[arch-commits] Commit in mantisbt/repos (4 files)

Maxime Gauduin alucryd at archlinux.org
Tue Feb 17 10:45:27 UTC 2015 

    Date: Tuesday, February 17, 2015 @ 11:45:27
  Author: alucryd
Revision: 127840

archrelease: copy trunk to community-testing-any

Added:
  mantisbt/repos/community-testing-any/
  mantisbt/repos/community-testing-any/CVE-2014-8986.patch
    (from rev 127839, mantisbt/trunk/CVE-2014-8986.patch)
  mantisbt/repos/community-testing-any/PKGBUILD
    (from rev 127839, mantisbt/trunk/PKGBUILD)
  mantisbt/repos/community-testing-any/mantisbt.install
    (from rev 127839, mantisbt/trunk/mantisbt.install)

---------------------+
 CVE-2014-8986.patch |   20 ++++++++++++++++++++
 PKGBUILD            |   50 ++++++++++++++++++++++++++++++++++++++++++++++++++
 mantisbt.install    |   17 +++++++++++++++++
 3 files changed, 87 insertions(+)

Copied: mantisbt/repos/community-testing-any/CVE-2014-8986.patch (from rev 127839, mantisbt/trunk/CVE-2014-8986.patch)
===================================================================
--- community-testing-any/CVE-2014-8986.patch	                        (rev 0)
+++ community-testing-any/CVE-2014-8986.patch	2015-02-17 10:45:27 UTC (rev 127840)
@@ -0,0 +1,20 @@
+diff -rupN mantisbt-1.2.19.orig/adm_config_report.php mantisbt-1.2.19/adm_config_report.php
+--- mantisbt-1.2.19.orig/adm_config_report.php	2015-02-17 11:36:02.025998608 +0100
++++ mantisbt-1.2.19/adm_config_report.php	2015-02-17 11:42:22.122773322 +0100
+@@ -159,6 +159,16 @@
+ 		}
+ 	}
+ 
++	if( !is_blank( $t_filter_config_value ) && (int)$t_filter_config_value !== META_FILTER_NONE ) {
++		// check that config value exists
++		if( @config_get_global( $t_filter_config_value ) === null ) {
++			$t_cookie_path = config_get( 'cookie_path' );
++			gpc_clear_cookie( $t_cookie_name, $t_cookie_path );
++
++			trigger_error( ERROR_GENERIC, ERROR );
++		}
++	}
++
+ 	# Get config edit values
+ 	$t_edit_user_id         = gpc_get_int( 'user_id', $t_filter_user_value == META_FILTER_NONE ? ALL_USERS : $t_filter_user_value );
+ 	$t_edit_project_id      = gpc_get_int( 'project_id', $t_filter_project_value == META_FILTER_NONE ? ALL_PROJECTS : $t_filter_project_value );

Copied: mantisbt/repos/community-testing-any/PKGBUILD (from rev 127839, mantisbt/trunk/PKGBUILD)
===================================================================
--- community-testing-any/PKGBUILD	                        (rev 0)
+++ community-testing-any/PKGBUILD	2015-02-17 10:45:27 UTC (rev 127840)
@@ -0,0 +1,50 @@
+# $Id$
+# Maintainer: Maxime Gauduin <alucryd at archlinux.org>
+# Contributor: Alexander 'gridcol' Griesbaum <agrsbm at gmail.com>
+# Contributor: Ravenman <correo.cuervo at gmail.com>
+# Contributor: Anton Bazhenov <anton.bazhenov at gmail>
+# Contributor: Angel 'angvp' Velasquez <angvp at archlinux.com.ve>
+
+pkgname=mantisbt
+pkgver=1.2.19
+pkgrel=2
+pkgdesc='Web-based issue tracking system'
+arch=('any')
+url='http://www.mantisbt.org/'
+license=('GPL')
+depends=('php')
+optdepends=('apache: Web server to run MantisBT'
+            'curl: Twitter integration'
+            'gd: Graphs support'
+            'lighttpd: Web server to run MantisBT'
+            'mariadb: SQL database'
+            'nginx: Web server to run MantisBT'
+            'php-pgsql: PostgreSQL database')
+backup=('etc/webapps/mantisbt/config_inc.php')
+install='mantisbt.install'
+source=("http://downloads.sourceforge.net/mantisbt/mantisbt-${pkgver}.tar.gz"
+        'CVE-2014-8986.patch')
+sha256sums=('0814d2113de4a53498bb67fa531ca36dee821e5c22df150deb75dc918eed86de'
+            '9e1b5bb831e6bbbfa8c3a61e91c339928b428147bcf609d2abca78b67140c6ab')
+
+prepare() {
+  cd mantisbt-${pkgver}
+
+  patch -Np1 -i ../CVE-2014-8986.patch
+}
+
+package() {
+  install -dm 755 "${pkgdir}"/{etc/webapps/mantisbt,usr/share/webapps}
+  cp -dr --no-preserve='ownership' mantisbt-${pkgver} "${pkgdir}"/usr/share/webapps/mantisbt
+
+  for f in {config_inc.php,custom_strings_inc.php,custom_constants_inc.php,custom_functions_inc.php}; do
+    ln -s /etc/webapps/mantisbt/${f} "${pkgdir}"/usr/share/webapps/mantisbt/
+  done
+  cp "${pkgdir}"/usr/share/webapps/mantisbt/config_inc.php.sample "${pkgdir}"/etc/webapps/mantisbt/config_inc.php
+
+  find "${pkgdir}" -type d -exec chmod 755 {} +
+  find "${pkgdir}" -type f -exec chmod 644 {} +
+  chown http:http -R "${pkgdir}"/usr/share/webapps/mantisbt
+}
+
+# vim: ts=2 sw=2 et:

Copied: mantisbt/repos/community-testing-any/mantisbt.install (from rev 127839, mantisbt/trunk/mantisbt.install)
===================================================================
--- community-testing-any/mantisbt.install	                        (rev 0)
+++ community-testing-any/mantisbt.install	2015-02-17 10:45:27 UTC (rev 127840)
@@ -0,0 +1,17 @@
+pre_upgrade() {
+  cd /usr/share/webapps/mantisbt
+
+  cp mantis_offline.php.sample mantis_offline.php
+}
+
+post_upgrade() {
+  cd /usr/share/webapps/mantisbt
+
+  rm mantis_offline.php
+}
+
+post_remove() {
+  rm -rf /usr/share/webapps/mantisbt
+}
+
+# vim: ts=2 sw=2 et:

More information about the arch-commits mailing list