ab2c273478
14 Aug 2014, PHP 5.3.29 - Core: . Fixed bug #66127 (Segmentation fault with ArrayObject unset). (Stas) . Fixed bug #67247 (spl_fixedarray_resize integer overflow). (Stas) . Fixed bug #67249 (printf out-of-bounds read). (Stas) . Fixed bug #67250 (iptcparse out-of-bounds read). (Stas) . Fixed bug #67252 (convert_uudecode out-of-bounds read). (Stas) . Fixed bug #67359 (Segfault in recursiveDirectoryIterator). (Laruence) . Fixed bug #67390 (insecure temporary file use in the configure script). (Remi) (CVE-2014-3981) . Fixed bug #67399 (putenv with empty variable may lead to crash). (Stas) . Fixed bug #67492 (unserialize() SPL ArrayObject / SPLObjectStorage Type Confusion) (CVE-2014-3515). (Stefan Esser) . Fixed bug #67498 (phpinfo() Type Confusion Information Leak Vulnerability). (Stefan Esser) - COM: . Fixed missing type checks in com_event_sink (Yussuf Khalil, Stas). - Date: . Fixed bug #66060 (Heap buffer over-read in DateInterval). (CVE-2013-6712) (Remi) . Fixed bug #67251 (date_parse_from_format out-of-bounds read). (Stas) . Fixed bug #67253 (timelib_meridian_with_check out-of-bounds read). (Stas) - Exif: . Fixed bug #65873 (Integer overflow in exif_read_data()). (Stas) - Fileinfo: . Fixed bug #66307 (Fileinfo crashes with powerpoint files). (Anatol) . Fixed bug #67326 (fileinfo: cdf_read_short_sector insufficient boundary check). (CVE-2014-0207) . Fixed bug #67327 (fileinfo: CDF infinite loop in nelements DoS). (CVE-2014-0238) . Fixed bug #67328 (fileinfo: fileinfo: numerous file_printf calls resulting in performance degradation). (CVE-2014-0237) . Fixed bug #67410 (fileinfo: mconvert incorrect handling of truncated pascal string size). (Francisco Alonso, Jan Kaluza, Remi) . Fixed bug #67411 (fileinfo: cdf_check_stream_offset insufficient boundary check). (Francisco Alonso, Jan Kaluza, Remi) . Fixed bug #67412 (fileinfo: cdf_count_chain insufficient boundary check). (Francisco Alonso, Jan Kaluza, Remi) . Fixed bug #67413 (fileinfo: cdf_read_property_info insufficient boundary check). (Francisco Alonso, Jan Kaluza, Remi) - Intl: . Fixed bug #67349 (Locale::parseLocale Double Free). (Stas) . Fixed bug #67397 (Buffer overflow in locale_get_display_name and uloc_getDisplayName (libicu 4.8.1)). (Stas) - Network: . Fixed bug #67432 (Fix potential segfault in dns_check_record()). (CVE-2014-4049). (Sara) - OpenSSL: . Fixed missing type checks in OpenSSL options (Yussuf Khalil, Stas). - Session: . Fixed missing type checks in php_session_create_id (Yussuf Khalil, Stas).
