Path to this page:
Subject: CVS commit: [pkgsrc-2019Q4] pkgsrc/lang
From: Benny Siegert
Date: 2020-01-29 14:34:46
Message id: 20200129133447.0364DFBF4@cvs.NetBSD.org
Log Message:
Pullup ticket #6128 - requested by taca
lang/php74: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.285
- lang/php74/Makefile 1.3-1.5
- lang/php74/Makefile.php 1.2
- lang/php74/PLIST 1.2
- lang/php74/distinfo 1.4
---
Module Name: pkgsrc
Committed By: jperkin
Date: Sat Jan 18 21:51:16 UTC 2020
Modified Files:
pkgsrc/lang/php74: Makefile
Log Message:
*: Recursive revision bump for openssl 1.1.1.
---
Module Name: pkgsrc
Committed By: taca
Date: Tue Jan 21 14:16:27 UTC 2020
Modified Files:
pkgsrc/lang/php74: Makefile Makefile.php PLIST
Log Message:
lang/php74: switch to use external pcre
Switch to use external pcre, fixing PR pkg/54793.
Bump PKGREVISION.
---
Module Name: pkgsrc
Committed By: taca
Date: Sat Jan 25 17:22:49 UTC 2020
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php74: Makefile distinfo
Log Message:
lang/php74: update to 7.4.2
Update php74 to 7.4.2 (PHP 7.4.2).
23 Jan 2020, PHP 7.4.2
- Core:
. Preloading support on Windows has been disabled. (Nikita)
. Fixed bug #79022 (class_exists returns True for classes that are no=
t ready
to be used). (Laruence)
. Fixed bug #78929 (plus signs in cookie values are converted to spac=
es).
(Alexey Kachalin)
. Fixed bug #78973 (Destructor during CV freeing causes segfault if o=
pline
never saved). (Nikita)
. Fixed bug #78776 (Abstract method implementation from trait does no=
t check
"static"). (Nikita)
. Fixed bug #78999 (Cycle leak when using function result as temporar=
y).
(Dmitry)
. Fixed bug #79008 (General performance regression with PHP 7.4 on Wi=
ndows).
(cmb)
. Fixed bug #79002 (Serializing uninitialized typed properties with _=
_sleep
makes unserialize throw). (Nikita)
- CURL:
. Fixed bug #79033 (Curl timeout error with specific url and post). (=
cmb)
. Fixed bug #79063 (curl openssl does not respect PKG_CONFIG_PATH). (=
Nikita)
- Date:
. Fixed bug #79015 (undefined-behavior in php_date.c). (cmb)
- DBA:
. Fixed bug #78808 ([LMDB] MDB_MAP_FULL: Environment mapsize limit re=
ached).
(cmb)
- Exif:
. Fixed bug #79046 (NaN to int cast undefined behavior in exif). (Nik=
ita)
- Fileinfo:
. Fixed bug #74170 (locale information change after mime_content_type=
).
(Sergei Turchanov)
- GD:
. Fixed bug #79067 (gdTransformAffineCopy() may use unitialized value=
s). (cmb)
. Fixed bug #79068 (gdTransformAffineCopy() changes interpolation met=
hod).
(cmb)
- Libxml:
. Fixed bug #79029 (Use After Free's in XMLReader / XMLWriter). (Laru=
ence)
- Mbstring:
. Fixed bug #79037 (global buffer-overflow in `mbfl_filt_conv_big5_wc=
har`).
(CVE-2020-7060) (Nikita)
- OPcache:
. Fixed bug #78961 (erroneous optimization of re-assigned $GLOBALS). =
(Dmitry)
. Fixed bug #78950 (Preloading trait method with static variables). (=
Nikita)
. Fixed bug #78903 (Conflict in RTD key for closures results in crash=
).
(Nikita)
. Fixed bug #78986 (Opcache segfaults when inheriting ctor from immut=
able
into mutable class). (Nikita)
. Fixed bug #79040 (Warning Opcode handlers are unusable due to ASLR)=
. (cmb)
. Fixed bug #79055 (Typed property become unknown with OPcache file c=
ache).
(Nikita)
- Pcntl:
. Fixed bug #78402 (Converting null to string in error message is bad=
DX).
(SAT=D2 Kentar=F2)
- PDO_PgSQL:
. Fixed bug #78983 (pdo_pgsql config.w32 cannot find libpq-fe.h). (SA=
T=D2
Kentar=F2)
. Fixed bug #78980 (pgsqlGetNotify() overlooks dead connection). (SAT=
=D2
Kentar=F2)
. Fixed bug #78982 (pdo_pgsql returns dead persistent connection). (S=
AT=D2
Kentar=F2)
- Session:
. Fixed bug #79091 (heap use-after-free in session_create_id()). (cmb=
,
Nikita)
. Fixed bug #79031 (Session unserialization problem). (Nikita)
- Shmop:
. Fixed bug #78538 (shmop memory leak). (cmb)
- Sqlite3:
. Fixed bug #79056 (sqlite does not respect PKG_CONFIG_PATH during
compilation). (Nikita)
- Spl:
. Fixed bug #78976 (SplFileObject::fputcsv returns -1 on failure). (c=
mb)
- Standard:
. Fixed bug #79099 (OOB read in php_strip_tags_ex). (CVE-2020-7059). =
(cmb)
. Fixed bug #79000 (Non-blocking socket stream reports EAGAIN as erro=
r).
(Nikita)
. Fixed bug #54298 (Using empty additional_headers adding extraneous =
CRLF).
(cmb)
Files: