pkgsrc.se | The NetBSD package collection

./lang/php73, PHP Hypertext Preprocessor version 7.3

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: pkgsrc-2019Q4, Version: 7.3.15, Package name: php-7.3.15, Maintainer: pkgsrc-users

PHP is a widely-used open source general-purpose scripting language
that is especially suited for web development and can be embedded
into HTML. It is modular, and object-oriented. Much of its syntax
is borrowed from C, Java and Perl with a couple of unique PHP-specific
features thrown in. The language is designed to allow web developers
to write dynamically generated pages quickly.

This package provides PHP version 7.3.x.

PHP 7.3.0 comes with numerous improvements and new features such as

* Flexible Heredoc and Nowdoc Syntax
* PCRE2 Migration
* Multiple MBString Improvements
* LDAP Controls Support
* Improved FPM Logging
* Windows File Deletion Improvements
* Several Deprecations

For source downloads of PHP 7.3.0 please visit our downloads page Windows
binaries can be found on the PHP for Windows site. The list of changes is
recorded in the ChangeLog.

Required to run:
[textproc/libxml2] [devel/readline] [devel/pcre2]

Required to build:
[pkgtools/cwrappers]

Package options: inet6, readline, ssl

Master sites: (Expand)

SHA1: 2ac5b8a86cc4a7b96abcb7c85dcde97cbadb1db3
RMD160: ffdda902149402200af4e1d2b7f8427ba49081d8
Filesize: 11827.602 KB

Version history: (Expand)

(2020-03-08) Updated to version: php-7.3.15
(2020-01-29) Updated to version: php-7.3.14
(2020-01-02) Package added to pkgsrc.se, version php-7.3.13 (created)

CVS history: (Expand)

2020-03-08 11:19:04 by Benny Siegert | Files touched by this commit (1) | Package updated

Log message:
Pullup ticket #6141 - requested by taca
lang/php73: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.287
- lang/php73/distinfo                                           1.19

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Feb 20 14:43:18 UTC 2020

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php73: distinfo

   Log message:
   lang/php73: update to 7.3.15

   Update php73 to 7.3.15 (PHP 7.3.15).

   20 Feb 2020, PHP 7.3.15

   - Core:
     . Fixed bug #71876 (Memory corruption htmlspecialchars(): charset `*' not
       supported). (Nikita)
     . Fixed bug ##79146 (cscript can fail to run on some systems). (clarodeus)
     . Fixed bug #78323 (Code 0 is returned on invalid options). (Ivan Mikheykin)
     . Fixed bug #76047 (Use-after-free when accessing already destructed
       backtrace arguments). (Nikita)

   - CURL:
     . Fixed bug #79078 (Hypothetical use-after-free in curl_multi_add_handle()).
       (cmb)

    -Intl:
     . Fixed bug #79212 (NumberFormatter::format() may detect wrong type). (cmb)

   - Libxml:
     . Fixed bug #79191 (Error in SoapClient ctor disables DOMDocument::save()).
       (Nikita, cmb)

   - MBString:
     . Fixed bug #79154 (mb_convert_encoding() can modify $from_encoding). (cmb)

   - MySQLnd:
     . Fixed bug #79084 (mysqlnd may fetch wrong column indexes with MYSQLI_BOTH).
       (cmb)

   - OpenSSL:
     . Fixed bug #79145 (openssl memory leak). (cmb, Nikita)

   - Phar:
     . Fixed bug #79082 (Files added to tar with Phar::buildFromIterator have
       all-access permissions). (CVE-2020-7063) (stas)
     . Fixed bug #79171 (heap-buffer-overflow in phar_extract_file).
       (CVE-	2020-7061) (cmb)
     . Fixed bug #76584 (PharFileInfo::decompress not working). (cmb)

   - Reflection:
     . Fixed bug #79115 (ReflectionClass::isCloneable call reflected class
       __destruct). (Nikita)

