pkgsrc.se | The NetBSD package collection

./security/php-suhosin, Advanced protection system for PHP installations

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 0.9.38nb1, Package name: php56-suhosin-0.9.38nb1, Maintainer: cg

Suhosin is an advanced protection system for PHP installations. It was
designed to protect servers and users from known and unknown flaws in
PHP applications and the PHP core. Suhosin comes in two independent
parts, that can be used separately or in combination. The first part is
a small patch against the PHP core, that implements a few low-level
protections against bufferoverflows or format string vulnerabilities and
the second part is a powerful PHP extension that implements all the other
protections.

Unlike our Hardening-Patch Suhosin is binary compatible to normal PHP
installation, which means it is compatible to 3rd party binary extension
like ZendOptimizer.

Required to run:
[lang/php56]

Required to build:
[pkgtools/cwrappers]

Master sites:

https://download.suhosin.org/

Version history: (Expand)

(2025-02-08) Updated to version: php56-suhosin-0.9.38nb1
(2016-09-14) Updated to version: php56-suhosin-0.9.38
(2015-12-19) Updated to version: php55-suhosin-0.9.38
(2015-08-30) Updated to version: php54-suhosin-0.9.38
(2015-03-15) Updated to version: php54-suhosin-0.9.37.1
(2012-06-17) Updated to version: php53-suhosin-5.3.9.0.9.33

CVS history: (Expand)

2025-02-08 04:51:49 by Takahiro Kambe | Files touched by this commit (9)

Log message:
multiple PHP support

* Use PHP_BASE_VERS in DEPENDS if required.
* Use REPLACE_PHP.

Bump PKGREVISION.

2021-10-26 13:18:07 by Nia Alarie | Files touched by this commit (605)

Log message:
security: Replace RMD160 checksums with BLAKE2s checksums

All checksums have been double-checked against existing RMD160 and
SHA512 hashes

Unfetchable distfiles (fetched conditionally?):
./security/cyrus-sasl/distinfo \ 
cyrus-sasl-dedad73e5e7a75d01a5f3d5a6702ab8ccd2ff40d.patch.v2

2021-10-07 16:54:50 by Nia Alarie | Files touched by this commit (606)

Log message:
security: Remove SHA1 hashes for distfiles

2020-01-26 18:32:28 by Roland Illig | Files touched by this commit (981)

Log message:
all: migrate homepages from http to https

pkglint -r --network --only "migrate"

As a side-effect of migrating the homepages, pkglint also fixed a few
indentations in unrelated lines. These and the new homepages have been
checked manually.

2016-09-11 19:03:29 by Takahiro Kambe | Files touched by this commit (53)

Log message:
Drop "55" (php55) from PHP_VERSIONS_ACCEPTED.

2015-12-19 15:27:15 by Takahiro Kambe | Files touched by this commit (26)

Log message:
Restrict PHP_VERSIONS_ACCEPTED to 55 and 56.

2015-11-04 02:18:12 by Alistair G. Crooks | Files touched by this commit (434)

Log message:
Add SHA512 digests for distfiles for security category

Problems found locating distfiles:
	Package f-prot-antivirus6-fs-bin: missing distfile fp-NetBSD.x86.32-fs-6.2.3.tar.gz
	Package f-prot-antivirus6-ws-bin: missing distfile fp-NetBSD.x86.32-ws-6.2.3.tar.gz
	Package libidea: missing distfile libidea-0.8.2b.tar.gz
	Package openssh: missing distfile openssh-7.1p1-hpn-20150822.diff.bz2
	Package uvscan: missing distfile vlp4510e.tar.Z

Otherwise, existing SHA1 digests verified and found to be the same on
the machine holding the existing distfiles (morden).  All existing
SHA1 digests retained for now as an audit trail.

2015-08-30 16:54:50 by Takahiro Kambe | Files touched by this commit (2)

Log message:
Update php-suhosin to 0.9.38.

2015-05-21 - 0.9.38
    - removed code compatibility for PHP <5.4 (lots of code + ifdefs)
    - allow https location for suhosin.filter.action
    - fixed newline detection for suhosin.mail.protect
    - Added suhosin.upload.max_newlines to protect againt DOS attack via many
      MIME headers in RFC1867 uploads (CVE-2015-4024)
    - mail related test cases now work on linux