| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
it has to be there.
* Use BUILD_DIRS instead of manually invoking "make all" from another
subdirectory of WRKSRC during post-build.
* Install the actual binary in ${PREFIX}/libexec/cgi-bin/php and symlink
into ${PREFIX}/bin/php. This allows the php binary to function in a
secure Apache setup. This fixes part of pkg/18783 by Chris Baird.
|
|
a security fix for a file-upload bug.
<===> SECURITY NOTE <===>
Note that the buffer overflow fix is a major security fix. Quoting from
the security advisory at:
http://security.e-matters.de/advisories/012002.html
"PHP supports multipart/form-data POST requests (as described in RFC1867)
known as POST fileuploads. Unfourtunately there are several flaws in the
php_mime_split function that could be used by an attacker to execute
arbitrary code. During our research we found out that not only PHP4 but
also older versions from the PHP3 tree are vulnerable.
|
|
modules are handled. Also buildlinkify, honor ${PKG_SYSCONFDIR}, and use
the general INSTALL scripts to handle the php3.ini config file. Become
the maintainer since the changes to the package structure are fairly large.
The new framework should make creating new PHP3 modules simpler, and makes
buildlinkifying those modules simpler as well.
|
|
|
|
+ move the patch digest/checksum values from files/patch-sum to distinfo
|
