zend-framework 1.8.4 www =5

A framework for developing PHP web applications
Maintained by: glarkin@FreeBSD.org
Port Added: 07 Nov 2006 16:59:41

---

---

This is a port of the Zend Framework. The Zend Framework aims to
provide an architecture for developing entire applications with no
other library dependencies. This code will always be actively developed,
tested, and supported by Zend and the PHP Collaboration Project. 

WWW: http://framework.zend.com/

CVSWeb : Sources : Main Web Site : Distfiles Availability : PortsMon

---

Required To Run: lang/php5, devel/php5-spl, www/pecl-APC, textproc/php5-ctype, ftp/php5-curl, textproc/php5-dom, graphics/php5-gd, security/php5-hash, converters/php5-iconv, converters/php5-mbstring, net/php5-ldap, security/php5-mcrypt, databases/pecl-memcache, devel/php5-pcre, databases/php5-pdo, www/php5-session, textproc/php5-simplexml, net/php5-soap, devel/php5-spl, databases/php5-sqlite, textproc/php5-xml, archivers/php5-zlib
Required Libraries: devel/gettext

---

To install the port: cd /usr/ports/www/zend-framework/ && make install clean
To add the package: pkg_add -r ZendFramework

---

Configuration Options

===> The following configuration options are available for ZendFramework-1.8.4:
     EDOJO=On (default) "Install embedded Dojo"
     PDOJO=Off (default) "Install Dojo from ports"
     MYSQL=Off (default) "Install MySQL PDO support"
     MYSQLI=Off (default) "Install MySQLi support"
     DBLIB=Off (default) "Install DBLIB PDO support"
     PGSQL=Off (default) "Install PostgreSQL PDO support"
     OCI=Off (default) "Install Oracle OCI 8 PDO support"
     ODBC=Off (default) "Install ODBC PDO support"
     SQLITE=Off (default) "Install SQLite v3 PDO support"
     REQPHP=On (default) "Install required PHP dependencies"
     OPTPHP=Off (default) "Install optional PHP dependencies"
===> Use 'make config' to modify these settings

---

Master Sites:

http://framework.zend.com/releases/ZendFramework-1.8.4/

http://ftp.roedu.net/pub/mirrors/gentoo.org/distfiles/

http://distro.ibiblio.org/pub/linux/distributions/gentoo/distfiles/

http://csociety-ftp.ecn.purdue.edu/pub/gentoo/distfiles/

http://gentoo.mirrors.pair.com/distfiles/

http://gentoo.chem.wisc.edu/gentoo/distfiles/

http://adelie.polymtl.ca/distfiles/

http://mirrors.tds.net/gentoo/distfiles/

ftp://ftp.mirrorservice.org/sites/www.ibiblio.org/gentoo/distfiles/

http://ftp.belnet.be/mirror/rsync.gentoo.org/gentoo/distfiles/

http://ftp.easynet.nl/mirror/gentoo/distfiles/

http://ftp.snt.utwente.nl/pub/os/linux/gentoo/distfiles/

http://trumpetti.atm.tut.fi/gentoo/distfiles/

http://ds.thn.htu.se/linux/gentoo/distfiles/

http://sunsite.cnlab-switch.ch/ftp/mirror/gentoo/distfiles/

http://linux.rz.ruhr-uni-bochum.de/download/gentoo-mirror/distfiles/

http://mirrors.sec.informatik.tu-darmstadt.de/gentoo/distfiles/

http://ftp.uni-erlangen.de/pub/mirrors/gentoo/distfiles/

http://darkstar.ist.utl.pt/gentoo/distfiles/

http://gentoo.inode.at/distfiles/

http://ftp.rhnet.is/pub/gentoo/distfiles/

http://gentoo.mirror.sdv.fr/distfiles/

http://ftp.gentoo.or.kr/distfiles/

http://mirror.gentoo.gr.jp/distfiles/

http://gentoo.gg3.net/distfiles/

http://gentoo.kems.net/distfiles/

ftp://ftp.gtlib.cc.gatech.edu/pub/gentoo/distfiles/

ftp://csociety-ftp.ecn.purdue.edu/pub/gentoo/distfiles/

ftp://mirror.iawnet.sandia.gov/pub/gentoo/distfiles/

ftp://ftp.ussg.iu.edu/pub/linux/gentoo/distfiles/

ftp://ftp.ucsb.edu/pub/mirrors/linux/gentoo/distfiles/

ftp://gentoo.mirrors.pair.com/distfiles/

ftp://mirrors.tds.net/gentoo/distfiles/

ftp://ftp.belnet.be/mirror/rsync.gentoo.org/gentoo/distfiles/

ftp://ftp.easynet.nl/mirror/gentoo/distfiles/

ftp://ftp.snt.utwente.nl/pub/os/linux/gentoo/distfiles/

ftp://trumpetti.atm.tut.fi/gentoo/distfiles/

ftp://sunsite.cnlab-switch.ch/mirror/gentoo/distfiles/

ftp://ftp.join.uni-muenster.de/pub/linux/distributions/gentoo/distfiles/

ftp://ftp6.uni-muenster.de/pub/linux/distributions/gentoo/distfiles/

ftp://ftp.tu-clausthal.de/pub/linux/gentoo/distfiles/

ftp://sunsite.informatik.rwth-aachen.de/pub/Linux/gentoo/distfiles/

ftp://linux.rz.ruhr-uni-bochum.de/gentoo-mirror/distfiles/

ftp://ftp.uni-erlangen.de/pub/mirrors/gentoo/distfiles/

ftp://darkstar.ist.utl.pt/pub/gentoo/distfiles/

ftp://gentoo.inode.at/source/distfiles/

ftp://ftp.rhnet.is/pub/gentoo/distfiles/

ftp://files.gentoo.gr/distfiles/

ftp://ftp.ecc.u-tokyo.ac.jp/GENTOO/distfiles/

ftp://gentoo.kems.net/pub/mirrors/gentoo/distfiles/

ftp://ftp.FreeBSD.org/pub/FreeBSD/ports/distfiles/

• 2009-02-18

  Affects: users of www/zend-framework

  Author: glarkin@FreeBSD.org

  Reason: 
    A local file inclusion (LFI) vulnerability was fixed in Zend Framework
    1.7.5. The LFI was present in the Zend_View::render() method, and
    allowed inclusion of scripts with relative path names, e.g.
    "../../../my/script/dir/myscript.php".
  
    If the script path name is hard-coded into the application and is not
    generated by user input, the vulnerability does not apply.  Because of
    this exception, the Zend Framework team has added a flag to disable
    the LFI protection in the render() method.
  
    Full details of the vulnerability, whether it applies to your
    application and how to disable the LFI protection in the render()
    method can be found here:
  
    http://framework.zend.com/manual/en/zend.view.migration.html
  
  

- Updated to 1.8.4

- Updated to 1.8.3

- Updated to 1.8.2

- Update to 1.8.1
- Remove demos directory installation from embedded Dojo library

- Update to 1.8.0
- Install Zend_Tool wrapper script and include details in pkg-message
- Removed unnecessary OPTION
- Install more documentation

- Update to 1.7.8

- Update to 1.7.6

- Update to 1.7.5
- Added UPDATING entry about incompatibility between 1.7.4 and 1.7.5
- Added vuln.xml entry for local file inclusion vulnerability in <1.7.5
- Added maintainer mode target in ZF Makefile to speed up fixups of
  pkg-plist output from genplist

Security:       cf495fd4-fdcd-11dd-9a86-0050568452ac
Security:       http://framework.zend.com/issues/browse/ZF-5748
Security:      
http://weierophinney.net/matthew/archives/206-Zend-Framework-1.7.5-Released-Important-Note-Regarding-Zend_View.html

- Update to 1.7.4

- Update to 1.7.3
- Add knob to install incubator classes

- Removed php5-pcre dependency since it's part of the PHP base port now
- Added MySQLi dependency configuration option
- Bumped PORTREVISION

PR:             ports/129698
Submitted by:   Till Klampaeckel <till at php dot net>

- Updated to 1.7.0

- Updated to 1.6.2

- Updated to 1.6.1
- Added knobs to install the embedded Dojo toolkit or the Dojo toolkit
  from ports

Approved by:    beech (mentor, implicit)

Changed my MAINTAINER address to
glarkin@FreeBSD.org.

Approved by:    beech (mentor)

Depends on pecl-APC in the standard way.

- Update to 1.5.2

PR:             ports/123843
Submitted by:   Greg Larkin <glarkin@sourcehosting.net> (maintainer)

- Update to 1.5.1

PR:             ports/122862
Submitted by:   Greg Larkin <glarkin@sourcehosting.net> (maintainer)

- Update to 1.5.0
- Remove USE_GETTEXT (not needed, ZF implements its own gettext functions)

PR:             ports/121906
Submitted by:   Greg Larkin <glarkin@sourcehosting.net> (maintainer)

- Update to 1.0.4
- Various cleanups/coding style improvements in Makefile
- Added owner/perms configuration for pkg_add

PR:             ports/121241
Submitted by:   Greg Larkin <glarkin@sourcehosting.net> (maintainer)

- Update to 1.0.3

PR:             118403
Submitted by:   Greg Larkin <glarkin@sourcehosting.net> (maintainer)

- Update to 1.0.2

PR:             ports/116793
Submitted by:   Greg Larkin (maintainer)
Approved by:    miwi (co-mentor)

- Fix correct install path

PR:             116277
Submitted by:   nrgmilk <nrgmilk@gmail.com>
Approved by:    maintainer

- Update to 1.0.1

PR:             ports/115527
Submitted by:   Greg Larkin <glarkin@sourcehosting.net> (maintainer)

- Update to 1.0.0
- Add options for installing PHP dependencies
- Restore pkg-plist directives to create empty directories
- Clean up a bit

PR:             ports/114362
Submitted by:   Greg Larkin <glarkin@sourcehosting.net> (maintainer)

Upgrade to 1.0.0rc3

PR:             ports/114137
Submitted by:   maintainer

- Update to 0.9.1 beta

PR:             110985
Submitted by:   Greg Larkin <glarkin@sourcehosting.net> (maintainer)

Use the new facility of bsd.port.mk to be able to simplify the interaction
of USE_PHP and OPTIONS.

PR:             ports/106557
Submitted by:   ale
Hat:            portmgr

- Update to 0.8.0

PR:             109574
Submitted by:   Greg Larkin <glarkin@sourcehosting.net>

- Fix dependencies that are moved into php5 core distribution

PR:             ports/109064
Submitted by:   Alexander Zhuravlev <zaa at zaa.pp.ru>
Approved by:    Greg Larkin <glarkin at sourcehosting.net> (maintainer)

- Update to 0.7.0

PR:             ports/108125
Submitted by:   Greg Larkin <glarkin@sourcehosting.net> (maintainer)

This is a port of the Zend Framework. The Zend Framework aims to
provide an architecture for developing entire applications with no
other library dependencies. This code will always be actively developed,
tested, and supported by Zend and the PHP Collaboration Project.

WWW: http://framework.zend.com/
- Greg Larkin
glarkin@sourcehosting.net

PR:             ports/105094
Submitted by:   Greg Larkin <glarkin at sourcehosting.net>

6 vulnerabilities affecting 11 ports have been reported in the past 14 days

^* - modified, not new

All vulnerabilities