Navigation:
Browse pkgsrc
(this page) 2020-03-08 11:24:19 by Benny Siegert | Files touched by this commit (1) |  |
Log message:
Pullup ticket #6142 - requested by taca
lang/php74: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.288
- lang/php74/distinfo 1.5
---
Module Name: pkgsrc
Committed By: taca
Date: Thu Feb 20 14:45:19 UTC 2020
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php74: distinfo
Log message:
lang/php74: update to 7.4.3
Update php74 to 7.4.3 (PHP 7.4.3).
20 Feb 2020, PHP 7.4.3
- Core:
. Fixed bug #79146 (cscript can fail to run on some systems). (clarodeus)
. Fixed bug #79155 (Property nullability lost when using multiple property
definition). (Nikita)
. Fixed bug #78323 (Code 0 is returned on invalid options). (Ivan Mikheykin)
. Fixed bug #78989 (Delayed variance check involving trait segfaults).
(Nikita)
. Fixed bug #79174 (cookie values with spaces fail to round-trip). (cmb)
. Fixed bug #76047 (Use-after-free when accessing already destructed
backtrace arguments). (Nikita)
- COM:
. Fixed bug #79247 (Garbage collecting variant objects segfaults). (cmb)
- CURL:
. Fixed bug #79078 (Hypothetical use-after-free in curl_multi_add_handle()).
(cmb)
- FFI:
. Fixed bug #79096 (FFI Struct Segfault). (cmb)
- IMAP:
. Fixed bug #79112 (IMAP extension can't find OpenSSL libraries at configure
time). (Nikita)
-Intl:
. Fixed bug #79212 (NumberFormatter::format() may detect wrong type). (cmb)
- Libxml:
. Fixed bug #79191 (Error in SoapClient ctor disables DOMDocument::save()).
(Nikita, cmb)
- MBString:
. Fixed bug #79149 (SEGV in mb_convert_encoding with non-string encodings).
(cmb)
- MySQLi:
. Fixed bug #78666 (Properties may emit a warning on var_dump()). (kocsismate)
- MySQLnd:
. Fixed bug #79084 (mysqlnd may fetch wrong column indexes with MYSQLI_BOTH).
(cmb)
. Fixed bug #79011 (MySQL caching_sha2_password Access denied for password
with more than 20 chars). (Nikita)
- Opcache:
. Fixed bug #79114 (Eval class during preload causes class to be only half
available). (Laruence)
. Fixed bug #79128 (Preloading segfaults if preload_user is used). (Nikita)
. Fixed bug #79193 (Incorrect type inference for self::$field =& $field).
(Nikita)
- OpenSSL:
. Fixed bug #79145 (openssl memory leak). (cmb, Nikita)
- Phar:
. Fixed bug #79082 (Files added to tar with Phar::buildFromIterator have
all-access permissions). (CVE-2020-7063) (stas)
. Fixed bug #79171 (heap-buffer-overflow in phar_extract_file).
(CVE-2020-7061) (cmb)
. Fixed bug #76584 (PharFileInfo::decompress not working). (cmb)
- Reflection:
. Fixed bug #79115 (ReflectionClass::isCloneable call reflected class
__destruct). (Nikita)
- Session:
. Fixed bug #79221 (Null Pointer Dereference in PHP Session Upload Progress).
(CVE-2020-7062) (stas)
- Standard:
. Fixed bug #78902 (Memory leak when using stream_filter_append). (liudaixiao)
. Fixed bug #78969 (PASSWORD_DEFAULT should match PASSWORD_BCRYPT instead \
of being null). (kocsismate)
- Testing:
. Fixed bug #78090 (bug45161.phpt takes forever to finish). (cmb)
- XSL:
. Fixed bug #70078 (XSL callbacks with nodes as parameter leak memory). (cmb)
- Zip:
. Add ZipArchive::CM_LZMA2 and ZipArchive::CM_XZ constants (since libzip \
1.6.0). (Remi)
. Add ZipArchive::RDONLY (since libzip 1.0.0). (Remi)
. Add ZipArchive::ER_* missing constants. (Remi)
. Add ZipArchive::LIBZIP_VERSION constant. (Remi)
. Fixed bug #73119 (Wrong return for ZipArchive::addEmptyDir Method). (Remi)
|
| 2020-01-29 14:34:46 by Benny Siegert | Files touched by this commit (3) | |
Log message:
Pullup ticket #6128 - requested by taca
lang/php74: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.285
- lang/php74/Makefile 1.3-1.5
- lang/php74/Makefile.php 1.2
- lang/php74/PLIST 1.2
- lang/php74/distinfo 1.4
---
Module Name: pkgsrc
Committed By: jperkin
Date: Sat Jan 18 21:51:16 UTC 2020
Modified Files:
pkgsrc/lang/php74: Makefile
Log message:
*: Recursive revision bump for openssl 1.1.1.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 21 14:16:27 UTC 2020
Modified Files:
pkgsrc/lang/php74: Makefile Makefile.php PLIST
Log message:
lang/php74: switch to use external pcre
Switch to use external pcre, fixing PR pkg/54793.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 25 17:22:49 UTC 2020
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php74: Makefile distinfo
Log message:
lang/php74: update to 7.4.2
Update php74 to 7.4.2 (PHP 7.4.2).
