Next | Query returned 2 messages, browsing 1 to 10 | previous

History of commit frequency

CVS Commit History:


   2020-03-08 11:19:04 by Benny Siegert | Files touched by this commit (1) | Package updated
Log message:
Pullup ticket #6141 - requested by taca
lang/php73: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.287
- lang/php73/distinfo                                           1.19

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Feb 20 14:43:18 UTC 2020

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php73: distinfo

   Log message:
   lang/php73: update to 7.3.15

   Update php73 to 7.3.15 (PHP 7.3.15).

   20 Feb 2020, PHP 7.3.15

   - Core:
     . Fixed bug #71876 (Memory corruption htmlspecialchars(): charset `*' not
       supported). (Nikita)
     . Fixed bug ##79146 (cscript can fail to run on some systems). (clarodeus)
     . Fixed bug #78323 (Code 0 is returned on invalid options). (Ivan Mikheykin)
     . Fixed bug #76047 (Use-after-free when accessing already destructed
       backtrace arguments). (Nikita)

   - CURL:
     . Fixed bug #79078 (Hypothetical use-after-free in curl_multi_add_handle()).
       (cmb)

    -Intl:
     . Fixed bug #79212 (NumberFormatter::format() may detect wrong type). (cmb)

   - Libxml:
     . Fixed bug #79191 (Error in SoapClient ctor disables DOMDocument::save()).
       (Nikita, cmb)

   - MBString:
     . Fixed bug #79154 (mb_convert_encoding() can modify $from_encoding). (cmb)

   - MySQLnd:
     . Fixed bug #79084 (mysqlnd may fetch wrong column indexes with MYSQLI_BOTH).
       (cmb)

   - OpenSSL:
     . Fixed bug #79145 (openssl memory leak). (cmb, Nikita)

   - Phar:
     . Fixed bug #79082 (Files added to tar with Phar::buildFromIterator have
       all-access permissions). (CVE-2020-7063) (stas)
     . Fixed bug #79171 (heap-buffer-overflow in phar_extract_file).
       (CVE-	2020-7061) (cmb)
     . Fixed bug #76584 (PharFileInfo::decompress not working). (cmb)

   - Reflection:
     . Fixed bug #79115 (ReflectionClass::isCloneable call reflected class
       __destruct). (Nikita)

   - Session:
     . Fixed bug #79221 (Null Pointer Dereference in PHP Session Upload Progress).
       (CVE-2020-7062) (stas)

   - SPL:
     . Fixed bug #79151 (heap use after free caused by
       spl_dllist_it_helper_move_forward). (Nikita)

   - Standard:
     . Fixed bug #78902 (Memory leak when using stream_filter_append). (liudaixiao)

   - Testing:
     . Fixed bug #78090 (bug45161.phpt takes forever to finish). (cmb)

   - XSL:
     . Fixed bug #70078 (XSL callbacks with nodes as parameter leak memory). (cmb)
   2020-01-29 13:48:15 by Benny Siegert | Files touched by this commit (2) | Package updated
Log message:
Pullup ticket #6127 - requested by taca
lang/php73: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.284
- lang/php73/Makefile                                           1.8-1.9
- lang/php73/distinfo                                           1.18

---
   Module Name:	pkgsrc
   Committed By:	jperkin
   Date:		Sat Jan 18 21:51:16 UTC 2020

   Modified Files:
   	pkgsrc/lang/php73: Makefile

   Log message:
   *: Recursive revision bump for openssl 1.1.1.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Jan 25 17:21:14 UTC 2020

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php73: Makefile distinfo

   Log message:
   lang/php73: update to 7.3.14.

   Update php73 to 7.3.14 (PHP 7.3.14).

   23 Jan 2020, PHP 7.3.14

   - Core
     . Fixed bug #78999 (Cycle leak when using function result as temporar=
   y).
       (Dmitry)

   - CURL:
     . Fixed bug #79033 (Curl timeout error with specific url and post). (=
   cmb)

   - Date:
     . Fixed bug #79015 (undefined-behavior in php_date.c). (cmb)

   - DBA:
     . Fixed bug #78808 ([LMDB] MDB_MAP_FULL: Environment mapsize limit re=
   ached).
       (cmb)

   - Fileinfo:
     . Fixed bug #74170 (locale information change after mime_content_type=
   ).
       (Sergei Turchanov)

   - GD:
     . Fixed bug #78923 (Artifacts when convoluting image with transparenc=
   y).
       (wilson chen)
     . Fixed bug #79067 (gdTransformAffineCopy() may use unitialized value=
   s). (cmb)
     . Fixed bug #79068 (gdTransformAffineCopy() changes interpolation met=
   hod).
       (cmb)

   - Libxml:
     . Fixed bug #79029 (Use After Free's in XMLReader / XMLWriter). (Laru=
   ence)

   - Mbstring:
     . Fixed bug #79037 (global buffer-overflow in `mbfl_filt_conv_big5_wc=
   har`).
       (CVE-2020-7060) (Nikita)

   - OPcache:
     . Fixed bug #79040 (Warning Opcode handlers are unusable due to ASLR)=
   . (cmb)

   - Pcntl:
     . Fixed bug #78402 (Converting null to string in error message is bad=
    DX).
       (SAT=D2 Kentar=F2)

   - PDO_PgSQL:
     . Fixed bug #78983 (pdo_pgsql config.w32 cannot find libpq-fe.h). (SA=
   T=D2
       Kentar=F2)
     . Fixed bug #78980 (pgsqlGetNotify() overlooks dead connection). (SAT=
   =D2
       Kentar=F2)
     . Fixed bug #78982 (pdo_pgsql returns dead persistent connection). (S=
   AT=D2
       Kentar=F2)

   - Session:
     . Fixed bug #79091 (heap use-after-free in session_create_id()). (cmb=
   , Nikita)

   - Shmop:
     . Fixed bug #78538 (shmop memory leak). (cmb)

   - Standard:
     . Fixed bug #79099 (OOB read in php_strip_tags_ex). (CVE-2020-7059). =
   (cmb)
     . Fixed bug #54298 (Using empty additional_headers adding extraneous =
   CRLF).
       (cmb)

Next | Query returned 2 messages, browsing 1 to 10 | previous