pkgsrc.se | The NetBSD package collection

./lang/php56, PHP Hypertext Preprocessor version 5.6

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2018Q4, Version: 5.6.40, Package name: php-5.6.40, Maintainer: pkgsrc-users

PHP is an HTML-embedded scripting language. It is modular, with
some object-oriented features. Much of its syntax is borrowed from
C, Java and Perl with a couple of unique PHP-specific features
thrown in. The language is designed to allow web developers to
write dynamically generated pages quickly.

This package provides PHP version 5.6.x.

NOTE: This version is on security support only, with planned End of Live
on December 31 2018. Update to PHP 7.1.x or 7.2.x is recommended.

Required to run:
[textproc/libxml2]

Required to build:
[pkgtools/cwrappers]

Package options: inet6, ssl

Master sites: (Expand)

SHA1: d34b1503521843a63024a5e20c017d630997f4bc
RMD160: c96e45edb86da40384950818eeb0f5d4c281240f
Filesize: 14708.251 KB

Version history: (Expand)

(2019-01-20) Updated to version: php-5.6.40
(2019-01-02) Package added to pkgsrc.se, version php-5.6.39nb1 (created)

CVS history: (Expand)

2019-01-19 22:57:11 by Benny Siegert | Files touched by this commit (2)

Log message:
Pullup ticket #5899 - requested by taca
lang/php56: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.245
- lang/php56/Makefile                                           1.20
- lang/php56/distinfo                                           1.54

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Jan 12 15:01:34 UTC 2019

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php56: Makefile distinfo

   Log message:
   lang/php56: udate to 5.6.40

   10 Jan 2019, PHP 5.6.40

   - GD:
     . Fixed bug #77269 (efree() on uninitialized Heap data in imagescale leads to
       use-after-free). (cmb)
     . Fixed bug #77270 (imagecolormatch Out Of Bounds Write on Heap). (cmb)

   - Mbstring:
     . Fixed bug #77370 (Buffer overflow on mb regex functions - fetch_token). (Stas)
     . Fixed bug #77371 (heap buffer overflow in mb regex functions
       - compile_string_node). (Stas)
     . Fixed bug #77381 (heap buffer overflow in multibyte match_at). (Stas)
     . Fixed bug #77382 (heap buffer overflow due to incorrect length in
       expand_case_fold_string). (Stas)
     . Fixed bug #77385 (buffer overflow in fetch_token). (Stas)
     . Fixed bug #77394 (Buffer overflow in multibyte case folding - unicode). (Stas)
     . Fixed bug #77418 (Heap overflow in utf32be_mbc_to_code). (Stas)

   - Phar:
     . Fixed bug #77247 (heap buffer overflow in phar_detect_phar_fname_ext). (Stas)

   - Xmlrpc:
     . Fixed bug #77242 (heap out of bounds read in xmlrpc_decode()). (cmb)
     . Fixed bug #77380 (Global out of bounds read in xmlrpc base64 code). (Stas)