head 1.4; access; symbols pkgsrc-2013Q2:1.4.0.36 pkgsrc-2013Q2-base:1.4 pkgsrc-2012Q4:1.4.0.34 pkgsrc-2012Q4-base:1.4 pkgsrc-2011Q4:1.4.0.32 pkgsrc-2011Q4-base:1.4 pkgsrc-2011Q2:1.4.0.30 pkgsrc-2011Q2-base:1.4 pkgsrc-2009Q4:1.4.0.28 pkgsrc-2009Q4-base:1.4 pkgsrc-2008Q4:1.4.0.26 pkgsrc-2008Q4-base:1.4 pkgsrc-2008Q3:1.4.0.24 pkgsrc-2008Q3-base:1.4 cube-native-xorg:1.4.0.22 cube-native-xorg-base:1.4 pkgsrc-2008Q2:1.4.0.20 pkgsrc-2008Q2-base:1.4 pkgsrc-2008Q1:1.4.0.18 pkgsrc-2008Q1-base:1.4 pkgsrc-2007Q4:1.4.0.16 pkgsrc-2007Q4-base:1.4 pkgsrc-2007Q3:1.4.0.14 pkgsrc-2007Q3-base:1.4 pkgsrc-2007Q2:1.4.0.12 pkgsrc-2007Q2-base:1.4 pkgsrc-2007Q1:1.4.0.10 pkgsrc-2007Q1-base:1.4 pkgsrc-2006Q4:1.4.0.8 pkgsrc-2006Q4-base:1.4 pkgsrc-2006Q3:1.4.0.6 pkgsrc-2006Q3-base:1.4 pkgsrc-2006Q2:1.4.0.4 pkgsrc-2006Q2-base:1.4 pkgsrc-2006Q1:1.4.0.2 pkgsrc-2006Q1-base:1.4 pkgsrc-2005Q4:1.3.0.2 pkgsrc-2005Q4-base:1.3 pkgsrc-2005Q3:1.2.0.4 pkgsrc-2005Q3-base:1.2 pkgsrc-2005Q2:1.2.0.2 pkgsrc-2005Q2-base:1.2 pkgsrc-2005Q1:1.1.0.4 pkgsrc-2005Q1-base:1.1 pkgsrc-2004Q4:1.1.0.2 pkgsrc-2004Q4-base:1.1; locks; strict; comment @# @; 1.4 date 2006.03.03.07.11.34; author cube; state dead; branches; next 1.3; 1.3 date 2005.10.07.21.09.28; author jdolecek; state Exp; branches 1.3.2.1; next 1.2; 1.2 date 2005.04.11.20.02.57; author jdolecek; state dead; branches; next 1.1; 1.1 date 2004.12.19.03.50.44; author grant; state Exp; branches 1.1.4.1; next ; 1.3.2.1 date 2006.03.16.12.36.33; author salo; state dead; branches; next ; 1.1.4.1 date 2005.04.22.14.17.33; author salo; state dead; branches; next ; desc @@ 1.4 log @Update to version 4.4.2. Ok'd by jdolecek@@. This is a bug fix release, which addresses some security problems too. The major points that this release corrects are: * Prevent header injection by limiting each header to a single line. * Possible XSS inside error reporting functionality. * Missing safe_mode/open_basedir checks into cURL extension. * Apache 2 regression with sub-request handling on non-Linux systems. * key() and current() regression related to references. This release also fixes about 30 other defects. @ text @$NetBSD: patch-am,v 1.3 2005/10/07 21:09:28 jdolecek Exp $ --- ext/ldap/config.m4.orig 2005-05-08 16:06:24.000000000 +0000 +++ ext/ldap/config.m4 @@@@ -114,6 +114,7 @@@@ if test "$PHP_LDAP" != "no"; then _SAVE_CPPFLAGS=$CPPFLAGS _SAVE_LDFLAGS=$LDFLAGS CPPFLAGS="$CPPFLAGS -I$LDAP_INCDIR" + LDFLAGS="$LDFLAGS $LDAP_SHARED_LIBADD" AC_CACHE_CHECK([for 3 arg ldap_set_rebind_proc], ac_cv_3arg_setrebindproc, [AC_TRY_COMPILE([#include ], [ldap_set_rebind_proc(0,0,0)], ac_cv_3arg_setrebindproc=yes, ac_cv_3arg_setrebindproc=no)]) @ 1.3 log @Add a fix to LDAP extension build to properly detect LDAP capabilities, such as TLS support. Patch provided by Stoned Elipot in private e-mail. @ text @d1 1 a1 1 $NetBSD$ @ 1.3.2.1 log @Pullup ticket 1223 - requested by Quentin Garnier security update for php4 Patch provided by the submitter. Module Name: pkgsrc Committed By: cube Date: Fri Mar 3 07:11:34 UTC 2006 Modified Files: pkgsrc/www/php4: Makefile Makefile.common PLIST distinfo Added Files: pkgsrc/www/php4/patches: patch-ao patch-ap Removed Files: pkgsrc/www/php4/patches: patch-ab patch-am patch-an Log Message: Update to version 4.4.2. Ok'd by