[pkgsrc/pkgsrc-2018Q4]: pkgsrc/lang Pullup ticket #5896 - requested by taca

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/pkgsrc-2018Q4]: pkgsrc/lang Pullup ticket #5896 - requested by taca
From: bsiegert <bsiegert%pkgsrc.org@localhost>
Date: Sun, 19 May 2019 17:35:45 +0000

details:   https://anonhg.NetBSD.org/pkgsrc/rev/47c15fd6dac0
branches:  pkgsrc-2018Q4
changeset: 334049:47c15fd6dac0
user:      bsiegert <bsiegert%pkgsrc.org@localhost>
date:      Sat Jan 19 21:30:21 2019 +0000

description:
Pullup ticket #5896 - requested by taca
lang/php71: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.242
- lang/php71/Makefile                                           1.18
- lang/php71/distinfo                                           1.48

---
   Module Name: pkgsrc
   Committed By:        taca
   Date:                Sat Jan 12 14:56:47 UTC 2019

   Modified Files:
        pkgsrc/lang/php: phpversion.mk
        pkgsrc/lang/php71: Makefile distinfo

   Log Message:
   lang/php71: update to 7.1.26

   10 Jan 2019, PHP 7.1.26

   - Core:
     . Fixed bug #77369 (memcpy with negative length via crafted DNS response). (Stas)

   - GD:
     . Fixed bug #77269 (efree() on uninitialized Heap data in imagescale leads to
       use-after-free). (cmb)
     . Fixed bug #77270 (imagecolormatch Out Of Bounds Write on Heap). (cmb)

   - IMAP:
     . Fixed bug #77020 (null pointer dereference in imap_mail). (cmb)

   - Mbstring:
     . Fixed bug #77370 (Buffer overflow on mb regex functions - fetch_token). (Stas)
     . Fixed bug #77371 (heap buffer overflow in mb regex functions
       - compile_string_node). (Stas)
     . Fixed bug #77381 (heap buffer overflow in multibyte match_at). (Stas)
     . Fixed bug #77382 (heap buffer overflow due to incorrect length in
       expand_case_fold_string). (Stas)
     . Fixed bug #77385 (buffer overflow in fetch_token). (Stas)
     . Fixed bug #77394 (Buffer overflow in multibyte case folding - unicode). (Stas)
     . Fixed bug #77418 (Heap overflow in utf32be_mbc_to_code). (Stas)

   - Phar:
     . Fixed bug #77247 (heap buffer overflow in phar_detect_phar_fname_ext). (Stas)

   - Xmlrpc:
     . Fixed bug #77242 (heap out of bounds read in xmlrpc_decode()). (cmb)
     . Fixed bug #77380 (Global out of bounds read in xmlrpc base64 code). (Stas)

diffstat:

 lang/php/phpversion.mk |   4 ++--
 lang/php71/Makefile    |   3 +--
 lang/php71/distinfo    |  10 +++++-----
 3 files changed, 8 insertions(+), 9 deletions(-)

diffs (51 lines):

diff -r f750924ca38c -r 47c15fd6dac0 lang/php/phpversion.mk
--- a/lang/php/phpversion.mk    Sat Jan 19 21:09:42 2019 +0000
+++ b/lang/php/phpversion.mk    Sat Jan 19 21:30:21 2019 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: phpversion.mk,v 1.241 2018/12/15 17:11:54 taca Exp $
+# $NetBSD: phpversion.mk,v 1.241.2.1 2019/01/19 21:30:21 bsiegert Exp $
 #
 # This file selects a PHP version, based on the user's preferences and
 # the installed packages. It does not add a dependency on the PHP
@@ -89,7 +89,7 @@
 # Define each PHP's version.
 PHP56_VERSION= 5.6.39
 PHP70_VERSION= 7.0.33
-PHP71_VERSION= 7.1.25
+PHP71_VERSION= 7.1.26
 PHP72_VERSION= 7.2.13
 PHP73_VERSION= 7.3.0
 
diff -r f750924ca38c -r 47c15fd6dac0 lang/php71/Makefile
--- a/lang/php71/Makefile       Sat Jan 19 21:09:42 2019 +0000
+++ b/lang/php71/Makefile       Sat Jan 19 21:30:21 2019 +0000
@@ -1,10 +1,9 @@
-# $NetBSD: Makefile,v 1.17 2018/12/09 12:20:44 taca Exp $
+# $NetBSD: Makefile,v 1.17.2.1 2019/01/19 21:30:21 bsiegert Exp $
 
 #
 # We can't omit PKGNAME here to handle PKG_OPTIONS.
 #
 PKGNAME=               php-${PHP_VERSION:S/RC/rc/}
-PKGREVISION=           1
 CATEGORIES=            lang
 
 HOMEPAGE=              http://www.php.net/
diff -r f750924ca38c -r 47c15fd6dac0 lang/php71/distinfo
--- a/lang/php71/distinfo       Sat Jan 19 21:09:42 2019 +0000
+++ b/lang/php71/distinfo       Sat Jan 19 21:30:21 2019 +0000
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.47 2018/12/15 16:57:04 taca Exp $
+$NetBSD: distinfo,v 1.47.2.1 2019/01/19 21:30:21 bsiegert Exp $
 
-SHA1 (php-7.1.25.tar.bz2) = 6d8ea15a07c4cf87316a0ffcf304191b1c6501ff
-RMD160 (php-7.1.25.tar.bz2) = cee77538a33089714b7b3684b65f44f19fb3f11a
-SHA512 (php-7.1.25.tar.bz2) = 4eb23480858dd7cfcd87ddee54d2be0e62cd9476735444d5f274612dbe97b92192c2116fab7276caec0d7b5695293a5297ba472335785259813f3d8f16ebfea0
-Size (php-7.1.25.tar.bz2) = 15026963 bytes
+SHA1 (php-7.1.26.tar.bz2) = e6015d635ea0fd952db221bc7dd2e7abb173d4d2
+RMD160 (php-7.1.26.tar.bz2) = b74c077194f60ee42d2ad3bebaa07c6181c75b3a
+SHA512 (php-7.1.26.tar.bz2) = 1d802acec417cc625d13b7f980f075f4ad8fedf4809ab33e767834c280693525685cc7d6fec2e3ad51296a1d1a214095e70b376fc39fb1cacb71c1f45724fe3e
+Size (php-7.1.26.tar.bz2) = 15032145 bytes
 SHA1 (patch-acinclude.m4) = c232e68dbcd58bbfdf6800e491eb46812df15f65
 SHA1 (patch-configure) = 862707ff3fd8b8d7312104bb44a48fe8379951bd
 SHA1 (patch-disable-filter-url) = e9e92d686ddd1d1a1ece10fe4feee4e368fe510c

Prev by Date: [pkgsrc/pkgsrc-2018Q4]: pkgsrc/audio/musicpd Pullup ticket #5890 - requested ...
Next by Date: [pkgsrc/pkgsrc-2018Q4]: pkgsrc/www/nghttp2 Pullup ticket #5892 - requested by...
Previous by Thread: [pkgsrc/pkgsrc-2018Q4]: pkgsrc/audio/musicpd Pullup ticket #5890 - requested ...
Next by Thread: [pkgsrc/pkgsrc-2018Q4]: pkgsrc/www/nghttp2 Pullup ticket #5892 - requested by...
Indexes:

Home | Main Index | Thread Index | Old Index