23 Jan 2020, PHP 7.4.2
- Core:
. Preloading support on Windows has been disabled. (Nikita)
. Fixed bug #79022 (class_exists returns True for classes that are no=
t ready
to be used). (Laruence)
. Fixed bug #78929 (plus signs in cookie values are converted to spac=
es).
(Alexey Kachalin)
. Fixed bug #78973 (Destructor during CV freeing causes segfault if o=
pline
never saved). (Nikita)
. Fixed bug #78776 (Abstract method implementation from trait does no=
t check
"static"). (Nikita)
. Fixed bug #78999 (Cycle leak when using function result as temporar=
y).
(Dmitry)
. Fixed bug #79008 (General performance regression with PHP 7.4 on Wi=
ndows).
(cmb)
. Fixed bug #79002 (Serializing uninitialized typed properties with _=
_sleep
makes unserialize throw). (Nikita)
- CURL:
. Fixed bug #79033 (Curl timeout error with specific url and post). (=
cmb)
. Fixed bug #79063 (curl openssl does not respect PKG_CONFIG_PATH). (=
Nikita)
- Date:
. Fixed bug #79015 (undefined-behavior in php_date.c). (cmb)
- DBA:
. Fixed bug #78808 ([LMDB] MDB_MAP_FULL: Environment mapsize limit re=
ached).
(cmb)
- Exif:
. Fixed bug #79046 (NaN to int cast undefined behavior in exif). (Nik=
ita)
- Fileinfo:
. Fixed bug #74170 (locale information change after mime_content_type=
).
(Sergei Turchanov)
- GD:
. Fixed bug #79067 (gdTransformAffineCopy() may use unitialized value=
s). (cmb)
. Fixed bug #79068 (gdTransformAffineCopy() changes interpolation met=
hod).
(cmb)
- Libxml:
. Fixed bug #79029 (Use After Free's in XMLReader / XMLWriter). (Laru=
ence)
- Mbstring:
. Fixed bug #79037 (global buffer-overflow in `mbfl_filt_conv_big5_wc=
har`).
(CVE-2020-7060) (Nikita)
- OPcache:
. Fixed bug #78961 (erroneous optimization of re-assigned $GLOBALS). =
(Dmitry)
. Fixed bug #78950 (Preloading trait method with static variables). (=
Nikita)
. Fixed bug #78903 (Conflict in RTD key for closures results in crash=
).
(Nikita)
. Fixed bug #78986 (Opcache segfaults when inheriting ctor from immut=
able
into mutable class). (Nikita)
. Fixed bug #79040 (Warning Opcode handlers are unusable due to ASLR)=
. (cmb)
. Fixed bug #79055 (Typed property become unknown with OPcache file c=
ache).
(Nikita)
- Pcntl:
. Fixed bug #78402 (Converting null to string in error message is bad=
DX).
(SAT=D2 Kentar=F2)
- PDO_PgSQL:
. Fixed bug #78983 (pdo_pgsql config.w32 cannot find libpq-fe.h). (SA=
T=D2
Kentar=F2)
. Fixed bug #78980 (pgsqlGetNotify() overlooks dead connection). (SAT=
=D2
Kentar=F2)
. Fixed bug #78982 (pdo_pgsql returns dead persistent connection). (S=
AT=D2
Kentar=F2)
- Session:
. Fixed bug #79091 (heap use-after-free in session_create_id()). (cmb=
,
Nikita)
. Fixed bug #79031 (Session unserialization problem). (Nikita)
- Shmop:
. Fixed bug #78538 (shmop memory leak). (cmb)
- Sqlite3:
. Fixed bug #79056 (sqlite does not respect PKG_CONFIG_PATH during
compilation). (Nikita)
- Spl:
. Fixed bug #78976 (SplFileObject::fputcsv returns -1 on failure). (c=
mb)
- Standard:
. Fixed bug #79099 (OOB read in php_strip_tags_ex). (CVE-2020-7059). =
(cmb)
. Fixed bug #79000 (Non-blocking socket stream reports EAGAIN as erro=
r).
(Nikita)
. Fixed bug #54298 (Using empty additional_headers adding extraneous =
CRLF).
(cmb)
|
New packages: