Accepted wordpress 3.0.1-2~bpo50+1 (source all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Tue, 14 Sep 2010 23:55:09 -0700
Source: wordpress
Binary: wordpress wordpress-l10n
Architecture: source all
Version: 3.0.1-2~bpo50+1
Distribution: lenny-backports
Urgency: high
Maintainer: Giuseppe Iuculano <iuculano@debian.org>
Changed-By: Matt Taggart <taggart@debian.org>
Description:
wordpress - weblog manager
wordpress-l10n - weblog manager - language files
Closes: 490977 496240 500295 500296 501507 504242 506685 507356 507981 511312 514447 514845 517969 517969 531736 531736 533387 536724 537146 539411 541102 541199 541371 544473 549436 551380 551841 555729 556902 561832 566224 585784 586764 590859 591195
Changes:
wordpress (3.0.1-2~bpo50+1) lenny-backports; urgency=low
.
* Rebuild for lenny-backports.
* Requires backported debhelper for build.
.
wordpress (3.0.1-2) unstable; urgency=low
.
* [e8a913f] Remove swfupload.swf from the binary package, as it cannot
be built from source, violating the Policy. (Closes: #591195)
* [92493d0] Document in Readme.Debian how to get swfupload.swf
* [3663a53] debian/get-upstream-i18n: download also configuration
files for RTL-languages (Closes: #585784)
* [8bbdc8b] Added a missing define in debian/wp-config.php (Closes: #590859)
* [34dd063] Updated language files
* [adf55b3] Install *.php configuration files for RTL-languages
.
wordpress (3.0.1-1) unstable; urgency=low
.
* [e6e4f09] Updated watch file
* [12dd7cd] Imported Upstream version 3.0.1
* [7f03621] Bump to standards-version 3.9.1, no changes needed
.
wordpress (3.0-1) unstable; urgency=low
.
[ Giuseppe Iuculano ]
* [a57d26e] Imported Upstream version 3.0 (Closes: #586764)
* [a74cd68] MU: enable multi-user by default and install the proper
blogs.dir directory
* [ffd926e] fix the blogs.dir link
* [c81081d] Adjust MU setup for Debian installations
* [c14dd9d] Update language files
* [6a7296f] Added Raphaël Hertzog in Uploaders
* [7ea24ff] Updated watch file
.
[ Raphaël Hertzog ]
* [2d1df3e] Update patch debian/patches/001readme.patch
* [58a772e] Update patch debian/patches/003installer.patch
* [332abfc] Update patch debian/patches/006rss_language.patch
* [ee99544] Update patch debian/patches/008CVE2008-2392.patch
* [b960914] Refresh patch debian/patches/009CVE2008-6767.patch
* [511eea7] Refresh patch
debian/patches/010disabling_update_note.patch
* [22c5015] Refresh patch debian/patches/manifest.patch
* [7cfe147] Switch to source format 3.0 (quilt).
* [8c86759] Add back the default theme that has been dropped upstream
* [390188e] Adjust links and rules to cope with removal of
scriptaculous/prototype.js
* [1313b13] Add package prefix to many debian/ files for clarity
* [c4e7651] Switch to dh7 tiny rules file and general cleanup of the
build process.
* [625cdbb] Updated Vcs-Git/Vcs-Browser to point to the collab-maint
repository.
.
wordpress (2.9.2-1) unstable; urgency=low
.
* [3f228c1] Imported Upstream version 2.9.2
* [7965955] Bump to Standards-Version 3.8.4 (no changes)
* [e86fd59] Updated language files
.
wordpress (2.9.1-2) unstable; urgency=low
.
* [4a7279a] Fixed the security id in wp-admin/menu.php (Closes: #561832) -
thanks to Franck Nouyrigat
* [aa0f3a0] Allow site names with dash character. (Closes: #566224) -
thanks to Mikko Visa
* [ee0a44e] Updated language files
.
wordpress (2.9.1-1) unstable; urgency=low
.
* [a83b8fd] Imported Upstream version 2.9.1
* [216890e] Added ${misc:Depends} in Depends
* [ec95986] Updated language files
.
wordpress (2.9-1) unstable; urgency=low
.
* [fdd001e] Change wordpress-l10n section (localization)
* [625fa21] Imported Upstream version 2.9
* [dd9b536] Refreshed patches
* [1ce2a9d] Do not remove anymore plugins/wordpress/js direcotry
* [3287ec5] Updated language files (Closes: #556902)
.
wordpress (2.8.6-1) unstable; urgency=low
.
* [cf87b24] Updated debian/watch (Closes: #555729) - thanks to Hideki
Yamane
* [997165e] Imported Upstream version 2.8.6
* [05395e1] debian/wp-config.php: sanitize $debian_server and do not
check if $debian_file is under /etc/wordpress (Closes: #549436)
* [dc016ce] Updated language files
.
wordpress (2.8.5-1) unstable; urgency=high
.
* [b0ebbe1] Imported Upstream version 2.8.5 (Closes: #551841)
- This version fixes CVE-2009-3622, Wordpress Trackback DoS
* [cad0da2] Updated languages files
* [e8438f2] Use /var/log/apache2 directory in the apache example file
(Closes: #551380)
.
wordpress (2.8.4-3) unstable; urgency=low
.
* [dc295db] Provide a more descriptive errror message if the vhost
config file is not found. (LP: #365783)
* [c23192a] Depend on libjs-jquery >= 1.3.3-1 (Closes: #544473) -
thanks to Arnaud Guiton
* [fd27308] Updated debian/copyright
* [94ad7d3] Split up the language files into a separate package
* [08334d7] Updated language files
* [6682ab3] Updated my email address and removed DM-Upload-Allowed
control field
.
wordpress (2.8.4-2) unstable; urgency=low
.
* [e582ddd] Removed reference about drag.gif in manifest.php, thanks
to Michel Meyers (Closes: #517969)
* [a0d70c8] Do not symlink readme.html, instead install it in
/usr/share/wordpress
* [e81e4c3] Depend on tinymce (>= 3.2.6-0.1) and added a proper
symlink to the tabfocus plugin
* [0492b02] Added a note in NEWS and README.debian about the secondary
consequence caused by the previous fix for a possible script
injection via /etc/wordpress/wp-config.php
* [6a3c803] Updated language files
.
wordpress (2.8.4-1) unstable; urgency=low
.
* [5f0812d] Imported Upstream version 2.8.4
* [e1ea94b] Switch to quilt
* [cf8904e] Removed Andrea De Iacovo from Maintainer field, thanks
Andrea for the prior work on wordpress!
* [6013bd8] Removed 007_REQUEST.patch, upstream already fixed CVE-2008-5113
in a better way
* [8da39ea] Removed 004languages.patch, it contains outdated languages
files
* [d5696ea] debian/control: Updated Vcs control field
* [89316e0] debian/rules: Comment the DH_VERBOSE export
* [cf78bf5] debian/wp-config.php: check if $debian_file is under
/etc/wordpress and mitigate a possible script injection via
/etc/wordpress/wp-config.php. Thanks to Raphael Geissert (Closes: #500295)
* [ece1c25] debian/get-upstream-i18n: Do not remove outdated language
files by default
* [59547a2] Do not embed tinymce, php-gettext and cropper. (Closes: #504242)
* [848828d] debian/postinst: Create the symlinks manually, dpkg
doesn't replace directories with symlinks. (Closes: #517969)
* [2af4aea] debian/patches/009CVE2008-6767.patch: Grant upgrade
privilege to all admin users. Thanks to Ivan Warren (Closes: #541371)
* [46e8f2b] debian/control: Removed the sentence about the French
language support, now there are a lot of language files
* [fcd94c6] debian/control: Remove outdated packages from Depends,
Suggests, and Conflicts
* [9c28177] Updated to standards version 3.8.3 (No changes needed)
* [700156e] Added a README.source (Debian Policy Manual section 4.14)
* [13a98d5] Updated language files
* [a86b72a] Do not install readme.html in doc, it doesn't contain any
relevant information for Debian users
* [25d4e8e] Updated copyright file
.
wordpress (2.8.3-2) unstable; urgency=medium
.
* [2372863] debian/patches/011enforce_activaction_key.dpatch: Enforce
activation key to be a string (Closes: #541102)
* [cb80386] Fixed CVE-2008-6767 patch and prevent redirect loop.
(Closes: #541199)
.
wordpress (2.8.3-1) unstable; urgency=medium
.
* [f625087] Imported Upstream version 2.8.3 (Closes: #533387, #539411)
This release fixed several security issue:
- Privileges unchecked and multiple information disclosures.
(CVE-2009-2334, CVE-2009-2335, CVE-2009-2336) (Closes: #536724)
- CVE-2009-2431, CVE-2009-2432: Obtain sensitive information
(Closes: #537146)
- CVE-2008-6762: Open redirect vulnerability in wp-admin/upgrade.php
(Closes: #531736)
* [347c164] debian/control: Added Giuseppe Iuculano in Uploaders,
added Vcs and DM-Upload-Allowed control field
* [92fb4ab] Bump to debhelper 7 compatibility levels
* [5b8536e] Refreshing patches
* [d999c0e] Added a watch file
* [4163c0c] debian/rules: Do not remove the autosave tinymce plugin, there
isn't anymore.
* [9c4d0e5] debian/get-upstream-i18n: download .xpi files into
debian/languages
* [76b7c5c] Install language files
* [a0bfad2] Move gettext in Build-Depends-Indep
* [8b607bf] Use set -e instead of passing -e to the shell on the #!
line
* [6cbbf36] debian/patches/009CVE2008-6767.dpatch: Only admin can
upgrade wordpress. (CVE-2008-6767) (Closes: #531736)
* [d6adfbe] Disabled the the "please update" warning, thanks to Hans
Spaans and Rolf Leggewie (Closes: #506685)
* [15c360c] Updated to standards version 3.8.2 (No changes needed)
.
wordpress (2.7.1-2) unstable; urgency=low
.
