Next | Query returned 3 messages, browsing 1 to 10 | previous

History of commit frequency

CVS Commit History:


   2014-12-21 17:19:40 by Matthias Scheler | Files touched by this commit (2) | Package updated
Log message:
Pullup ticket #4578 - requested by taca
lang/php55: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.80 via patch
- lang/php55/distinfo                                           1.32
- lang/php55/patches/patch-ext_phar_Makefile.frag               1.2

---
   Module Name:    pkgsrc
   Committed By:   taca
   Date:           Fri Dec 19 16:10:39 UTC 2014

   Modified Files:
           pkgsrc/lang/php: phpversion.mk
           pkgsrc/lang/php55: distinfo
           pkgsrc/lang/php55/patches: patch-ext_phar_Makefile.frag

   Log message:
   Update php55 to 5.5.20, including security fix.

   17 Dec 2014, PHP 5.5.20

   - Core:
     . Fixed bug #68091 (Some Zend headers lack appropriate extern "C" \ 
blocks).
       (Adam)
     . Fixed bug #68185 ("Inconsistent insteadof definition."- incorrectly
       triggered). (Julien)
     . Fixed bug #68370 ("unset($this)" can make the program crash). \ 
(Laruence)
     . Fixed bug #68545 (NULL pointer dereference in unserialize.c). (Anatol)
     . Fixed bug #68594 (Use after free vulnerability in unserialize()).
       (CVE-2014-8142) (Stefan Esser)

   - Date:
     . Fixed day_of_week function as it could sometimes return negative values
       internally. (Derick)

   - FPM:
     . Fixed bug #68381 (fpm_unix_init_main ignores log_level).
       (David Zuelke, Remi)
     . Fixed bug #68420 (listen=9000 listens to ipv6 localhost instead of all
       addresses). (Remi)
     . Fixed bug #68421 (access.format='%R' doesn't log ipv6 address). (Remi)
     . Fixed bug #68423 (PHP-FPM will no longer load all pools). (Remi)
     . Fixed bug #68428 (listen.allowed_clients is IPv4 only). (Remi)
     . Fixed bug #68452 (php-fpm man page is oudated). (Remi)
     . Fixed request #68458 (Change pm.start_servers default warning to
       notice). (David Zuelke, Remi)
     . Fixed bug #68463 (listen.allowed_clients can silently result
       in no allowed access). (Remi)
     . Fixed request #68391 (php-fpm conf files loading order).
       (Florian Margaine, Remi)
     . Fixed bug #68478 (access.log don't use prefix). (Remi)

   - Mcrypt:
     . Fixed possible read after end of buffer and use after free. (Dmitry)

   - PDO_pgsql:
     . Fixed bug #66584 (Segmentation fault on statement deallocation) (Matteo)
     . Fixed bug #67462 (PDO_PGSQL::beginTransaction() wrongly throws exception
     when not in transaction) (Matteo)
     . Fixed bug #68351 (PDO::PARAM_BOOL and ATTR_EMULATE_PREPARES misbehaving)
     (Matteo)

   - zlib:
     . Fixed bug #53829 (Compiling PHP with large file support will replace
       function gzopen by gzopen64) (Sascha Kettler, Matteo)
   2014-11-19 12:19:34 by Matthias Scheler | Files touched by this commit (2) | Package updated
Log message:
Pullup ticket #4551 - requested by taca
lang/php55: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.77
- lang/php55/PLIST                                              1.4
- lang/php55/distinfo                                           1.31

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Nov 15 14:53:12 UTC 2014

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php55: PLIST distinfo

   Log message:
   Update php55 to 5.5.19.

   13 Nov 2014, PHP 5.5.19

   - Core:
     . Fixed bug #68095 (AddressSanitizer reports a heap buffer overflow in
       php_getopt()). (Stas)
     . Fixed bug #68118 ($a->foo .= 'test'; can leave $a->foo undefined). \ 
(Nikita)
     . Fixed bug #68129 (parse_url() - incomplete support for empty usernames
       and passwords) (Tjerk)
       Fixed bug #68365 (zend_mm_heap corrupted after memory overflow in
       zend_hash_copy). (Dmitry)

   - Fileinfo:
     . Fixed bug #66242 (libmagic: don't assume char is signed). (ArdB)
     . Fixed bug #68283 (fileinfo: out-of-bounds read in elf note headers).
       (CVE-2014-3710) (Remi)

   - FPM:
     . Implemented FR #55508 (listen and listen.allowed_clients should take IPv6
       addresses). (Robin Gloster)

   - GD:
     . Fixed bug #65171 (imagescale() fails without height param). (Remi)

   - GMP:
     . Fixed bug #63595 (GMP memory management conflicts with other libraries
       using GMP). (Remi)

   - Mysqli:
     . Fixed bug #68114 (linker error on some OS X machines with fixed width
       decimal support) (Keyur Govande)

   - ODBC:
     . Fixed bug #68087 (ODBC not correctly reading DATE column when preceded by
       a VARCHAR column) (Keyur Govande)

   - SPL:
     . Fixed bug #68128 (Regression in RecursiveRegexIterator) (Tjerk)

   - CURL:
     . Add CURL_SSLVERSION_TLSv1_0, CURL_SSLVERSION_TLSv1_1, and
       CURL_SSLVERSION_TLSv1_2 constants if supported by libcurl (Rasmus)
   2014-10-25 12:39:16 by Matthias Scheler | Files touched by this commit (1) | Package updated
Log message:
Pullup ticket #4524 - requested by taca
lang/php55: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.74
- lang/php55/distinfo                                           1.30

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Oct 18 14:27:30 UTC 2014

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php55: distinfo

   Log message:
   Update php55 to 5.5.18.

   16 Oct 2014, PHP 5.5.18

   - Core:
     . Fixed bug #67985 (Incorrect last used array index copied to new array after
       unset). (Tjerk)
     . Fixed bug #67739 (Windows 8.1/Server 2012 R2 OS build number reported
       as 6.2 (instead of 6.3)). (Christian Wenz)
     . Fixed bug #67633 (A foreach on an array returned from a function not doing
       copy-on-write). (Nikita)
     . Fixed bug #51800 (proc_open on Windows hangs forever). (Anatol)
     . Fixed bug #68044 (Integer overflow in unserialize() (32-bits only)).
       (CVE-2014-3669) (Stas)

   - cURL:
     . Fixed bug #68089 (NULL byte injection - cURL lib). (Stas)

   - EXIF:
     . Fixed bug #68113 (Heap corruption in exif_thumbnail()). (CVE-2014-3670)
       (Stas)

   - FPM:
     . Fixed bug #65641 (PHP-FPM incorrectly defines the SCRIPT_NAME variable
       when using Apache, mod_proxy-fcgi and ProxyPass). (Remi)

   - OpenSSL:
     . Revert regression introduced by fix of bug #41631

   - Reflection:
     . Fixed bug #68103 (Duplicate entry in Reflection for class alias). (Remi)

   - Session:
     . Fixed bug #67972 (SessionHandler Invalid memory read create_sid()). (Adam)

   - XMLRPC:
     . Fixed bug #68027 (Global buffer overflow in mkgmtime() function).
       (CVE-2014-3668) (Stas)

Next | Query returned 3 messages, browsing 1 to 10 | previous