kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/www/ikiwiki
History
schmonz d99062f1d5 Update to 3.20170111. From the changelog: 
* passwordauth: prevent authentication bypass via multiple name
  parameters (CVE-2017-0356, OVE-20170111-0001)
* passwordauth: avoid userinfo forgery via repeated email parameter
  (also in the scope of CVE-2017-0356)
* CGI, attachment, passwordauth: harden against repeated parameters
  (not believed to have been a vulnerability)
* remove: make it clearer that repeated page parameter is OK here
* t/passwordauth.t: new automated test for passwordauth
2017-01-12 00:44:15 +00:00
..
DESCR
distinfo Update to 3.20170111. From the changelog: 2017-01-12 00:44:15 +00:00
Makefile Update to 3.20170111. From the changelog: 2017-01-12 00:44:15 +00:00
MESSAGE
options.mk
PLIST Update to 3.20160121. From the changelog: 2016-01-21 18:36:38 +00:00