From: | "Gunnar Wrobel (wrobel)" <wrobel@g.o> |
---|---|
To: | gentoo-commits@l.g.o |
Subject: | [gentoo-commits] gentoo-x86 commit in www-apps/wordpress/files: postinstall-en.txt postupgrade-en.txt digest-wordpress-2.3.2 digest-wordpress-2.2.3 digest-wordpress-2.3 digest-wordpress-2.3.1 |
Date: | Tue, 08 Jan 2008 06:29:56 |
Message-Id: | E1JC7yD-0006p5-BI@stork.gentoo.org |
1 | wrobel 08/01/08 06:29:53 |
2 | |
3 | Modified: postinstall-en.txt postupgrade-en.txt |
4 | Added: digest-wordpress-2.3.2 |
5 | Removed: digest-wordpress-2.2.3 digest-wordpress-2.3 |
6 | digest-wordpress-2.3.1 |
7 | Log: |
8 | Added wordpress-2.3.2 to the tree, removed insecure versions (sec issues |
9 | #202071 and #202779). |
10 | (Portage version: 2.1.4_rc7) |
11 | |
12 | Revision Changes Path |
13 | 1.2 www-apps/wordpress/files/postinstall-en.txt |
14 | |
15 | file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apps/wordpress/files/postinstall-en.txt?rev=1.2&view=markup |
16 | plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apps/wordpress/files/postinstall-en.txt?rev=1.2&content-type=text/plain |
17 | diff : http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apps/wordpress/files/postinstall-en.txt?r1=1.1&r2=1.2 |
18 | |
19 | Index: postinstall-en.txt |
20 | =================================================================== |
21 | RCS file: /var/cvsroot/gentoo-x86/www-apps/wordpress/files/postinstall-en.txt,v |
22 | retrieving revision 1.1 |
23 | retrieving revision 1.2 |
24 | diff -u -r1.1 -r1.2 |
25 | --- postinstall-en.txt 30 Oct 2007 12:20:00 -0000 1.1 |
26 | +++ postinstall-en.txt 8 Jan 2008 06:29:52 -0000 1.2 |
27 | @@ -31,3 +31,19 @@ |
28 | http://${VHOST_HOSTNAME}/${VHOST_APPDIR} |
29 | |
30 | ------------------------------------------------------------------------ |
31 | +!!!!!!!!! SECURITY WARNING !!!!!!!!!!! |
32 | + |
33 | +Wordpress has had a history of serious security flaws. Any application |
34 | +with less widespread use but the same amount of security issues would |
35 | +have been removed from the tree. |
36 | + |
37 | +We decided to keep the application in the unstable portage tree so that |
38 | +it get's some level of attention from our security team. Currently |
39 | +you can expect us to react within 40 days of a reported security |
40 | +problem. |
41 | + |
42 | +This still means that you might open up your installation to hackers for |
43 | +about a month after an issue has been made public. This is a severe |
44 | +risk and you should keep a close eye on the common security trackers so |
45 | +that you are able to fix problems with your installation yourself if |
46 | +required. |
47 | |
48 | |
49 | |
50 | 1.2 www-apps/wordpress/files/postupgrade-en.txt |
51 | |
52 | file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apps/wordpress/files/postupgrade-en.txt?rev=1.2&view=markup |
53 | plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apps/wordpress/files/postupgrade-en.txt?rev=1.2&content-type=text/plain |
54 | diff : http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apps/wordpress/files/postupgrade-en.txt?r1=1.1&r2=1.2 |
55 | |
56 | Index: postupgrade-en.txt |
57 | =================================================================== |
58 | RCS file: /var/cvsroot/gentoo-x86/www-apps/wordpress/files/postupgrade-en.txt,v |
59 | retrieving revision 1.1 |
60 | retrieving revision 1.2 |
61 | diff -u -r1.1 -r1.2 |
62 | --- postupgrade-en.txt 30 Oct 2007 12:20:00 -0000 1.1 |
63 | +++ postupgrade-en.txt 8 Jan 2008 06:29:52 -0000 1.2 |
64 | @@ -11,3 +11,20 @@ |
65 | and follow the instructions on the screen. |
66 | |
67 | ------------------------------------------------------------------------ |
68 | +!!!!!!!!! SECURITY WARNING !!!!!!!!!!! |
69 | + |
70 | +Wordpress has had a history of serious security flaws. Any application |
71 | +with less widespread use but the same amount of security issues would |
72 | +have been removed from the tree. |
73 | + |
74 | +We decided to keep the application in the unstable portage tree so that |
75 | +it get's some level of attention from our security team. Currently |
76 | +you can expect us to react within 40 days of a reported security |
77 | +problem. |
78 | + |
79 | +This still means that you might open up your installation to hackers for |
80 | +about a month after an issue has been made public. This is a severe |
81 | +risk and you should keep a close eye on the common security trackers so |
82 | +that you are able to fix problems with your installation yourself if |
83 | +required. |
84 | + |
85 | |
86 | |
87 | |
88 | 1.1 www-apps/wordpress/files/digest-wordpress-2.3.2 |
89 | |
90 | file : http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apps/wordpress/files/digest-wordpress-2.3.2?rev=1.1&view=markup |
91 | plain: http://sources.gentoo.org/viewcvs.py/gentoo-x86/www-apps/wordpress/files/digest-wordpress-2.3.2?rev=1.1&content-type=text/plain |
92 | |
93 | Index: digest-wordpress-2.3.2 |
94 | =================================================================== |
95 | MD5 7489b5f2433f3b2096aa02bbca09b069 wordpress-2.3.2.tar.gz 884822 |
96 | RMD160 2432bf7a508d93e4d21e5a5d73518931dc9b936d wordpress-2.3.2.tar.gz 884822 |
97 | SHA256 fb14e3d41964091be03772941d657dfba49f2598c14672466a39520e95272168 wordpress-2.3.2.tar.gz 884822 |
98 | |
99 | |
100 | |
101 | -- |
102 | gentoo-commits@l.g.o mailing list |