diff options
| author | salo <salo@pkgsrc.org> | 2006-08-16 07:17:41 +0000 |
|---|---|---|
| committer | salo <salo@pkgsrc.org> | 2006-08-16 07:17:41 +0000 |
| commit | 1087fe430d5b2dde387bd2de896fa730172c26df (patch) | |
| tree | 65afb94e02f6424ff392c381abfe8165f2d8a558 /www/php4/files/pear.sh | |
| parent | 386fd5e07473ceb8f8ba1191efcfeb127e659101 (diff) | |
| download | pkgsrc-1087fe430d5b2dde387bd2de896fa730172c26df.tar.gz | |
Pullup ticket 1790 - requested by adrianp
security update for php4
Revisions pulled up:
- pkgsrc/www/php4/Makefile 1.70
- pkgsrc/www/php4/Makefile.common 1.53
- pkgsrc/www/php4/distinfo 1.56
- pkgsrc/www/php4/files/pear.sh 1.3
- pkgsrc/www/php4/patches/patch-ao 1.3
- pkgsrc/www/php4/patches/patch-aq removed
- pkgsrc/www/php4/patches/patch-ar removed
- pkgsrc/www/php4/patches/patch-as removed
- pkgsrc/www/php4/patches/patch-au removed
- pkgsrc/www/php4/patches/patch-av removed
- pkgsrc/www/php4/patches/patch-aw 1.1
Module Name: pkgsrc
Committed By: adrianp
Date: Thu Aug 10 23:01:40 UTC 2006
Modified Files:
pkgsrc/www/php4: Makefile Makefile.common distinfo
pkgsrc/www/php4/files: pear.sh
pkgsrc/www/php4/patches: patch-ao
Added Files:
pkgsrc/www/php4/patches: patch-aw
Removed Files:
pkgsrc/www/php4/patches: patch-aq patch-ar patch-as patch-au patch-av
Log Message:
Update to 4.4.3
All PHP 4.x users are encouraged to upgrade to this release as soon as possible.
The security issues resolved include the following:
* Disallow certain characters in session names.
* Fixed a buffer overflow inside the wordwrap() function.
* Prevent jumps to parent directory via the 2nd parameter of the tempnam()
function.
* Improved safe_mode check for the error_log() function.
* Fixed cross-site scripting inside the phpinfo() function.
The release also includes about 20 bug fixes and an upgraded PCRE library
(version 6.6).
For a full list of changes in PHP 4.4.3, see the ChangeLog:
http://www.php.net/ChangeLog-4.php#4.4.3
This also contains a fix for CVE-2006-4020 (SA21403)
Diffstat (limited to 'www/php4/files/pear.sh')
| -rw-r--r-- | www/php4/files/pear.sh | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/www/php4/files/pear.sh b/www/php4/files/pear.sh index 935673a3e87..1c49ab1df01 100644 --- a/www/php4/files/pear.sh +++ b/www/php4/files/pear.sh @@ -25,4 +25,4 @@ else fi fi -exec $PHP -C -q $INCARG -d output_buffering=1 -dmemory_limit=12M $INCDIR/pearcmd.php "$@" +exec $PHP -C -q $INCARG -d output_buffering=1 -d open_basedir="" -d safe_mode=0 -d memory_limit=12M $INCDIR/pearcmd.php "$@" |