Date: Thu, 5 Oct 2006 11:53:04 +0400 From: "Andrew Pantyukhin" <infofarmer@FreeBSD.org> To: "Alex Dupre" <ale@freebsd.org>, "FreeBSD Ports" <ports@freebsd.org> Subject: PHP Vulnerabilities and Suhosin Message-ID: <cb5206420610050053kf729b24p812cd5a08e74019a@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
This latest advisory makes php4/php5 vulnerable: http://www.vuxml.org/freebsd/edabe438-542f-11db-a5ae-00508d6a62df.html http://www.hardened-php.net/advisory_082006.132.html I've noticed we have WITH_SUHOSIN option. It may alleviate some security issues. In particular, suhosin 0.9.6 fixes this latest issue. Can we somehow make this option influence PKGNAME (suffix, prefix, version or revision) so I can mark php+suhosin 0.9.6 safe in VuXML? Thanks!
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?cb5206420610050053kf729b24p812cd5a08e74019a>