Path to this page:
Subject: CVS commit: [pkgsrc-2014Q4] pkgsrc/lang
From: Matthias Scheler
Date: 2015-01-27 19:30:15
Message id: 20150127183015.B0EE498@cvs.netbsd.org
Log Message:
Pullup ticket #4597 - requested by taca
lang/php54: security update
Revisions pulled up:
- lang/php/phpversion.mk 1.82-1.83
- lang/php54/distinfo 1.51
---
Module Name: pkgsrc
Committed By: dholland
Date: Thu Jan 1 11:51:41 UTC 2015
Modified Files:
pkgsrc/lang/php: phpversion.mk
Log Message:
Use PKG_FAIL_REASON for errors.
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Jan 23 16:09:26 UTC 2015
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php54: distinfo
Log Message:
Update to php54 to 5.4.37.
22 Jan 2015 PHP 5.4.37
- Core:
. Fixed bug #68710 (Use After Free Vulnerability in PHP's unserialize()).
(CVE-2015-0231) (Stefan Esser)
- CGI:
. Fixed bug #68618 (out of bounds read crashes php-cgi). (CVE-2014-9427)
(Stas)
- EXIF:
. Fixed bug #68799: Free called on unitialized pointer. (CVE-2015-0232) (Stas)
- Fileinfo:
. Removed readelf.c and related code from libmagic sources
(Remi, Anatol)
. Fixed bug #68735 (fileinfo out-of-bounds memory access).
(Anatol)
- OpenSSL:
. Fixed bug #55618 (use case-insensitive cert name matching).
(Daniel Lowrey)
Files: