head	1.17;
access;
symbols
	RELEASE_8_3_0:1.12
	RELEASE_9_0_0:1.10
	RELEASE_7_4_0:1.8
	RELEASE_8_2_0:1.8
	RELEASE_6_EOL:1.4
	RELEASE_8_1_0:1.3;
locks; strict;
comment	@# @;


1.17
date	2012.11.25.15.53.56;	author svnexp;	state Exp;
branches;
next	1.16;

1.16
date	2012.09.20.03.02.43;	author bdrewery;	state Exp;
branches;
next	1.15;

1.15
date	2012.07.23.04.14.11;	author rm;	state Exp;
branches;
next	1.14;

1.14
date	2012.06.30.23.00.58;	author rm;	state Exp;
branches;
next	1.13;

1.13
date	2012.05.05.15.21.14;	author rm;	state Exp;
branches;
next	1.12;

1.12
date	2012.01.18.17.27.09;	author lwhsu;	state Exp;
branches;
next	1.11;

1.11
date	2012.01.02.18.26.27;	author rm;	state Exp;
branches;
next	1.10;

1.10
date	2011.11.01.15.58.47;	author miwi;	state Exp;
branches;
next	1.9;

1.9
date	2011.09.29.17.53.25;	author delphij;	state Exp;
branches;
next	1.8;

1.8
date	2011.01.09.18.56.55;	author mm;	state Exp;
branches;
next	1.7;

1.7
date	2010.12.31.12.56.36;	author mm;	state Exp;
branches;
next	1.6;

1.6
date	2010.12.17.11.30.56;	author mm;	state Exp;
branches;
next	1.5;

1.5
date	2010.12.10.12.38.54;	author mm;	state Exp;
branches;
next	1.4;

1.4
date	2010.07.26.08.56.15;	author mm;	state Exp;
branches;
next	1.3;

1.3
date	2010.06.16.10.12.36;	author mm;	state Exp;
branches;
next	1.2;

1.2
date	2010.04.27.05.46.40;	author dinoex;	state Exp;
branches;
next	1.1;

1.1
date	2010.04.23.15.03.12;	author dinoex;	state Exp;
branches;
next	;


desc
@@


1.17
log
@## SVN ##
## SVN ## Exported commit - http://svnweb.freebsd.org/changeset/base/ 307747
## SVN ## CVS IS DEPRECATED: http://wiki.freebsd.org/CvsIsDeprecated
## SVN ##
## SVN ## ------------------------------------------------------------------------
## SVN ## r307747 | flo | 2012-11-25 15:42:22 +0000 (Sun, 25 Nov 2012) | 27 lines
## SVN ##
## SVN ## - Update backports patch to 20121114
## SVN ## - Bump PORTREVISION
## SVN ##
## SVN ## Changes:
## SVN ## - CVE-2006-7243
## SVN ## PHP before 5.3.4 accepts the \0 character in a pathname, which might allow
## SVN ## context-dependent attackers to bypass intended access restrictions by placing a
## SVN ## safe file extension after this character, as demonstrated by .php\0.jpg at the
## SVN ## end of the argument to the file_exists function
## SVN ##
## SVN ## Secuity 3761df02-0f9c-11e0-becc-0022156e8794 fixed by check in fopen functions
## SVN ## for strlen(filename) != filename_len
## SVN ##
## SVN ## - CVE-2012-4388
## SVN ## The sapi_header_op function in main/SAPI.c does not properly determine a pointer
## SVN ## during checks for %0D sequences (aka carriage return characters), which allows
## SVN ## remote attackers to bypass an HTTP response-splitting protection mechanism via a
## SVN ## crafted URL, this vulnerability exists because of an incorrect fix for
## SVN ## CVE-2011-1398.
## SVN ##
## SVN ## - Timezone database updated to version 2012.9 (2012i)
## SVN ##
## SVN ## PR:		ports/173685
## SVN ## Submitted by:	Svyatoslav Lempert <svyatoslav.lempert@@gmail.com>
## SVN ## Approved by:	maintainer
## SVN ## Feature safe:	yes
## SVN ##
## SVN ## ------------------------------------------------------------------------
## SVN ##
@
text
@SHA256 (php-5.2.17.tar.bz2) = e81beb13ec242ab700e56f366e9da52fd6cf18961d155b23304ca870e53f116c
SIZE (php-5.2.17.tar.bz2) = 9092312
SHA256 (php52-backports-security-20121114.patch) = 59dc139b9acf86bbb2e281696765de513c3bec7d43392a10b5f3b36a9881ab00
SIZE (php52-backports-security-20121114.patch) = 410829
SHA256 (php-5.2.14-fpm-0.5.14-freebsd.patch.gz) = 354ce451417d14ef47761ae55147e9cee30fa0ff6f59447da021194c539f4d7f
SIZE (php-5.2.14-fpm-0.5.14-freebsd.patch.gz) = 43550
SHA256 (suhosin-patch-5.2.16-0.9.7.patch.gz) = aae115a318d80b3f32cedf876e7a8e4b932febb1b0c743c0b398003ebe122f91
SIZE (suhosin-patch-5.2.16-0.9.7.patch.gz) = 23069
SHA256 (php-5.2.10-mail-header.patch) = a61d50540f4aae32390118453845c380fe935b6d1e46cef6819c8561946e942f
SIZE (php-5.2.10-mail-header.patch) = 3383
@


1.16
log
@SVN rev 304559 on 2012-09-20 03:02:43Z by bdrewery

- Update php52 backports patch to 20120911
- Add and update relevant vuxml entries

Changes:
  - CVE-2011-1398 - The sapi_header_op function in main/SAPI.c in PHP
    before 5.3.11 does not properly handle %0D sequences
  - CVE-2012-0789 - Memory leak in the timezone functionality in PHP
    before 5.3.9 allows remote attackers to cause a denial of service
    (memory consumption) by triggering many strtotime function calls,
    which are not properly handled by the php_date_parse_tzfile cache.
  - CVE-2012-3365 - The SQLite functionality in PHP before 5.3.15 allows
    remote attackers to bypass the open_basedir protection mechanism via
     unspecified vectors
  - Timezone database updated to version 2012.5 (2012e) (from 2011.13 (2011m))
  - Minor improvements (CVE-2012-2688, compilation issues with old GCC)

PR:		ports/171583
Submitted by:	Svyatoslav Lempert <svyatoslav.lempert@@gmail.com>
Approved by:	Alex Keda <admin@@lissyara.su> (maintainer)
@
text
@d3 2
a4 2
SHA256 (php52-backports-security-20120911.patch) = 4911e2a5abb72d0558b2baf07ff64ca054d71219bde183e41b591894fb7cb1f6
SIZE (php52-backports-security-20120911.patch) = 356599
@


1.15
log
@SVN rev 301364 on 2012-07-23 04:14:11Z by rm

- update backports patch to 20120721
- bump PORTREVISION

PR:		170063
Submitted by:	Svyatoslav Lempert <svyatoslav.lempert at gmail dot com>
Approved by:	Alex Keda <admin at lissyara dot su> (maintainer)
@
text
@d3 2
a4 2
SHA256 (php52-backports-security-20120721.patch) = a8ef22aaf2c7c1ff43d4154709a465f1ae6afaf1aeb1e6a39e274dcf36e33499
SIZE (php52-backports-security-20120721.patch) = 306125
@


1.14
log
@- update backports patch to 20120526
- bump PORTREVISION

PR:		169272
Submitted by:	Svyatoslav Lempert <svyatoslav.lempert at gmail dot com>
Approved by:	Alex Keda <admin at lissyara dot su> (maintainer)
@
text
@d3 2
a4 2
SHA256 (php52-backports-security-20120526.patch) = f5c62f44c2c040b89d14b55770aca7fae86d1f7c0f572f97d89550aec416d60d
SIZE (php52-backports-security-20120526.patch) = 293532
@


1.13
log
@Update distinfo that's was missed for some reason.
@
text
@d3 2
a10 2
SHA256 (php52-backports-security-20120504.patch) = 1ccf9faabccc2f682359076c15162b1acc972e01faeabd9fce6e8d69f5b12c89
SIZE (php52-backports-security-20120504.patch) = 292077
@


1.12
log
@- CVE-2011-4566 fix in 20120117 security patchset

PR:		ports/164286
Submitted by:	Svyatoslav Lempert <svyatoslav.lempert@@gmail.com>
Approved by:	Alex Keda <admin@@lissyara.su> (maintainer)
Security:	d3921810-3c80-11e1-97e8-00215c6a37bb
@
text
@d9 2
a10 2
SHA256 (php52-backports-security-20120117.patch) = 60626ee83d001050ec8b9cc0017cc7859d3173d9c102ee644deea56dd617fb3b
SIZE (php52-backports-security-20120117.patch) = 283977
@


