CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2012/01/25 04:17:22
Modified files:
lang/php : Makefile.inc
lang/php/5.2 : Makefile distinfo
lang/php/5.3 : Makefile distinfo
Log message:
Update the Suhosin extension to 0.9.33 fixing CVE-2012-0807.
Stack overflow, only affects a very specific and unusual non-default
configuration: transparent cookie encryption enabled, HTTP response
splitting protection disabled, *and* a PHP application must allow
unfiltered user input to header() in order to be affected.
Good write-up at http://seclists.org/fulldisclosure/2012/Jan/295
ok robert@