* setup-mysql corrected to accept domain names with hyphens (Closes: #514447)
* wp-config.php now dies if no config file is found (Closes: #500296)
* now the static browser uploader is supported (Closes: #501507)
Users che chose to use the browser (instead of flash) to upload media files.
.
wordpress (2.7.1-1) experimental; urgency=low
.
* Merge with upstream Wordpress-2.7 (Closes: #514845)
* Corrected security regression on CVE-2008-2392.
Admins had unfiltered upload capability again.
Now this options is disabled by default and can be
enable through the security options panel.
.
wordpress (2.7-1) experimental; urgency=low
.
* Merge with upstream Wordpress-2.7 (Closes: #507356)
* README file is now more clear about Apache
configuration (Closes: #511312, #507981)
.
wordpress (2.6.2-2) experimental; urgency=low
.
* 007CVE2008-2392.patch modified.
Now users chan dinamically choose to enable unrestricted upload for admins.
.
wordpress (2.6.2-1) experimental; urgency=low
.
* Merge with upstream Wordpress-2.6.2 (Closes: #490977)
* Dependency field was changed to erase useless dependencies (Closes: #496240)
Checksums-Sha1:
cf123f9fa4d73590452061ca27d31dd12317b8e3 1290 wordpress_3.0.1-2~bpo50+1.dsc
3593c93e2c4e3f080e75dd0b0c47cd3d06e1b7d8 2684855 wordpress_3.0.1.orig.tar.gz
ccf72fd7fc140799cbdd8759e09c433b632213d5 6785734 wordpress_3.0.1-2~bpo50+1.debian.tar.gz
9d3c7bd8901463cd8115c585f0648db16fea874c 2508080 wordpress_3.0.1-2~bpo50+1_all.deb
b96314ad373fd26d0bf218ddb7584e3963cf0bb0 5983796 wordpress-l10n_3.0.1-2~bpo50+1_all.deb
Checksums-Sha256:
26f61e2a82298014b764f04961653fae7d7473a522e4ed4c6fd9e52fdb66e8e0 1290 wordpress_3.0.1-2~bpo50+1.dsc
fd76fb7683c32c4f2d65f5b2cd015cb62d19f1017e3b020f34a98d1b480e1818 2684855 wordpress_3.0.1.orig.tar.gz
8dd400a8ae7f8ef9e1e5a15c7efa351c12b549e609c79c8757f2b40502db32e1 6785734 wordpress_3.0.1-2~bpo50+1.debian.tar.gz
95cb82b66630c01288a4ced349bb9cbbacc4f6ee74ec6defe846f8115312b6a2 2508080 wordpress_3.0.1-2~bpo50+1_all.deb
b8377fea16b7b45f747d39ed796b74974942688dc99db2eafd0858892750a70a 5983796 wordpress-l10n_3.0.1-2~bpo50+1_all.deb
Files:
6543cf89e9c8950b6c11cf8dd104ed57 1290 web optional wordpress_3.0.1-2~bpo50+1.dsc
8fa5373ed805fb9a6ee56dfd236dcb64 2684855 web optional wordpress_3.0.1.orig.tar.gz
82a72310d73bdaa97009a399c4d46607 6785734 web optional wordpress_3.0.1-2~bpo50+1.debian.tar.gz
c9f14a3d87bcd6b4d953bb90f50e6c6f 2508080 web optional wordpress_3.0.1-2~bpo50+1_all.deb
497f193a8226d763a800f3ea4a05a163 5983796 localization optional wordpress-l10n_3.0.1-2~bpo50+1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkyTIC4ACgkQHk9mSeopF4XXfgCfUF8vjUBBN0c/SKusgYMkLVXm
/2kAn2EbY2HzZmfArzG2fTgA1puudMC0
=CgKd
-----END PGP SIGNATURE-----
Accepted:
wordpress-l10n_3.0.1-2~bpo50+1_all.deb
to main/w/wordpress/wordpress-l10n_3.0.1-2~bpo50+1_all.deb
wordpress_3.0.1-2~bpo50+1.debian.tar.gz
to main/w/wordpress/wordpress_3.0.1-2~bpo50+1.debian.tar.gz
wordpress_3.0.1-2~bpo50+1.dsc
to main/w/wordpress/wordpress_3.0.1-2~bpo50+1.dsc
wordpress_3.0.1-2~bpo50+1_all.deb
to main/w/wordpress/wordpress_3.0.1-2~bpo50+1_all.deb
wordpress_3.0.1.orig.tar.gz
to main/w/wordpress/wordpress_3.0.1.orig.tar.gz
Reply to: