CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2019/02/12 14:57:35
Modified files:
devel/quirks : Makefile
devel/quirks/files: Quirks.pm
www/hiawatha : Makefile distinfo
Log message:
SECURITY:
Update to hiawatha 10.8.4.
"When AllowDotFiles is enabled, a directory traversal is possible,
exposing files which can be read by the webserver to the outside
world. By default, AllowDotFiles is not enabled."
https://csirt.cedia.org.ec/2019/02/apv-190208001-vulnerability-detected-in-hiawatha-allowdotfiles/
