Subject: Re: pkg/36267 (patch for CVE-2006-5178 bug in php4 package)
To: None <jdolecek@NetBSD.org, gnats-admin@netbsd.org,>
From: =?ISO-8859-15?Q?C=E9dric?= Devillers <cedric.devillers@script.univ-paris7.fr>
List: pkgsrc-bugs
Date: 05/11/2007 08:45:03
The following reply was made to PR pkg/36267; it has been noted by GNATS.

From: =?ISO-8859-15?Q?C=E9dric?= Devillers <cedric.devillers@script.univ-paris7.fr>
To: gnats-bugs@NetBSD.org
Cc: 
Subject: Re: pkg/36267 (patch for CVE-2006-5178 bug in php4 package)
Date: Fri, 11 May 2007 10:33:19 +0200

 Hello,
 
 Apparently, this patch is not sufficient for the resolution of bug
 CVE-2006-5178. And obviously, this bug is also present in version 5.2.1 of
 php.
 
 Cordially,
 
 	Cedric Devillers
 
 On Mon,  7 May 2007 11:20:46 +0000 (UTC)
 obache@NetBSD.org wrote:
 
 > Synopsis: patch for CVE-2006-5178 bug in php4 package
 > 
 > Responsible-Changed-From-To: pkg-manager->jdolecek
 > Responsible-Changed-By: obache@netbsd.org
 > Responsible-Changed-When: Mon, 07 May 2007 11:20:44 +0000
 > Responsible-Changed-Why:
 > Over to maintainer.