pkgsrc.se | The NetBSD package collection

Subject: CVS commit: [pkgsrc-2017Q4] pkgsrc/lang
From: Benny Siegert
Date: 2018-01-07 18:39:56
Message id: 20180107173956.DC236FBDE@cvs.NetBSD.org

Log Message:
Pullup ticket #5675 - requested by taca
lang/php71: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.200
- lang/php71/distinfo                                           1.31

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Jan  5 03:11:13 UTC 2018

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php71: distinfo

   Log Message:
   lang/php71: update to 7.1.13

   04 Jan 2018, PHP 7.1.13

   - Core:
     . Fixed bug #75573 (Segmentation fault in 7.1.12 and 7.0.26). (Laruence)
     . Fixed bug #75384 (PHP seems incompatible with OneDrive files on demand).
       (Anatol)
     . Fixed bug #74862 (Unable to clone instance when private __clone defined).
       (Daniel Ciochiu)
     . Fixed bug #75074 (php-process crash when is_file() is used with strings
       longer 260 chars). (Anatol)

   - CLI Server:
     . Fixed bug #60471 (Random "Invalid request (unexpected EOF)" \ 
using a router
       script). (SammyK)
     . Fixed bug #73830 (Directory does not exist). (Anatol)

   - FPM:
     . Fixed bug #64938 (libxml_disable_entity_loader setting is shared between
       requests). (Remi)

   - GD:
     . Fixed bug #75571 (Potential infinite loop in gdImageCreateFromGifCtx).
       (Christoph)

   - Opcache:
     . Fixed bug #75608 ("Narrowing occurred during type inference" error).
       (Laruence, Dmitry)
     . Fixed bug #75579 (Interned strings buffer overflow may cause crash).
       (Dmitry)
     . Fixed bug #75570 ("Narrowing occurred during type inference" error).
       (Dmitry)

   - PCRE:
     . Fixed bug #74183 (preg_last_error not returning error code after error).
       (Andrew Nester)

   - Phar:
     . Fixed bug #74782 (remove file name from output to avoid XSS). (stas)

   - Standard:
     . Fixed bug #75511 (fread not free unused buffer). (Laruence)
     . Fixed bug #75514 (mt_rand returns value outside [$min,$max]+ on 32-bit)
       (Remi)
     . Fixed bug #75535 (Inappropriately parsing HTTP response leads to PHP
       segment fault). (Nikita)
     . Fixed bug #75409 (accept EFAULT in addition to ENOSYS as indicator
       that getrandom() is missing). (sarciszewski)
     . Fixed bug #73124 (php_ini_scanned_files() not reporting correctly).
       (John Stevenson)
     . Fixed bug #75574 (putenv does not work properly if parameter contains
       non-ASCII unicode character). (Anatol)

   - Zip:
     . Fixed bug #75540 (Segfault with libzip 1.3.1). (Remi)

Files:

Revision	Action	file
1.30.2.1	modify	pkgsrc/lang/php71/distinfo