Navigation:
Browse pkgsrc
(this page)
New packages:Log Message:
Pullup ticket #5799 - requested by taca
lang/php70: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.224
- lang/php70/Makefile 1.11-1.12
- lang/php70/Makefile.php 1.8-1.9
- lang/php70/distinfo 1.46-1.47
- lang/php70/patches/patch-disable-filter-url 1.1
---
Module Name: pkgsrc
Committed By: maya
Date: Mon Jul 16 10:58:50 UTC 2018
Modified Files:
pkgsrc/lang/php70: Makefile Makefile.php
pkgsrc/lang/php71: Makefile Makefile.php
pkgsrc/lang/php72: Makefile Makefile.php
Log Message:
php*: disable global regs on i386.
Fixes PR pkg/53222 that resurfaced
Remove the previous workaround to add GCC_REQD, which isn't sufficient
any more, possibly due to enabling ssp/fortify?
XXX bumping PKGREVISION might not be sufficient, for the same reason the
GCC_REQD had to be moved to Makefile.php, it affects modules too.
---
Module Name: pkgsrc
Committed By: manu
Date: Wed Jul 18 07:33:12 UTC 2018
Modified Files:
pkgsrc/lang/php56: Makefile.php distinfo
pkgsrc/lang/php70: Makefile.php distinfo
pkgsrc/lang/php71: Makefile.php distinfo
pkgsrc/lang/php72: Makefile.php distinfo
Added Files:
pkgsrc/lang/php56/patches: patch-disable-filter-url
pkgsrc/lang/php70/patches: patch-disable-filter-url
pkgsrc/lang/php71/patches: patch-disable-filter-url
pkgsrc/lang/php72/patches: patch-disable-filter-url
Log Message:
Add pkgsrc build option disable-filter-url to disable php://filter URL
php://filter URL is a feature documented here:
http://php.net/manual/en/wrappers.php.php
Unfortunately, it allows remote control of include() behavior
beyond what many developpers expected, enabling easy dump of
PHP source files. The administrator may want to disable the
feature for security sake, and this option makes that possible.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Jul 20 13:27:28 UTC 2018
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php70: Makefile distinfo
Log Message:
lang/php70: update to 7.0.31
19 Jul 2018 PHP 7.0.31
- Exif:
. Fixed bug #76423 (Int Overflow lead to Heap OverFlow in
exif_thumbnail_extract of exif.c). (Stas)
. Fixed bug #76557 (heap-buffer-overflow (READ of size 48) while reading exif
data). (Stas)
- Win32:
. Fixed bug #76459 (windows linkinfo lacks openbasedir check). (Anatol)