1.11
log
@Update to lastest security patchset 20120103: added max_input_vars directive
(default "1000") to prevent attacks based on hash collisions (from PHP 5.4 RC4)

PR:		163782
Submitted by:	Svyatoslav Lempert <svyatoslav.lempert at gmail dot com>
Approved by:	maintainer
@
text
@d9 2
a10 2
SHA256 (php52-backports-security-20120103.patch) = d2821a7f2bbca3bde5b908652ce6fac4983f9e1373a2f9a0d6cf57d3df4c51c7
SIZE (php52-backports-security-20120103.patch) = 283011
@


1.10
log
@- Update to lastest security patchset: 20111030
- Move removal date to 2012-03-01
- Bump PORTREVISION

PR:		162165
Submitted by:	Svyatoslav Lempert <svyatoslav.lempert@@gmail.com>
Approved by:	maintainer
@
text
@d9 2
a10 2
SHA256 (php52-backports-security-20111030.patch) = 642c124f702310d584940608f1ebcaf5a5c44ca4e17c0adb5aa538d76a86ec1f
SIZE (php52-backports-security-20111030.patch) = 280143
@


1.9
log
@ - security fixes for CVE-2011-2202, CVE-2011-1938, CVE-2011-1148,
   CVE-2011-0708, CVE-2011-1092, CVE-2011-0421 vulnerabilities
 - option BACKPORTS in port config for enable port patches (enabled
   by default)
 - bump PORTREVISION

Submitted by:	Svyatoslav Lempert <svyatoslav.lempert gmail.com>
PR:		ports/160805
Approved by:	maintainer
@
text
@d9 2
a10 12
SHA256 (php-5.2.17-CVE-2011-0421.patch) = e31086a77a5c4ec1cb4e302d3c7107eadbfebc26cf9e1ca5a018407616a95e7a
SIZE (php-5.2.17-CVE-2011-0421.patch) = 383
SHA256 (php-5.2.17-CVE-2011-0708.patch) = e07d9cac035da6a53216600b17a6d0b4d524ccae1c48288dfdfb9ca965a0f70a
SIZE (php-5.2.17-CVE-2011-0708.patch) = 1724
SHA256 (php-5.2.17-CVE-2011-1092.patch) = 4e57151848f006258d9566605929d9121b754c8b5957c24d481d1d6390ecc518
SIZE (php-5.2.17-CVE-2011-1092.patch) = 380
SHA256 (php-5.2.17-CVE-2011-1148.patch) = ca9f77ad7d0350d6155b5aa7f2947b4ea3f20df436a2687f578bfde3f890b43d
SIZE (php-5.2.17-CVE-2011-1148.patch) = 5115
SHA256 (php-5.2.17-CVE-2011-1938.patch) = f6f6e8b0f6ec430c598eed17b5bb2bb4223591406920d578a1c5711c214988e4
SIZE (php-5.2.17-CVE-2011-1938.patch) = 641
SHA256 (php-5.2.17-CVE-2011-2202.patch) = b131428a79548c9164721a03fe33003f7b7631e26d50084308e140ed5dd9d995
SIZE (php-5.2.17-CVE-2011-2202.patch) = 845
@


1.8
log
@Update to 5.2.17

Approved by:	Alex Keda <admin@@lissyara.su> (maintainer, private e-mail)
@
text
@d9 12
@


1.7
log
@- Update suhosin patch
- Portrevision bump not required

PR:		ports/153579
Approved by:	Alex Keda <admin@@lissyara.su> (maintainer)
@
text
@d1 2
a2 2
SHA256 (php-5.2.16.tar.bz2) = 790c4aeb77064a17e3c985fac0fbd7ac3635bc53c7ce7c80bd7c39239e338603
SIZE (php-5.2.16.tar.bz2) = 9090930
@


1.6
log
@- Update to 5.2.16

PR:		ports/153246
Approved by:	Alex Keda <admin@@lissyara.su> (maintainer)
@
text
@d5 2
a6 2
SHA256 (suhosin-patch-5.2.14-0.9.7.patch.gz) = bd03ade44673f7e6fa116d746350f16c60be7170d6c41816a2d51faaeb5a31ae
SIZE (suhosin-patch-5.2.14-0.9.7.patch.gz) = 23057
@


