Path to this page:
Subject: CVS commit: [pkgsrc-2018Q4] pkgsrc/lang
From: Benny Siegert
Date: 2019-01-19 22:30:21
Message id: 20190119213021.EF36EFB16@cvs.NetBSD.org
Log Message:
Pullup ticket #5896 - requested by taca
lang/php71: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.242
- lang/php71/Makefile 1.18
- lang/php71/distinfo 1.48
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 12 14:56:47 UTC 2019
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php71: Makefile distinfo
Log Message:
lang/php71: update to 7.1.26
10 Jan 2019, PHP 7.1.26
- Core:
. Fixed bug #77369 (memcpy with negative length via crafted DNS response). \
(Stas)
- GD:
. Fixed bug #77269 (efree() on uninitialized Heap data in imagescale leads to
use-after-free). (cmb)
. Fixed bug #77270 (imagecolormatch Out Of Bounds Write on Heap). (cmb)
- IMAP:
. Fixed bug #77020 (null pointer dereference in imap_mail). (cmb)
- Mbstring:
. Fixed bug #77370 (Buffer overflow on mb regex functions - fetch_token). (Stas)
. Fixed bug #77371 (heap buffer overflow in mb regex functions
- compile_string_node). (Stas)
. Fixed bug #77381 (heap buffer overflow in multibyte match_at). (Stas)
. Fixed bug #77382 (heap buffer overflow due to incorrect length in
expand_case_fold_string). (Stas)
. Fixed bug #77385 (buffer overflow in fetch_token). (Stas)
. Fixed bug #77394 (Buffer overflow in multibyte case folding - unicode). (Stas)
. Fixed bug #77418 (Heap overflow in utf32be_mbc_to_code). (Stas)
- Phar:
. Fixed bug #77247 (heap buffer overflow in phar_detect_phar_fname_ext). (Stas)
- Xmlrpc:
. Fixed bug #77242 (heap out of bounds read in xmlrpc_decode()). (cmb)
. Fixed bug #77380 (Global out of bounds read in xmlrpc base64 code). (Stas)
Files: