[pkgsrc/pkgsrc-2019Q4]: pkgsrc/lang Pullup ticket #6141 - requested by taca

To: pkgsrc-changes-hg%NetBSD.org@localhost
Subject: [pkgsrc/pkgsrc-2019Q4]: pkgsrc/lang Pullup ticket #6141 - requested by taca
From: bsiegert <bsiegert%pkgsrc.org@localhost>
Date: Sun, 08 Mar 2020 11:36:59 +0000

details:   https://anonhg.NetBSD.org/pkgsrc/rev/d194a01e27dd
branches:  pkgsrc-2019Q4
changeset: 412486:d194a01e27dd
user:      bsiegert <bsiegert%pkgsrc.org@localhost>
date:      Sun Mar 08 10:19:04 2020 +0000

description:
Pullup ticket #6141 - requested by taca
lang/php73: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.287
- lang/php73/distinfo                                           1.19

---
   Module Name: pkgsrc
   Committed By:        taca
   Date:                Thu Feb 20 14:43:18 UTC 2020

   Modified Files:
        pkgsrc/lang/php: phpversion.mk
        pkgsrc/lang/php73: distinfo

   Log Message:
   lang/php73: update to 7.3.15

   Update php73 to 7.3.15 (PHP 7.3.15).

   20 Feb 2020, PHP 7.3.15

   - Core:
     . Fixed bug #71876 (Memory corruption htmlspecialchars(): charset `*' not
       supported). (Nikita)
     . Fixed bug ##79146 (cscript can fail to run on some systems). (clarodeus)
     . Fixed bug #78323 (Code 0 is returned on invalid options). (Ivan Mikheykin)
     . Fixed bug #76047 (Use-after-free when accessing already destructed
       backtrace arguments). (Nikita)

   - CURL:
     . Fixed bug #79078 (Hypothetical use-after-free in curl_multi_add_handle()).
       (cmb)

    -Intl:
     . Fixed bug #79212 (NumberFormatter::format() may detect wrong type). (cmb)

   - Libxml:
     . Fixed bug #79191 (Error in SoapClient ctor disables DOMDocument::save()).
       (Nikita, cmb)

   - MBString:
     . Fixed bug #79154 (mb_convert_encoding() can modify $from_encoding). (cmb)

   - MySQLnd:
     . Fixed bug #79084 (mysqlnd may fetch wrong column indexes with MYSQLI_BOTH).
       (cmb)

   - OpenSSL:
     . Fixed bug #79145 (openssl memory leak). (cmb, Nikita)

   - Phar:
     . Fixed bug #79082 (Files added to tar with Phar::buildFromIterator have
       all-access permissions). (CVE-2020-7063) (stas)
     . Fixed bug #79171 (heap-buffer-overflow in phar_extract_file).
       (CVE-    2020-7061) (cmb)
     . Fixed bug #76584 (PharFileInfo::decompress not working). (cmb)

   - Reflection:
     . Fixed bug #79115 (ReflectionClass::isCloneable call reflected class
       __destruct). (Nikita)

   - Session:
     . Fixed bug #79221 (Null Pointer Dereference in PHP Session Upload Progress).
       (CVE-2020-7062) (stas)

   - SPL:
     . Fixed bug #79151 (heap use after free caused by
       spl_dllist_it_helper_move_forward). (Nikita)

   - Standard:
     . Fixed bug #78902 (Memory leak when using stream_filter_append). (liudaixiao)

   - Testing:
     . Fixed bug #78090 (bug45161.phpt takes forever to finish). (cmb)

   - XSL:
     . Fixed bug #70078 (XSL callbacks with nodes as parameter leak memory). (cmb)

diffstat:

 lang/php/phpversion.mk |   4 ++--
 lang/php73/distinfo    |  10 +++++-----
 2 files changed, 7 insertions(+), 7 deletions(-)

diffs (36 lines):

diff -r 8dd976585e06 -r d194a01e27dd lang/php/phpversion.mk
--- a/lang/php/phpversion.mk    Sun Mar 08 09:49:18 2020 +0000
+++ b/lang/php/phpversion.mk    Sun Mar 08 10:19:04 2020 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: phpversion.mk,v 1.283.4.3 2020/01/29 13:39:33 bsiegert Exp $
+# $NetBSD: phpversion.mk,v 1.283.4.4 2020/03/08 10:19:04 bsiegert Exp $
 #
 # This file selects a PHP version, based on the user's preferences and
 # the installed packages. It does not add a dependency on the PHP
@@ -89,7 +89,7 @@
 # Define each PHP's version.
 PHP56_VERSION= 5.6.40
 PHP72_VERSION= 7.2.27
-PHP73_VERSION= 7.3.14
+PHP73_VERSION= 7.3.15
 PHP74_VERSION= 7.4.2
 
 # Define initial release of major version.
diff -r 8dd976585e06 -r d194a01e27dd lang/php73/distinfo
--- a/lang/php73/distinfo       Sun Mar 08 09:49:18 2020 +0000
+++ b/lang/php73/distinfo       Sun Mar 08 10:19:04 2020 +0000
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.17.4.1 2020/01/29 12:48:15 bsiegert Exp $
+$NetBSD: distinfo,v 1.17.4.2 2020/03/08 10:19:04 bsiegert Exp $
 
-SHA1 (php-7.3.14.tar.xz) = 5550a2b262121738f06753f1fe375d244c9d414e
-RMD160 (php-7.3.14.tar.xz) = 886d50db54000ff8e738b9ee5d3db9187872bd82
-SHA512 (php-7.3.14.tar.xz) = 053cd51d0fe73e18494d51c104573b73f6af41d21091513319e994cc12398fa792b7d996414d28d6dbf983c38afccc92d47d6fd8c071824ee192067bd955a80a
-Size (php-7.3.14.tar.xz) = 12106072 bytes
+SHA1 (php-7.3.15.tar.xz) = 2ac5b8a86cc4a7b96abcb7c85dcde97cbadb1db3
+RMD160 (php-7.3.15.tar.xz) = ffdda902149402200af4e1d2b7f8427ba49081d8
+SHA512 (php-7.3.15.tar.xz) = 7a578d175e27f20205f6471451665f3141221916dfbd289085bfa64715dcd57cd9bca272fed73f539b066862e196fe1f5f446e2eb1cca9971b4f9a8080663acb
+Size (php-7.3.15.tar.xz) = 12111464 bytes
 SHA1 (patch-configure) = 08b80528ba90c705398e8841c232382663479a3b
 SHA1 (patch-disable-filter-url) = 0a2c19c18f089448a8d842e99738b292ab9e5640
 SHA1 (patch-ext_gd_config.m4) = eaecfb31b18700dd642c067ed82748d4f6be2335

Prev by Date: [pkgsrc/pkgsrc-2019Q4]: pkgsrc/security/mbedtls Pullup ticket #6140 - request...
Next by Date: [pkgsrc/pkgsrc-2019Q4]: pkgsrc/lang Pullup ticket #6143 - requested by taca
Previous by Thread: [pkgsrc/pkgsrc-2019Q4]: pkgsrc/security/mbedtls Pullup ticket #6140 - request...
Next by Thread: [pkgsrc/pkgsrc-2019Q4]: pkgsrc/lang Pullup ticket #6143 - requested by taca
Indexes:

Home | Main Index | Thread Index | Old Index