Re: PHP version selection

To: tech-pkg%netbsd.org@localhost
Subject: Re: PHP version selection
From: David Holland <dholland-pkgtech%netbsd.org@localhost>
Date: Mon, 18 Apr 2011 06:41:57 +0000

On Wed, Apr 13, 2011 at 03:57:07PM +0200, Edgar Fu? wrote:
 > I'm confused by the PHP version selection mechanism.
 > I thougt the default for PHP_VERSION_DEFAULT was 5, an that meant "some 5.x".

"5" actually means 5.2, because until 5.3 came along it was "5" vs. "4".
IIRC, anyway.

It would probably be a good thing to fix this, but I suspect it's not
a small task.

 > However, building mail/squirrelmail with no preferece set seems to
 > build lang/php5, which is 5.2.17, which is EoL'ed (and vulnerable).
 > Well, currently, it doesn't really matter because lang/php53 (being
 > 5.3.6) is vulnerable, too.

It's safe to just assume php is always vulnerable. :-/

-- 
David A. Holland
dholland%netbsd.org@localhost

References:
- PHP version selection
  - From: Edgar Fuß

Prev by Date: Re: Denying #!/usr/bin/env as a valid interpreter
Next by Date: Re: Making DESTDIR support mandatory
Previous by Thread: PHP version selection
Next by Thread: misc/tmux build failure
Indexes:

Home | Main Index | Thread Index | Old Index