PHP Vulnerabilities and Suhosin
Andrew Pantyukhin
infofarmer at FreeBSD.org
Thu Oct 5 00:53:05 PDT 2006
This latest advisory makes php4/php5 vulnerable:
http://www.vuxml.org/freebsd/edabe438-542f-11db-a5ae-00508d6a62df.html
http://www.hardened-php.net/advisory_082006.132.html
I've noticed we have WITH_SUHOSIN option. It may
alleviate some security issues. In particular, suhosin
0.9.6 fixes this latest issue. Can we somehow make
this option influence PKGNAME (suffix, prefix, version
or revision) so I can mark php+suhosin 0.9.6 safe in
VuXML?
Thanks!
More information about the freebsd-ports
mailing list