Subject: CVS commit: [pkgsrc-2014Q3] pkgsrc/lang
From: Matthias Scheler
Date: 2014-10-25 12:39:16
Message id: 20141025103916.61C2598@cvs.netbsd.org

Log Message:
Pullup ticket #4524 - requested by taca
lang/php55: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.74
- lang/php55/distinfo                                           1.30

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Oct 18 14:27:30 UTC 2014

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php55: distinfo

   Log Message:
   Update php55 to 5.5.18.

   16 Oct 2014, PHP 5.5.18

   - Core:
     . Fixed bug #67985 (Incorrect last used array index copied to new array after
       unset). (Tjerk)
     . Fixed bug #67739 (Windows 8.1/Server 2012 R2 OS build number reported
       as 6.2 (instead of 6.3)). (Christian Wenz)
     . Fixed bug #67633 (A foreach on an array returned from a function not doing
       copy-on-write). (Nikita)
     . Fixed bug #51800 (proc_open on Windows hangs forever). (Anatol)
     . Fixed bug #68044 (Integer overflow in unserialize() (32-bits only)).
       (CVE-2014-3669) (Stas)

   - cURL:
     . Fixed bug #68089 (NULL byte injection - cURL lib). (Stas)

   - EXIF:
     . Fixed bug #68113 (Heap corruption in exif_thumbnail()). (CVE-2014-3670)
       (Stas)

   - FPM:
     . Fixed bug #65641 (PHP-FPM incorrectly defines the SCRIPT_NAME variable
       when using Apache, mod_proxy-fcgi and ProxyPass). (Remi)

   - OpenSSL:
     . Revert regression introduced by fix of bug #41631

   - Reflection:
     . Fixed bug #68103 (Duplicate entry in Reflection for class alias). (Remi)

   - Session:
     . Fixed bug #67972 (SessionHandler Invalid memory read create_sid()). (Adam)

   - XMLRPC:
     . Fixed bug #68027 (Global buffer overflow in mkgmtime() function).
       (CVE-2014-3668) (Stas)

Files:
RevisionActionfile
1.29.2.1modifypkgsrc/lang/php55/distinfo