kpriv/pkgsrc
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
pkgsrc/www/wordpress
History
morr 5acc902824 Security update to version of Wordpress 3.4.1. 
ChangeLog:

Wordpress 3.4.1:

* Fixes an issue where a theme’s page templates were sometimes not detected.
* Addresses problems with some category permalink structures.
* Better handling for plugins or themes loading JavaScript incorrectly.
* Adds early support for uploading images on iOS 6 devices.
* Allows for a technique commonly used by plugins to detect a network-wide activation.
* Better compatibility with servers running certain versions of PHP (5.2.4, 5.4)
or with uncommon setups (safe mode, open_basedir), which had caused warnings or
in some cases prevented emails from being sent.

Additionally: Version 3.4.1 fixes a few security issues and contains some security
hardening. These issues were discovered and fixed by the WordPress security team:

* Privilege Escalation/XSS. Critical. Administrators and editors in multisite
were accidentally allowed to use unfiltered_html for 3.4.0.
* CSRF. Additional CSRF protection in the customizer.
* Information Disclosure: Disclosure of post contents to authors and contributors
(such as private or draft posts).
* Hardening: Deprecate wp_explain_nonce(), which could reveal unnecessary information.
* Hardening: Require a child theme to be activated with its intended parent only.

Wordpress 3.4:

* Enhanced theme control
    * Customize theme options before activating a new theme using Theme Customizer
    * Use Theme Previewer to customize current theme without changing the front-end design

* Custom Headers
    * Improved Custom Headers with flexible sizes
    * Selecting Custom Header Images and Custom Background Images from Media Library Screen

* Media improvements
    * Support HTML in image captions

* Under the Hood improvements
    * Improvements in WordPress internationalization and localization (more info)
    * Different split in translation POT files for faster translations
    * Codex XML-RPC information update accessed via XML-RPC_WordPress_API
    * WP_Query improvements
2012-06-29 10:40:13 +00:00
..
files
DESCR
distinfo Security update to version of Wordpress 3.4.1. 2012-06-29 10:40:13 +00:00
Makefile Security update to version of Wordpress 3.4.1. 2012-06-29 10:40:13 +00:00
MESSAGE
options.mk Removed mk/apachever.mk 2012-04-14 16:25:11 +00:00
PLIST Security update to version of Wordpress 3.4.1. 2012-06-29 10:40:13 +00:00