On 2008.06.22 09:17:51 +0000, Stanislav Sedov wrote: > stas 2008-06-22 09:17:51 UTC > > FreeBSD ports repository > > Modified files: > security/vuxml vuln.xml > Log: > - Document php5-posix directory traversal vulnerability.
This is not really a real/serious vulnerability as "safe_mode" isn't safe at all. At least a note should be added that safe_mode isn't considered safe. See also ports/lang/php5/files/patch-php.ini-recommended . I think there is an comment from an earlier entry which can be copy/pasted. All that said, thanks for working on VuXML and helping documenting issues! -- Simon L. Nielsen FreeBSD Security Team _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/cvs-all To unsubscribe, send any mail to "[EMAIL PROTECTED]"
