ports/160805: [update] lang/php52 CVE vulnerabilities fixes
Xin LI
delphij at delphij.net
Thu Sep 29 17:58:43 UTC 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On 09/29/11 09:14, dougb at FreeBSD.org wrote:
> Synopsis: [update] lang/php52 CVE vulnerabilities fixes
>
> State-Changed-From-To: open->feedback State-Changed-By: dougb
> State-Changed-When: Thu Sep 29 16:10:46 UTC 2011 State-Changed-Why:
>
>
> secteam, please review and give an opinion as to whether this will
> clear the vulnerabilities.
>
> It's not clear to me why keeping 5.2 after its EOL is a feature,
> but if you guys decide it's Ok to keep it with these patches I'm
> not opposed.
Sadly, people still use that in 2011 :(
I think it might because ZendOptimizer which requires php52.
By the way these patches should be committed anyway because they won't
make make things worse in my understanding of the changes.
> FYI, it's scheduled for deletion on 2011-10-14.
I've kept the deprecation date with a statement explaining why it's
deprecated. Thanks for this reminder!
Cheers,
- --
Xin LI <delphij at delphij.net> https://www.delphij.net/
FreeBSD - The Power to Serve! Live free or die
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.18 (FreeBSD)
iQEcBAEBCAAGBQJOhLHRAAoJEATO+BI/yjfBHkAH/jPv4havnrh8an+cEGU/Qcvk
jgWib9j07SFju1bmlWqpcFXhVWwBEYZHvL2l0KJpYLrpeg59Gx+aFQg4EuzJO/Wi
EfJDFxV9VkRgA8u6J+XKqbu8YUsBXQildMH3LAFCN5Zn7a7Wlb2xqwvBiDEoBuXf
52GYhwvOi+QJcQYyIfoChTm09YWug/vPnzbydLLCDpY9qkeKwNhSCnP89x1nOLAk
UdonCX84GTaSed+EwO8Im0j5pZgjKr2rFtTdAOEm53ljlhYueSZDFUX592pnzXAH
bzTMmWQeB/rgT2PDGNmIX99XiJSvQgZ4gEBs+ItpRcMM/fUV7f2WJPMkG5FSf7o=
=sjPY
-----END PGP SIGNATURE-----
More information about the freebsd-ports-bugs
mailing list