CVS commit: [pkgsrc-2014Q4] pkgsrc/lang

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: [pkgsrc-2014Q4] pkgsrc/lang
From: "Matthias Scheler" <tron%netbsd.org@localhost>
Date: Tue, 27 Jan 2015 19:48:35 +0000

Module Name:    pkgsrc
Committed By:   tron
Date:           Tue Jan 27 19:48:35 UTC 2015

Modified Files:
        pkgsrc/lang/php [pkgsrc-2014Q4]: phpversion.mk
        pkgsrc/lang/php56 [pkgsrc-2014Q4]: distinfo

Log Message:
Pullup ticket #4599 - requested by taca
lang/php56: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.85
- lang/php56/distinfo                                           1.4

---
   Module Name: pkgsrc
   Committed By:        taca
   Date:                Fri Jan 23 16:11:38 UTC 2015

   Modified Files:
        pkgsrc/lang/php: phpversion.mk
        pkgsrc/lang/php56: distinfo

   Log Message:
   Update php56 to 5.6.5.

   22 Jan 2015, PHP 5.6.5

   - Core:
     . Upgraded crypt_blowfish to version 1.3. (Leigh)
     . Fixed bug #60704 (unlink() bug with some files path).
     . Fixed bug #65419 (Inside trait, self::class !=3D __CLASS__). (Julie=
   n)
     . Fixed bug #68536 (pack for 64bits integer is broken on bigendian). =
   (Remi)
     . Fixed bug #55541 (errors spawn MessageBox, which blocks test automa=
   tion).
       (Anatol)
     . Fixed bug #68297 (Application Popup provides too few information). =
   (Anatol)
     . Fixed bug #65769 (localeconv() broken in TS builds). (Anatol)
     . Fixed bug #65230 (setting locale randomly broken). (Anatol)
     . Fixed bug #66764 (configure doesn't define EXPANDED_DATADIR / PHP_D=
   ATADIR
       correctly). (Ferenc)
     . Fixed bug #68583 (Crash in timeout thread). (Anatol)
     . Fixed bug #65576 (Constructor from trait conflicts with inherited
       constructor). (dunglas at gmail dot com)
     . Fixed bug #68676 (Explicit Double Free). (Kalle)
     . Fixed bug #68710 (Use After Free Vulnerability in PHP's unserialize=
   ()).
       (CVE-2015-0231) (Stefan Esser)

   - CGI:
     . Fixed bug #68618 (out of bounds read crashes php-cgi). (CVE-2014-94=
   27)
       (Stas)

   - CLI server:
     . Fixed bug #68745 (Invalid HTTP requests make web server segfault). =
   (Adam)

   - cURL:
     . Fixed bug #67643 (curl_multi_getcontent returns '' when
       CURLOPT_RETURNTRANSFER isn't set). (Jille Timmermans)

   - Date:
     . Implemented FR #68268 (DatePeriod: Getter for start date, end date =
   and
       interval). (Marc Bennewitz)

   - EXIF:
     . Fixed bug #68799: Free called on unitialized pointer. (CVE-2015-023=
   2)
       (Stas)

   - Fileinfo:
     . Fixed bug #68398 (msooxml matches too many archives). (Anatol)
     . Fixed bug #68665 (invalid free in libmagic). (Joshua Rogers, Anatol=
    Belski)
     . Fixed bug #68671 (incorrect expression in libmagic).
       (Joshua Rogers, Anatol Belski)
     . Removed readelf.c and related code from libmagic sources
       (Remi, Anatol)
     . Fixed bug #68735 (fileinfo out-of-bounds memory access).
       (Anatol)

   - FPM:
     . Fixed request #68526 (Implement POSIX Access Control List for UDS).=
    (Remi)
     . Fixed bug #68751 (listen.allowed_clients is broken). (Remi)

   - GD:
     . Fixed bug #68601 (buffer read overflow in gd_gif_in.c). (Jan Bee, R=
   emi)
     . Fixed request #68656 (Report gd library version). (Remi)

   - mbstring:
     . Fixed bug #68504 (--with-libmbfl configure option not present on Wi=
   ndows).
       (Ashesh Vashi)

   - Opcache:
     . Fixed bug #68644 (strlen incorrect : mbstring + func_overload=3D2 +=
   UTF-8
       + Opcache). (Laruence)
     . Fixed bug #67111 (Memory leak when using "continue 2" inside two fo=
   reach
       loops). (Nikita)

   - OpenSSL:
     . Improved handling of OPENSSL_KEYTYPE_EC keys. (Dominic Luechinger)

   - pcntl:
     . Fixed bug #60509 (pcntl_signal doesn't decrease ref-count of old ha=
   ndler
       when setting SIG_DFL). (Julien)

   - PCRE:
     . Fixed bug #66679 (Alignment Bug in PCRE 8.34 upstream).
       (Rainer Jung, Anatol Belski)

   - pgsql:
     . Fixed bug #68697 (lo_export return -1 on failure). (Ond=F8ej Sur=FD=
   )

   - PDO:
     . Fixed bug #68371 (PDO#getAttribute() cannot be called with platform=
   -specifi
       attribute names). (Matteo)

   - PDO_mysql:
     . Fixed bug #68424 (Add new PDO mysql connection attr to control mult=
   i
       statements option). (peter dot wolanin at acquia dot com)

   - SPL:
     . Fixed bug #66405 (RecursiveDirectoryIterator::CURRENT_AS_PATHNAME
       breaks the RecursiveIterator). (Paul Garvin)
     . Fixed bug #68479 (Added escape parameter to SplFileObject::fputcsv)=
   . (Salathe)

   - SQLite:
     . Fixed bug #68120 (Update bundled libsqlite to 3.8.7.2). (Anatol)

   - Streams:
     . Fixed bug #68532 (convert.base64-encode omits padding bytes).
       (blaesius at krumedia dot de)


To generate a diff of this commit:
cvs rdiff -u -r1.81.2.2 -r1.81.2.3 pkgsrc/lang/php/phpversion.mk
cvs rdiff -u -r1.3 -r1.3.2.1 pkgsrc/lang/php56/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/net/coda
Next by Date: CVS commit: [pkgsrc-2014Q4] pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/net/coda
Next by Thread: CVS commit: [pkgsrc-2014Q4] pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index