Subject: CVS commit: [pkgsrc-2015Q1] pkgsrc/lang
From: Hiramatsu Yoshifumi
Date: 2015-06-24 03:16:39
Message id: 20150624011639.923FF98@cvs.netbsd.org
Log Message:
Pullup ticket #4750 - requested by taca
lang/php54: security update

Revisions pulled up:
- pkgsrc/lang/php/phpversion.mk                                 1.102
- pkgsrc/lang/php54/distinfo                                    1.58

---
   Module Name:    pkgsrc
   Committed By:   taca
   Date:           Fri Jun 12 04:51:01 UTC 2015

   Modified Files:
           pkgsrc/lang/php: phpversion.mk
           pkgsrc/lang/php54: distinfo

   Log Message:
   Update php54 to 5.4.42.

   11 Jun 2015 PHP 5.4.42

   - Core:
     . Imroved fix for bug #69545 (Integer overflow in ftp_genlist() resulting in
       heap overflow). (Max Spelsberg)
     . Fixed bug #69646 (OS command injection vulnerability in escapeshellarg).
       (Anatol Belski)
     . Fixed bug #69719 (Incorrect handling of paths with NULs). (Stas)

   - Litespeed SAPI:
     . Fixed bug #68812 (Unchecked return value). (George Wang)

   - Mail:
     . Fixed bug #68776 (mail() does not have mail header injection prevention for
       additional headers). (Yasuo)

   - Postgres:
     . Fixed bug #69667 (segfault in php_pgsql_meta_data). (Remi)

   - Sqlite3:
     . Upgrade bundled sqlite to 3.8.10.2. (CVE-2015-3414, CVE-2015-3415,
       CVE-2015-3416) (Kaplan)
Files:
RevisionActionfile
1.55.2.3modifypkgsrc/lang/php54/distinfo