diff options
author | Matthew Seaman <matthew@FreeBSD.org> | 2014-06-20 22:22:35 +0000 |
---|---|---|
committer | Matthew Seaman <matthew@FreeBSD.org> | 2014-06-20 22:22:35 +0000 |
commit | 2dbcc3da0d039ad2177b26b527885301308d7830 (patch) | |
tree | 327324b676ca0634fe8b8613affd0494a4facf0d | |
parent | cf760ad45ea6c732ba60cc483e5c0bd9ea895191 (diff) | |
download | ports-2dbcc3da0d039ad2177b26b527885301308d7830.tar.gz ports-2dbcc3da0d039ad2177b26b527885301308d7830.zip |
MFH: r358641
Security update to 4.2.4
- while here switch plist to use @sample
The advisories: PMASA-2014-2 and PMASA-2014-3, have not been published
yet, so there is very little concrete information about what the
security problems are. About all there is comes from the change log,
where the security issues are listed as:
- bug #4464 [security] XSS injection due to unescaped db/table name in navigation hiding
- bug #4465 [security] XSS injection due to unescaped db/table name in recent/favorite tables
ChangeLog: http://sourceforge.net/projects/phpmyadmin/files/phpMyAdmin/4.2.4/phpMyAdmin-4.2.4-notes.html/view
Approved by: portmgr
Notes
Notes:
svn path=/branches/2014Q2/; revision=358646
-rw-r--r-- | databases/phpmyadmin/pkg-plist-chunk | 4 |
1 files changed, 1 insertions, 3 deletions
diff --git a/databases/phpmyadmin/pkg-plist-chunk b/databases/phpmyadmin/pkg-plist-chunk index 3c6168e40dd6..a353ff71c0b4 100644 --- a/databases/phpmyadmin/pkg-plist-chunk +++ b/databases/phpmyadmin/pkg-plist-chunk @@ -1,7 +1,5 @@ @mode 640 @group %%PMA_GRP%% -@unexec if cmp -s %D/%%WWWDIR%%/config.inc.php.sample %D/%%WWWDIR%%/config.inc.php ; then rm -f %D/%%WWWDIR%%/config.inc.php ; fi -%%WWWDIR%%/config.inc.php.sample -@exec [ ! -f %B/config.inc.php ] && cp -p %B/%f %B/config.inc.php || true +@sample %%WWWDIR%%/config.inc.php.sample @mode @group |