1.5
log
@- Update to 5.2.15

PR:		ports/152981
Approved by:	Alex Keda <admin@@lissyara.su> (maintainer)
@
text
@d1 2
a2 2
SHA256 (php-5.2.15.tar.bz2) = ecae6d397b929181233f7bf0294662c066e2d2b05fb61b69af1e50b9e28b585b
SIZE (php-5.2.15.tar.bz2) = 9089791
@


1.4
log
@Update php52 to 5.2.14

PR:		ports/148951
Approved by:	Alex Keda <admin@@lissyara.su> (maintainer)
@
text
@d1 2
a2 4
MD5 (php-5.2.14.tar.bz2) = bfdfc0e62fe437020cc04078269d1414
SHA256 (php-5.2.14.tar.bz2) = 515b5fd41258798d59b93d86b0d752ab0b03e5738c32af444fba1907763c2bd1
SIZE (php-5.2.14.tar.bz2) = 9055945
MD5 (php-5.2.14-fpm-0.5.14-freebsd.patch.gz) = 4f619a6189a8002813070ba70a93062b
a4 1
MD5 (suhosin-patch-5.2.14-0.9.7.patch.gz) = 84cf0142b8a3637b8784b5ee1e6cbc07
a6 1
MD5 (php-5.2.10-mail-header.patch) = 7f73682e78d32e22989c3fb3678d668b
@


1.3
log
@- Add optional support for PHP-FPM (FastCGI process manager)
- Add sample configuration file and rc script for PHP-FPM

PR:		ports/147688
Approved by:	Alex Keda <admin@@lissyara.su> (maintainer)
@
text
@d1 9
a9 9
MD5 (php-5.2.13.tar.bz2) = eb4d0766dc4fb9667f05a68b6041e7d1
SHA256 (php-5.2.13.tar.bz2) = 2b50a2535e3bb9a98cd4d1633f9452d877276c40b385915261f040d535c7eadb
SIZE (php-5.2.13.tar.bz2) = 9084518
MD5 (php-5.2.13-fpm-0.5.14-freebsd.patch.gz) = 74d8888de5ffcec18ba066d81bd20cea
SHA256 (php-5.2.13-fpm-0.5.14-freebsd.patch.gz) = bef7e8395e8602c3b73acd478d6ac0729ef1113c610db048b29224ab2b5e2655
SIZE (php-5.2.13-fpm-0.5.14-freebsd.patch.gz) = 100550
MD5 (suhosin-patch-5.2.13-0.9.7.patch.gz) = 8188e119ce7abce98b8f004de46fbac5
SHA256 (suhosin-patch-5.2.13-0.9.7.patch.gz) = 787743e5d201ab2ce3fcc3f252eedd7f167470fa1f55af0646d7f03aab89d184
SIZE (suhosin-patch-5.2.13-0.9.7.patch.gz) = 22989
@


1.2
log
@- update to 5.2.13
Sumbitted by:	Alex Keda (maintainer)
@
text
@d4 3
@


1.1
log
@PHP, which stands for "PHP: Hypertext Preprocessor" is a widely-used Open
Source general-purpose scripting language that is especially suited for
Web development and can be embedded into HTML.  Its syntax draws upon C,
Java, and Perl, and is easy to learn.  The main goal of the language is to
allow web developers to write dynamically generated webpages quickly, but
you can do much more with PHP.

WWW: http://www.php.net/
PR:		145772
Submitted by:	Alex Keda
@
text
@d1 6
a6 6
MD5 (php-5.2.12.tar.bz2) = 5b7077e366c7eeab34da31dd860a1923
SHA256 (php-5.2.12.tar.bz2) = e65756a8412726a491ca48da1e0693eaeb3f38f19fb6cbc8f53005cab1f2491a
SIZE (php-5.2.12.tar.bz2) = 9075161
MD5 (suhosin-patch-5.2.11-0.9.7.patch.gz) = 8f9de4d97fae6eba163cf3699509a260
SHA256 (suhosin-patch-5.2.11-0.9.7.patch.gz) = 392f10c9b7d9c47f30e989fb7775cc46d36153b933bf7ac9ccd8826b2954584b
SIZE (suhosin-patch-5.2.11-0.9.7.patch.gz) = 23050
@

