Update php3 and ap-php3 to 3.0.18nb1. Changes from version 3.0.18 are

a security fix for a file-upload bug. <===> SECURITY NOTE <===> Note that the buffer overflow fix is a major security fix. Quoting from the security advisory at: http://security.e-matters.de/advisories/012002.html "PHP supports multipart/form-data POST requests (as described in RFC1867) known as POST fileuploads. Unfourtunately there are several flaws in the php_mime_split function that could be used by an attacker to execute arbitrary code. During our research we found out that not only PHP4 but also older versions from the PHP3 tree are vulnerable.
author: jlam <jlam> 2002-02-28 15:07:16 +0000
committer: jlam <jlam> 2002-02-28 15:07:16 +0000
commit: 7699d00560cecf6750006d7bac1d866a55849439 (patch)
tree: c951f8a63bb725ec311871eed493e2e9e631db4a /www/ap-php3
parent: 070222a0c4fb2e882013fb59ab96a0b2ce2cdbf9 (diff)
download: pkgsrc-7699d00560cecf6750006d7bac1d866a55849439.tar.gz
1 files changed, 3 insertions, 3 deletions
diff --git a/www/ap-php3/Makefile b/www/ap-php3/Makefile
index 6d47c1c0d7d..46b6c073e82 100644
--- a/www/ap-php3/Makefile
+++ b/www/ap-php3/Makefile
@@ -1,8 +1,8 @@
-# $NetBSD: Makefile,v 1.9 2002/01/10 13:18:06 jlam Exp $
+# $NetBSD: Makefile,v 1.10 2002/02/28 15:07:16 jlam Exp $
 #
 
 PKGNAME=		ap-php-${BASE_VERS}
-PKGREVISION=		# empty
+PKGREVISION=		1
 COMMENT=		Apache module for PHP3
 
 USE_BUILDLINK_ONLY=	yes
@@ -10,7 +10,7 @@ USE_BUILDLINK_ONLY=	yes
 .include "../../www/php3/Makefile.common"
 
 DEPENDS+=		php>=${BASE_VERS}:../../www/php3
-DEPENDS+=		apache{,6}>=1.3:../../www/apache
+DEPENDS+=		${BUILDLINK_DEPENDS.apache}:../../www/apache
 
 CPPFLAGS+=		-DPHP_INTERNAL_FUNCS
author	jlam <jlam>	2002-02-28 15:07:16 +0000
committer	jlam <jlam>	2002-02-28 15:07:16 +0000
commit	7699d00560cecf6750006d7bac1d866a55849439 (patch)
tree	c951f8a63bb725ec311871eed493e2e9e631db4a /www/ap-php3
parent	070222a0c4fb2e882013fb59ab96a0b2ce2cdbf9 (diff)
download	pkgsrc-7699d00560cecf6750006d7bac1d866a55849439.tar.gz