102 lines
2.9 KiB
PHP
102 lines
2.9 KiB
PHP
# $NetBSD: Makefile.php,v 1.41 2014/08/15 16:09:16 taca Exp $
|
|
# used by lang/php53/Makefile
|
|
# used by www/ap-php/Makefile
|
|
# used by www/php-fpm/Makefile
|
|
|
|
.include "../../lang/php53/Makefile.common"
|
|
|
|
DISTINFO_FILE= ${.CURDIR}/../../lang/php53/distinfo
|
|
PATCHDIR= ${.CURDIR}/../../lang/php53/patches
|
|
|
|
USE_LIBTOOL= YES
|
|
USE_LANGUAGES= c c++
|
|
GNU_CONFIGURE= YES
|
|
BUILD_DEFS+= VARBASE
|
|
PLIST_VARS+= suhosin
|
|
|
|
CONFIGURE_ENV+= EXTENSION_DIR="${PREFIX}/${PHP_EXTENSION_DIR}"
|
|
|
|
.include "../../mk/bsd.prefs.mk"
|
|
|
|
CONFIGURE_ARGS+= --with-config-file-path=${PKG_SYSCONFDIR}
|
|
CONFIGURE_ARGS+= --with-config-file-scan-dir=${PKG_SYSCONFDIR}/php.d
|
|
CONFIGURE_ARGS+= --sysconfdir=${PKG_SYSCONFDIR}
|
|
CONFIGURE_ARGS+= --localstatedir=${VARBASE}
|
|
|
|
CONFIGURE_ARGS+= --with-regex=system
|
|
|
|
CONFIGURE_ARGS+= --without-mysql
|
|
CONFIGURE_ARGS+= --without-sqlite
|
|
#CONFIGURE_ARGS+= --without-sqlite3
|
|
CONFIGURE_ARGS+= --without-iconv
|
|
CONFIGURE_ARGS+= --without-pear
|
|
#CONFIGURE_ARGS+= --without-intl
|
|
|
|
CONFIGURE_ARGS+= --disable-posix
|
|
CONFIGURE_ARGS+= --disable-dom
|
|
CONFIGURE_ARGS+= --disable-pdo
|
|
CONFIGURE_ARGS+= --disable-json
|
|
|
|
CONFIGURE_ARGS+= --enable-cgi
|
|
CONFIGURE_ARGS+= --enable-mysqlnd
|
|
CONFIGURE_ARGS+= --enable-xml
|
|
CONFIGURE_ARGS+= --with-libxml-dir=${PREFIX}
|
|
|
|
.include "../../textproc/libxml2/buildlink3.mk"
|
|
|
|
# Note: This expression is the same as ${PKGBASE}, but the latter is
|
|
# not defined yet, so we cannot use it here.
|
|
PKG_OPTIONS_VAR= PKG_OPTIONS.${PHP_PKG_PREFIX}
|
|
PKG_SUPPORTED_OPTIONS+= inet6 ssl maintainer-zts suhosin readline
|
|
PKG_SUGGESTED_OPTIONS+= inet6 ssl
|
|
|
|
.include "../../mk/bsd.options.mk"
|
|
|
|
.if !empty(PKG_OPTIONS:Msuhosin)
|
|
SUHOSIN_PHPVER= 5.3.29
|
|
. if ${SUHOSIN_PHPVER} != ${PHP_BASE_VERS}
|
|
PKG_FAIL_REASON+= "The suhosin patch is currently not available for"
|
|
PKG_FAIL_REASON+= "this version of PHP. You may have to wait until"
|
|
PKG_FAIL_REASON+= "an updated patch is released or temporarily"
|
|
PKG_FAIL_REASON+= "build this package without the suhosin option."
|
|
. else
|
|
PATCH_SITES= ${MASTER_SITE_LOCAL}
|
|
PATCHFILES+= suhosin-patch-${SUHOSIN_PHPVER}-0.9.10.patch.bz2
|
|
PLIST.suhosin= yes
|
|
MESSAGE_SRC= ${.CURDIR}/../../lang/php53/MESSAGE
|
|
MESSAGE_SRC+= ${.CURDIR}/../../lang/php53/MESSAGE.suhosin
|
|
|
|
. endif
|
|
.endif
|
|
|
|
.if !empty(PKG_OPTIONS:Minet6)
|
|
CONFIGURE_ARGS+= --enable-ipv6
|
|
.else
|
|
CONFIGURE_ARGS+= --disable-ipv6
|
|
.endif
|
|
|
|
.if !empty(PKG_OPTIONS:Mssl)
|
|
. include "../../security/openssl/buildlink3.mk"
|
|
. if ${OPSYS} == "SunOS"
|
|
CONFIGURE_ARGS+= --with-openssl=yes
|
|
LIBS.SunOS+= -lcrypto
|
|
. else
|
|
CONFIGURE_ARGS+= --with-openssl=${BUILDLINK_PREFIX.openssl}
|
|
. endif
|
|
.else
|
|
CONFIGURE_ARGS+= --without-openssl
|
|
.endif
|
|
|
|
.if !empty(PKG_OPTIONS:Mmaintainer-zts)
|
|
CONFIGURE_ARGS+= --enable-maintainer-zts
|
|
.endif
|
|
|
|
.if !empty(PKG_OPTIONS:Mreadline)
|
|
.include "../../devel/readline/buildlink3.mk"
|
|
CONFIGURE_ARGS+= --with-readline=${BUILDLINK_PREFIX.readline}
|
|
.else
|
|
CONFIGURE_ARGS+= --without-readline
|
|
.endif
|
|
|
|
DL_AUTO_VARS= yes
|
|
.include "../../mk/dlopen.buildlink3.mk"
|