| 1 |
Hi, |
| 2 |
|
| 3 |
At the moment, we have a quite problematic situation with the php ebuilds. Due |
| 4 |
to various people doing research on php-issues, there has been a vast number |
| 5 |
of security issues in the last months (mopb and others). |
| 6 |
|
| 7 |
We still have 5.2.2 in the tree. A user, christian hoffmann, is maintaining |
| 8 |
some ebuilds in the php-experimental-overlay. They've, from what I know, |
| 9 |
fixed nearly all issues, beside one openbasedir-bypass, where we fail to find |
| 10 |
a patch (CVE-2007-3378). |
| 11 |
|
| 12 |
Now, chtekk has been very rarely available lately. chtekk, could you raise |
| 13 |
your voice and tell us if you'll be back soon or if we could merge stuff |
| 14 |
without you in the meantime. |
| 15 |
Christian is doing a quite well job in the overlay. I'd prefer if we could |
| 16 |
merge his work into the main tree. I could do that, although I'd prefer to |
| 17 |
get some review from other devs. php is a hell to maintain I think. |
| 18 |
|
| 19 |
-- |
| 20 |
Hanno Böck Blog: http://www.hboeck.de/ |
| 21 |
GPG: 3DBD3B20 Jabber: jabber@××××××.de |
Archives