cvs commit: ports/security/vuxml vuln.xml
Simon L. Nielsen
simon at FreeBSD.org
Sun Jun 22 17:43:23 UTC 2008
On 2008.06.22 09:17:51 +0000, Stanislav Sedov wrote:
> stas 2008-06-22 09:17:51 UTC
>
> FreeBSD ports repository
>
> Modified files:
> security/vuxml vuln.xml
> Log:
> - Document php5-posix directory traversal vulnerability.
This is not really a real/serious vulnerability as "safe_mode" isn't
safe at all.
At least a note should be added that safe_mode isn't considered safe.
See also ports/lang/php5/files/patch-php.ini-recommended .
I think there is an comment from an earlier entry which can be
copy/pasted.
All that said, thanks for working on VuXML and helping documenting
issues!
--
Simon L. Nielsen
FreeBSD Security Team
More information about the cvs-all
mailing list