xss in drupal theme newsflash: SA-CONTRIB-2014-027

https://www.drupal.org/node/2211381

devel/quirks/Makefile

@@ -1,11 +1,11 @@
-# $OpenBSD: Makefile,v 1.570 2018/03/30 12:46:36 espie Exp $
+# $OpenBSD: Makefile,v 1.571 2018/03/31 15:36:32 espie Exp $
 
 COMMENT =	exceptions to pkg_add rules
 CATEGORIES =	devel databases
 DISTFILES =
 
 # API.rev
-PKGNAME =	quirks-2.415
+PKGNAME =	quirks-2.416
 PKG_ARCH =	*
 MAINTAINER =	Marc Espie <espie@openbsd.org>
 

devel/quirks/files/Quirks.pm

@@ -1,7 +1,7 @@
 #! /usr/bin/perl
 
 # ex:ts=8 sw=4:
-# $OpenBSD: Quirks.pm,v 1.583 2018/03/30 12:46:36 espie Exp $
+# $OpenBSD: Quirks.pm,v 1.584 2018/03/31 15:36:32 espie Exp $
 #
 # Copyright (c) 2009 Marc Espie <espie@openbsd.org>
 #
@@ -1352,6 +1352,7 @@ my $cve = {
 	'www/drupal6/views' => 'drupal6-views-<2.18',
 	'www/p5-CGI-Application' => 'p5-CGI-Application-<4.50p0',
 	'www/drupal7/core' => 'drupal->=7.0,<7.58',
+	'www/drupal7/theme-newsflash' => 'drupal7-theme-newsflash-<2.5',
 };
 
 # ->check_security($path)