./lang/php56, PHP Hypertext Preprocessor version 5.6

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]


Branch: pkgsrc-2015Q2, Version: 5.6.12, Package name: php-5.6.12, Maintainer: pkgsrc-users

PHP is an HTML-embedded scripting language. It is modular, with
some object-oriented features. Much of its syntax is borrowed from
C, Java and Perl with a couple of unique PHP-specific features
thrown in. The language is designed to allow web developers to
write dynamically generated pages quickly.

This package provides PHP version 5.5.x.


Required to run:
[textproc/libxml2]


Package options: inet6, ssl

Master sites: (Expand)

SHA1: ea9ac92e424f5b2bbfefe31c06864e3cb4c098e5
RMD160: c1528c753b961970a8af6a7ac8eb684956ac80ae
Filesize: 13763.816 KB

Version history: (Expand)


CVS history: (Expand)


   2015-08-12 22:17:12 by Matthias Scheler | Files touched by this commit (1) | Package updated
Log message:
Pullup ticket #4792 - requested by taca
lang/php56: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.108
- lang/php56/distinfo                                           1.14

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Aug  8 00:13:36 UTC 2015

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php56: distinfo

   Log message:
   Update php56 to 5.6.12.

   06 Aug 2015, PHP 5.6.12

   - Core:
     . Fixed bug #70012 (Exception lost with nested finally block). (Laruence)
     . Fixed bug #70002 (TS issues with temporary dir handling). (Anatol)
     . Fixed bug #69793 (Remotely triggerable stack exhaustion via recursive
       method calls). (Stas)
     . Fixed bug #69892 (Different arrays compare indentical due to integer key
       truncation). (Nikita)
     . Fixed bug #70121 (unserialize() could lead to unexpected methods execution
       / NULL pointer deref). (Stas)

   - CLI server:
     . Fixed bug #69655 (php -S changes MKCALENDAR request method to MKCOL). (cmb)
     . Fixed bug #64878 (304 responses return Content-Type header). (cmb)

   - GD:
     . Fixed bug #53156 (imagerectangle problem with point ordering). (cmb)
     . Fixed bug #66387 (Stack overflow with imagefilltoborder). (cmb)
     . Fixed bug #70102 (imagecreatefromwebm() shifts colors). (cmb)
     . Fixed bug #66590 (imagewebp() doesn't pad to even length). (cmb)
     . Fixed bug #66882 (imagerotate by -90 degrees truncates image by 1px). (cmb)
     . Fixed bug #70064 (imagescale(..., IMG_BICUBIC) leaks memory). (cmb)
     . Fixed bug #69024 (imagescale segfault with palette based image). (cmb)
     . Fixed bug #53154 (Zero-height rectangle has whiskers). (cmb)
     . Fixed bug #67447 (imagecrop() add a black line when cropping). (cmb)
     . Fixed bug #68714 (copy 'n paste error). (cmb)
     . Fixed bug #66339 (PHP segfaults in imagexbm). (cmb)
     . Fixed bug #70047 (gd_info() doesn't report WebP support). (cmb)

   - ODBC:
     . Fixed bug #69975 (PHP segfaults when accessing nvarchar(max) defined
       columns). (cmb)

   - OpenSSL:
     . Fixed bug #69882 (OpenSSL error “key values mismatch” after
       openssl_pkcs12_read with extra cert) (Tomasz Sawicki)
     . Fixed bug #70014 (openssl_random_pseudo_bytes() is not cryptographically
       secure). (Stas)

   - Phar:
     . Improved fix for bug #69441. (Anatol Belski)
     . Fixed bug #70019 (Files extracted from archive may be placed outside of
       destination directory). (Anatol Belski)

   - SOAP:
     . Fixed bug #70081 (SoapClient info leak / null pointer dereference via
       multiple type confusions). (Stas)