jdolecek@@. This is a bug fix release, which addresses some security problems too. The major points that this release corrects are: * Prevent header injection by limiting each header to a single line. * Possible XSS inside error reporting functionality. * Missing safe_mode/open_basedir checks into cURL extension. * Apache 2 regression with sub-request handling on non-Linux systems. * key() and current() regression related to references. This release also fixes about 30 other defects. --- Module Name: pkgsrc Committed By: cube Date: Mon Mar 6 15:57:58 UTC 2006 Modified Files: pkgsrc/www/php4: distinfo pkgsrc/www/php4/patches: patch-ao Log Message: Increase memory limit when installing PEAR packages. This allows the installation to go through on NetBSD/sparc64 (well, at least mine). Failure reported by Joel Carnat. @ text @d1 1 a1 1 $NetBSD: patch-am,v 1.3 2005/10/07 21:09:28 jdolecek Exp $ @ 1.2 log @Update php4 to 4.3.11. This is a maintenance release that in addition to over 70 non-critical bug fixes addresses several security issues inside the exif and fbsql extensions as well as the unserialize(), swf_definepoly() and getimagesize() functions. All Users of PHP are strongly encouraged to upgrade to this release. Bugfix release * Crash in bzopen() if supplied path to non-existent file. * DOM crashing when attribute appended to Document. * unserialize() float problem on non-English locales. * Crash in msg_send() when non-string is stored without being serialized. * Possible infinite loop in imap_mail_compose(). * Fixed crash in chunk_split(), when chunklen > strlen. * session_set_save_handler crashes PHP when supplied non-existent object ref. * Memory leak in zend_language_scanner.c. * Compile failures of zend_strtod.c. * Fixed crash in overloaded objects & overload() function. * cURL functions bypass open_basedir. PHP4 also doesn't bundle PEAR Net_Socket and Net_SMTP anymore now. @ text @d1 1 a1 1 $NetBSD: patch-am,v 1.1 2004/12/19 03:50:44 grant Exp $ d3 10 a12 14 --- Zend/zend_strtod.c.orig 2004-12-14 19:35:26.000000000 +1100 +++ Zend/zend_strtod.c @@@@ -127,7 +127,11 @@@@ static char *rcsid = "$OpenBSD: strtod.c #define IEEE_LITTLE_ENDIAN #endif +/* the __ppc__ test alone is wrong on Darwin, which doesn't have uintXX_t */ +/* #if defined(__sparc__) || defined(__ppc__) +*/ +#if defined(__sparc__) || (defined(__ppc__) && !defined(__APPLE__)) #define u_int32_t uint32_t #endif @ 1.1 log @fix an incorrect test for __ppc__, unbreaking this package on Darwin. @ text @d1 1 a1 1 $NetBSD$ @ 1.1.4.1 log @Pullup ticket 457 - requested by Takahiro Kambe security update for php4 Revisions pulled up: - pkgsrc/graphics/php-gd/Makefile 1.7 - pkgsrc/mail/php-imap/Makefile 1.5-1.7 - pkgsrc/net/pear-Net_SMTP/Makefile 1.3 - pkgsrc/net/pear-Net_SMTP/buildlink3.mk removed - pkgsrc/net/pear-Net_SMTP/builtin.mk removed - pkgsrc/net/pear-Net_SMTP/distinfo 1.2 - pkgsrc/net/pear-Net_Socket/Makefile 1.4 - pkgsrc/net/pear-Net_Socket/buildlink3.mk removed - pkgsrc/net/pear-Net_Socket/builtin.mk removed - pkgsrc/www/php-curl/Makefile 1.5 - pkgsrc/www/php4/Makefile 1.42 - pkgsrc/www/php4/Makefile.common 1.47 - pkgsrc/www/php4/PLIST 1.12 - pkgsrc/www/php4/buildlink3.mk 1.6 - pkgsrc/www/php4/distinfo 1.39-1.40 - pkgsrc/www/php4/patches/patch-ab removed - pkgsrc/www/php4/patches/patch-aj 1.9 - pkgsrc/www/php4/patches/patch-ak 1.4 - pkgsrc/www/php4/patches/patch-am removed - pkgsrc/www/pear-HTML_Common/Makefile 1.9 - pkgsrc/www/pear-HTTP_Request/Makefile 1.4 Module Name: pkgsrc Committed By: jdolecek Date: Mon Apr 11 20:02:57 UTC 2005 Modified Files: pkgsrc/doc: CHANGES pkgsrc/graphics/php-gd: Makefile pkgsrc/www/php-curl: Makefile pkgsrc/www/php4: Makefile Makefile.common PLIST buildlink3.mk distinfo pkgsrc/www/php4/patches: patch-aj Removed Files: pkgsrc/www/php4/patches: patch-am Log Message: Update php4 to 4.3.11. This is a maintenance release that in addition to over 70 non-critical bug fixes addresses several security issues inside the exif and fbsql extensions as well as the unserialize(), swf_definepoly() and getimagesize() functions. All Users of PHP are strongly encouraged to upgrade to this release. Bugfix release * Crash in bzopen() if supplied path to non-existent file. * DOM crashing when attribute appended to Document. * unserialize() float problem on non-English locales. * Crash in msg_send() when non-string is stored without being serialized. * Possible infinite loop in imap_mail_compose(). * Fixed crash in chunk_split(), when chunklen > strlen. * session_set_save_handler crashes PHP when supplied non-existent object ref. * Memory leak in zend_language_scanner.c. * Compile failures of zend_strtod.c. * Fixed crash in overloaded objects & overload() function. * cURL functions bypass open_basedir. PHP4 also doesn't bundle PEAR Net_Socket and Net_SMTP anymore now. --- Module Name: pkgsrc Committed By: jdolecek Date: Mon Apr 11 20:03:58 UTC 2005 Removed Files: pkgsrc/www/php4/patches: patch-ab Log Message: doesn't appear to be needed anymore --- Module Name: pkgsrc Committed By: jdolecek Date: Mon Apr 11 20:06:36 UTC 2005 Modified Files: pkgsrc/net/pear-Net_SMTP: distinfo Log Message: regen with RMD160 hash --- Module Name: pkgsrc Committed By: jdolecek Date: Mon Apr 11 20:08:43 UTC 2005 Modified Files: pkgsrc/net/pear-Net_SMTP: Makefile pkgsrc/net/pear-Net_Socket: Makefile pkgsrc/www/pear-HTML_Common: Makefile pkgsrc/www/pear-HTTP_Request: Makefile Removed Files: pkgsrc/net/pear-Net_SMTP: buildlink3.mk builtin.mk pkgsrc/net/pear-Net_Socket: buildlink3.mk builtin.mk Log Message: Net_Socket and Net_SMTP were unbundled from PHP4 in 4.3.11, g/c the related conditionals and buildlink logic, and convert to standard DEPENDS --- Module Name: pkgsrc Committed By: kim Date: Fri Apr 15 22:38:16 UTC 2005 Modified Files: pkgsrc/mail/php-imap: Makefile Log Message: I'm not sure why I need to set PHP_OPENSSL for OpenSSL to be found, but now the package builds again. --- Module Name: pkgsrc Committed By: jdolecek Date: Sat Apr 16 07:37:31 UTC 2005 Modified Files: pkgsrc/mail/php-imap: Makefile Log Message: g/c LIBS setting --- Module Name: pkgsrc Committed By: kim Date: Wed Apr 20 12:03:25 UTC 2005 Modified Files: pkgsrc/mail/php-imap: Makefile Log Message: Explain setting PHP_OPENSSL (from Stoned Elipot) --- Module Name: pkgsrc Committed By: salo Date: Thu Apr 21 23:47:47 UTC 2005 Modified Files: pkgsrc/www/php4: distinfo pkgsrc/www/php4/patches: patch-ak Log Message: Apply cleanly after update to 4.3.11 @ text @d1 1 a1 1 $NetBSD: patch-am,v 1.1 2004/12/19 03:50:44 grant Exp $ @