pkgsrc-Changes-HG archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
[pkgsrc/trunk]: pkgsrc/lang/php53 Additional fix for CVS-2012-1823; it wasn't...
details: https://anonhg.NetBSD.org/pkgsrc/rev/8fc3deb5234e
branches: trunk
changeset: 603445:8fc3deb5234e
user: taca <taca%pkgsrc.org@localhost>
date: Sun May 06 14:27:46 2012 +0000
description:
Additional fix for CVS-2012-1823; it wasn't fixed by PHP 5.3.12.
Bump PKGREVISION.
diffstat:
lang/php53/Makefile | 3 ++-
lang/php53/distinfo | 3 ++-
lang/php53/patches/patch-sapi_cgi_cgi__main.c | 22 ++++++++++++++++++++++
3 files changed, 26 insertions(+), 2 deletions(-)
diffs (55 lines):
diff -r 8f94e43a91be -r 8fc3deb5234e lang/php53/Makefile
--- a/lang/php53/Makefile Sun May 06 13:53:44 2012 +0000
+++ b/lang/php53/Makefile Sun May 06 14:27:46 2012 +0000
@@ -1,9 +1,10 @@
-# $NetBSD: Makefile,v 1.25 2012/04/26 14:26:32 taca Exp $
+# $NetBSD: Makefile,v 1.26 2012/05/06 14:27:46 taca Exp $
#
# We can't omit PKGNAME here to handle PKG_OPTIONS.
#
PKGNAME= php-${PHP_BASE_VERS}
+PKGREVISION= 1
CATEGORIES= lang
HOMEPAGE= http://www.php.net/
diff -r 8f94e43a91be -r 8fc3deb5234e lang/php53/distinfo
--- a/lang/php53/distinfo Sun May 06 13:53:44 2012 +0000
+++ b/lang/php53/distinfo Sun May 06 14:27:46 2012 +0000
@@ -1,4 +1,4 @@
-$NetBSD: distinfo,v 1.38 2012/05/04 01:48:41 taca Exp $
+$NetBSD: distinfo,v 1.39 2012/05/06 14:27:46 taca Exp $
SHA1 (php-5.3.12/php-5.3.12.tar.bz2) = 1aef7c01207637671299e3eb2d74eb81dd6a8f83
RMD160 (php-5.3.12/php-5.3.12.tar.bz2) = 5d91c2d16b54632aa123677f63776b312872997c
@@ -19,3 +19,4 @@
SHA1 (patch-al) = fbbee5502e0cd1c47c6e7c15e0d54746414ec32e
SHA1 (patch-main_streams_cast.c) = c169ccb73dc660e40eff9f9e168374f35eedadad
SHA1 (patch-php__mssql.c) = b46c688ff2d8da33ca2f9beb0eb9182b6edf7e23
+SHA1 (patch-sapi_cgi_cgi__main.c) = f96320decb6bb0140d383c1d95486de68a1b4c1c
diff -r 8f94e43a91be -r 8fc3deb5234e lang/php53/patches/patch-sapi_cgi_cgi__main.c
--- /dev/null Thu Jan 01 00:00:00 1970 +0000
+++ b/lang/php53/patches/patch-sapi_cgi_cgi__main.c Sun May 06 14:27:46 2012 +0000
@@ -0,0 +1,22 @@
+$NetBSD$
+
+Additional fix for CVS-2012-1823.
+
+--- sapi/cgi/cgi_main.c.orig 2012-05-03 13:54:59.000000000 +0000
++++ sapi/cgi/cgi_main.c
+@@ -1557,13 +1557,14 @@ int main(int argc, char *argv[])
+ getenv("REQUEST_METHOD")
+ ) {
+ cgi = 1;
++ skip_getopt = 1;
+ }
+ }
+
+ if(query_string = getenv("QUERY_STRING")) {
+ decoded_query_string = strdup(query_string);
+ php_url_decode(decoded_query_string, strlen(decoded_query_string));
+- if(*decoded_query_string == '-' && strchr(decoded_query_string, '=') == NULL) {
++ if(*decoded_query_string == '-' && strchr(query_string, '=') == NULL) {
+ skip_getopt = 1;
+ }
+ free(decoded_query_string);
Home |
Main Index |
Thread Index |
Old Index