   - SPL:
     . Fixed bug #70068 (Dangling pointer in the unserialization of ArrayObject
       items). (sean.heelan)
     . Fixed bug #70166 (Use After Free Vulnerability in unserialize() with
       SPLArrayObject). (taoguangchen at icloud dot com)
     . Fixed bug #70168 (Use After Free Vulnerability in unserialize() with
       SplObjectStorage). (taoguangchen at icloud dot com)
     . Fixed bug #70169 (Use After Free Vulnerability in unserialize() with
       SplDoublyLinkedList). (taoguangchen at icloud dot com)

   - Standard:
     . Fixed bug #70096 (Repeated iptcembed() adds superfluous FF bytes). (cmb)
   2015-07-15 00:14:30 by Matthias Scheler | Files touched by this commit (3) | Package updated
Log message:
Pullup ticket #4774 - requested by taca
lang/php56: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.105
- lang/php56/Makefile                                           1.7
- lang/php56/distinfo                                           1.13
- lang/php56/patches/patch-ext_spl_spl__heap.c                  deleted

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Jul 11 00:31:01 UTC 2015

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php56: Makefile distinfo
   Removed Files:
   	pkgsrc/lang/php56/patches: patch-ext_spl_spl__heap.c

   Log message:
   Update php56 to 5.6.11.

   10 Jul 2015, PHP 5.6.11

   - Core:
     . Fixed bug #69768 (escapeshell*() doesn't cater to !). (cmb)
     . Fixed bug #69703 (Use __builtin_clzl on PowerPC).
       (dja at axtens dot net, Kalle)
     . Fixed bug #69732 (can induce segmentation fault with basic php code).
       (Dmitry)
     . Fixed bug #69642 (Windows 10 reported as Windows 8).
       (Christian Wenz, Anatol Belski)
     . Fixed bug #69551 (parse_ini_file() and parse_ini_string() segmentation
       fault). (Christoph M. Becker)
     . Fixed bug #69781 (phpinfo() reports Professional Editions of Windows
       7/8/8.1/10 as "Business"). (Christian Wenz)
     . Fixed bug #69740 (finally in generator (yield) swallows exception in
       iteration). (Nikita)
     . Fixed bug #69835 (phpinfo() does not report many Windows SKUs).
       (Christian Wenz)
     . Fixed bug #69892 (Different arrays compare indentical due to integer key
       truncation). (Nikita)
     . Fixed bug #69874 (Can't set empty additional_headers for mail()), regression
       from fix to bug #68776. (Yasuo)

   - GD:
     . Fixed bug #61221 (imagegammacorrect function loses alpha channel). (cmb)

   - GMP:
     . Fixed bug #69803 (gmp_random_range() modifies second parameter if GMP
       number). (Nikita)

   - PCRE:
     . Fixed Bug #53823 (preg_replace: * qualifier on unicode replace garbles the
       string). (cmb)
     . Fixed bug #69864 (Segfault in preg_replace_callback) (cmb, ab)

   - PDO_pgsql:
     . Fixed bug #69752 (PDOStatement::execute() leaks memory with DML
       Statements when closeCuror() is u). (Philip Hofstetter)
     . Fixed bug #69362 (PDO-pgsql fails to connect if password contains a
       leading single quote). (Matteo)
     . Fixed bug #69344 (PDO PgSQL Incorrect binding numeric array with gaps).
       (Matteo)

   - SimpleXML:
     . Refactored the fix for bug #66084 (simplexml_load_string() mangles empty
       node name). (Christoph Michael Becker)

   - SPL:
     . Fixed bug #69737 (Segfault when SplMinHeap::compare produces fatal error).
       (Stas)
     . Fixed bug #67805 (SplFileObject setMaxLineLength). (Willian Gustavo Veiga).
     . Fixed bug #69970 (Use-after-free vulnerability in
       spl_recursive_it_move_forward_ex()). (Laruence)

   - Sqlite3:
     . Fixed bug #69972 (Use-after-free vulnerability in
       sqlite3SafetyCheckSickOrOk()). (Laruence)