[pkgsrc/pkgsrc-2022Q3]: pkgsrc/lang Pullup ticket #6700 - requested by taca

[bsiegert <bsiegert%pkgsrc.org@localhost>]

details:   https://anonhg.NetBSD.org/pkgsrc/rev/c4273a543185
branches:  pkgsrc-2022Q3
changeset: 387731:c4273a543185
user:      bsiegert <bsiegert%pkgsrc.org@localhost>
date:      Sat Nov 05 19:21:29 2022 +0000

description:
Pullup ticket #6700 - requested by taca
lang/php80: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.379
- lang/php80/distinfo                                           1.26

---
   Module Name: pkgsrc
   Committed By:        taca
   Date:                Sun Oct 30 10:18:35 UTC 2022

   Modified Files:
        pkgsrc/lang/php: phpversion.mk
        pkgsrc/lang/php80: distinfo

   Log Message:
   lang/php80: update to 8.0.25

   8.0.25 (2022-10-27)

   - GD:
     . Fixed bug #81739: OOB read due to insufficient input validation in
       imageloadfont(). (CVE-2022-31630) (cmb)

   - Hash:
     . Fixed bug #81738: buffer overflow in hash_update() on long parameter.
       (CVE-2022-37454) (nicky at mouha dot be)

   - Session:
     . Fixed bug GH-9583 (session_create_id() fails with user defined save handler
       that doesn't have a validateId() method). (Girgias)

   - Streams:
     . Fixed bug GH-9590 (stream_select does not abort upon exception or empty
       valid fd set). (Arnaud)

diffstat:

 lang/php/phpversion.mk |  4 ++--
 lang/php80/distinfo    |  8 ++++----
 2 files changed, 6 insertions(+), 6 deletions(-)

diffs (34 lines):

diff -r 05861d8fa47d -r c4273a543185 lang/php/phpversion.mk
--- a/lang/php/phpversion.mk    Sat Nov 05 19:15:09 2022 +0000
+++ b/lang/php/phpversion.mk    Sat Nov 05 19:21:29 2022 +0000
@@ -1,4 +1,4 @@
-# $NetBSD: phpversion.mk,v 1.374.2.4 2022/11/05 19:15:09 bsiegert Exp $
+# $NetBSD: phpversion.mk,v 1.374.2.5 2022/11/05 19:21:29 bsiegert Exp $
 #
 # This file selects a PHP version, based on the user's preferences and
 # the installed packages. It does not add a dependency on the PHP
@@ -89,7 +89,7 @@
 # Define each PHP's version.
 PHP56_VERSION= 5.6.40
 PHP74_VERSION= 7.4.32
-PHP80_VERSION= 8.0.24
+PHP80_VERSION= 8.0.25
 PHP81_VERSION= 8.1.12
 
 # Define initial release of major version.
diff -r 05861d8fa47d -r c4273a543185 lang/php80/distinfo
--- a/lang/php80/distinfo       Sat Nov 05 19:15:09 2022 +0000
+++ b/lang/php80/distinfo       Sat Nov 05 19:21:29 2022 +0000
@@ -1,8 +1,8 @@
-$NetBSD: distinfo,v 1.24.2.1 2022/10/03 14:45:52 bsiegert Exp $
+$NetBSD: distinfo,v 1.24.2.2 2022/11/05 19:21:29 bsiegert Exp $
 
-BLAKE2s (php-8.0.24.tar.xz) = a9f2ca0e37bcc5d2de1d76f228b05535ee18ea2e2164b2df67db7f67e89f635a
-SHA512 (php-8.0.24.tar.xz) = f4922c03b613aae35005b6b39630c0de7c25929b7f4edd9c5062a747a747df065ae9b52c17c34433ecb801bc54fce2fa34ae46165deb527f0fe2c86e5da73400
-Size (php-8.0.24.tar.xz) = 10895332 bytes
+BLAKE2s (php-8.0.25.tar.xz) = 48709affae5ad92c7d8d239a91400c3b784daa28bb71af45e5b4d1091046399c
+SHA512 (php-8.0.25.tar.xz) = 43bb0637e424e2a637e05f3faf0ca2c5309f2d9cc03def9fc9af9b756003ea6efe730b608c70177c3c1b9cb03cef31c27cd6507cca9d9f0fd854aadb5e51aee3
+Size (php-8.0.25.tar.xz) = 10802888 bytes
 SHA1 (patch-build_libtool.m4) = e58a2bcebe9e9d7dc7255354fd9fe57878e3f8a6
 SHA1 (patch-configure) = 6c3d2537eb4d1c2ed05e8e1e411701d316c67d8b
 SHA1 (patch-disable-filter-url) = 0a2c19c18f089448a8d842e99738b292ab9e5640