This release fixes security vulnerabilities. Sites are urged to upgrade immediately after reading the security announcement:

* SA-CORE-2009-004 Drupal core - Local file inclusion on Windows

In addition to this security vulnerability, the following bugs have been fixed since the 5.15 release:

    * #124492 by m3avrck, mfer: more accurate checking for valid URLs in valid_url()
    * #360038 by sun. Documentation improvement.
    * #179244 by tangent: line break filter operates on object element.
    * #62926 by karschsp: increase the free tagging field maximum length to 1024; the database limits are per-tag.

www/drupal/Makefile

@@ -1,6 +1,6 @@
-# $NetBSD: Makefile,v 1.36 2009/01/15 20:05:44 adrianp Exp $
+# $NetBSD: Makefile,v 1.37 2009/02/28 16:10:23 adrianp Exp $
 
-DISTNAME=	drupal-5.15
+DISTNAME=	drupal-5.16
 CATEGORIES=	www
 MASTER_SITES=	http://drupal.org/files/projects/
 

www/drupal/distinfo

@@ -1,5 +1,5 @@
-$NetBSD: distinfo,v 1.27 2009/01/15 20:05:44 adrianp Exp $
+$NetBSD: distinfo,v 1.28 2009/02/28 16:10:23 adrianp Exp $
 
-SHA1 (drupal-5.15.tar.gz) = ecf67f38e85a6f01102f4dae18f1b2d221f1acba
-RMD160 (drupal-5.15.tar.gz) = 404c59d34f9d4ebe09186dc66eb6203990c7488c
-Size (drupal-5.15.tar.gz) = 766007 bytes
+SHA1 (drupal-5.16.tar.gz) = 3dd95ece9570e5a889b9869a50608797b2976b19
+RMD160 (drupal-5.16.tar.gz) = e79aa1fa15f5822dc32790d3f0f86ed4c9f6a8b0
+Size (drupal-5.16.tar.gz) = 766247 bytes