@FreeBSD.org
Cc:  
Subject: Re: ports/114983: commit references a PR
Date: Sat, 28 Jul 2007 19:02:42 +0000 (UTC)

 pav         2007-07-28 19:02:37 UTC
 
   FreeBSD ports repository
 
   Modified files:
     www/fluxcms          Makefile distinfo pkg-plist 
   Log:
   - Update to 1.6.0 latest snapshot. In previous versions it was possible for
     everybody to change a user password just by guessing the username.
   
   PR:             ports/114983
   Submitted by:   Beat Gaetzi <beat@chruetertee.ch> (maintainer)
   
   Revision  Changes    Path
   1.13      +2 -2      ports/www/fluxcms/Makefile
   1.6       +3 -3      ports/www/fluxcms/distinfo
   1.6       +8 -90     ports/www/fluxcms/pkg-plist
 _______________________________________________
 cvs-all@freebsd.org mailing list
 http://lists.freebsd.org/mailman/listinfo/cvs-all
 To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
 
>Unformatted:
