Update to 1.3.2. According to changelog: * Eliminate path disclosure vulnerabilities by suppressing error messages when eval()'ing; * Eliminate path disclosure vulnerability by catching bogus parameters submitted to XML_RPC_Value::serializeval(). Full changelog at <http://pear.php.net/package/XML_RPC/download/1.3.2>. Fix: Apply the following patch: How-To-Repeat: N/A.
Responsible Changed From-To: freebsd-ports-bugs->thierry Waiting for maintainer approval.
State Changed From-To: open->closed Committed with maintainer's approval.