   - Session:
     . Fixed bug #79221 (Null Pointer Dereference in PHP Session Upload Progress).
       (CVE-2020-7062) (stas)

   - SPL:
     . Fixed bug #79151 (heap use after free caused by
       spl_dllist_it_helper_move_forward). (Nikita)

   - Standard:
     . Fixed bug #78902 (Memory leak when using stream_filter_append). (liudaixiao)

   - Testing:
     . Fixed bug #78090 (bug45161.phpt takes forever to finish). (cmb)

   - XSL:
     . Fixed bug #70078 (XSL callbacks with nodes as parameter leak memory). (cmb)

2020-01-29 13:48:15 by Benny Siegert | Files touched by this commit (2) | Package updated

Log message:
Pullup ticket #6127 - requested by taca
lang/php73: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.284
- lang/php73/Makefile                                           1.8-1.9
- lang/php73/distinfo                                           1.18

---
   Module Name:	pkgsrc
   Committed By:	jperkin
   Date:		Sat Jan 18 21:51:16 UTC 2020

   Modified Files:
   	pkgsrc/lang/php73: Makefile

   Log message:
   *: Recursive revision bump for openssl 1.1.1.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Jan 25 17:21:14 UTC 2020

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php73: Makefile distinfo

   Log message:
   lang/php73: update to 7.3.14.

   Update php73 to 7.3.14 (PHP 7.3.14).

   23 Jan 2020, PHP 7.3.14

   - Core
     . Fixed bug #78999 (Cycle leak when using function result as temporar=
   y).
       (Dmitry)

   - CURL:
     . Fixed bug #79033 (Curl timeout error with specific url and post). (=
   cmb)

   - Date:
     . Fixed bug #79015 (undefined-behavior in php_date.c). (cmb)

   - DBA:
     . Fixed bug #78808 ([LMDB] MDB_MAP_FULL: Environment mapsize limit re=
   ached).
       (cmb)

   - Fileinfo:
     . Fixed bug #74170 (locale information change after mime_content_type=
   ).
       (Sergei Turchanov)

   - GD:
     . Fixed bug #78923 (Artifacts when convoluting image with transparenc=
   y).
       (wilson chen)
     . Fixed bug #79067 (gdTransformAffineCopy() may use unitialized value=
   s). (cmb)
     . Fixed bug #79068 (gdTransformAffineCopy() changes interpolation met=
   hod).
       (cmb)

   - Libxml:
     . Fixed bug #79029 (Use After Free's in XMLReader / XMLWriter). (Laru=
   ence)

   - Mbstring:
     . Fixed bug #79037 (global buffer-overflow in `mbfl_filt_conv_big5_wc=
   har`).
       (CVE-2020-7060) (Nikita)

   - OPcache:
     . Fixed bug #79040 (Warning Opcode handlers are unusable due to ASLR)=
   . (cmb)

   - Pcntl:
     . Fixed bug #78402 (Converting null to string in error message is bad=
    DX).
       (SAT=D2 Kentar=F2)

   - PDO_PgSQL:
     . Fixed bug #78983 (pdo_pgsql config.w32 cannot find libpq-fe.h). (SA=
   T=D2
       Kentar=F2)
     . Fixed bug #78980 (pgsqlGetNotify() overlooks dead connection). (SAT=
   =D2
       Kentar=F2)
     . Fixed bug #78982 (pdo_pgsql returns dead persistent connection). (S=
   AT=D2
       Kentar=F2)

   - Session:
     . Fixed bug #79091 (heap use-after-free in session_create_id()). (cmb=
   , Nikita)

   - Shmop:
     . Fixed bug #78538 (shmop memory leak). (cmb)

   - Standard:
     . Fixed bug #79099 (OOB read in php_strip_tags_ex). (CVE-2020-7059). =
   (cmb)
     . Fixed bug #54298 (Using empty additional_headers adding extraneous =
   CRLF).
       (cmb)