CVS commit: [pkgsrc-2014Q4] pkgsrc/lang

To: pkgsrc-changes%netbsd.org@localhost
Subject: CVS commit: [pkgsrc-2014Q4] pkgsrc/lang
From: "Matthias Scheler" <tron%netbsd.org@localhost>
Date: Wed, 4 Mar 2015 18:52:36 +0000

Module Name:    pkgsrc
Committed By:   tron
Date:           Wed Mar  4 18:52:36 UTC 2015

Modified Files:
        pkgsrc/lang/php [pkgsrc-2014Q4]: phpversion.mk
        pkgsrc/lang/php56 [pkgsrc-2014Q4]: Makefile PLIST distinfo
Removed Files:
        pkgsrc/lang/php56/patches [pkgsrc-2014Q4]: patch-ext_date_php_date.c
            patch-ext_date_tests_bug68942.phpt
            patch-ext_date_tests_bug68942_2.phpt

Log Message:
Pullup ticket #4633 - requested by taca
lang/php56: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.88
- lang/php56/Makefile                                           1.4
- lang/php56/PLIST                                              1.2
- lang/php56/distinfo                                           1.6
- lang/php56/patches/patch-ext_date_php_date.c                  deleted
- lang/php56/patches/patch-ext_date_tests_bug68942.phpt         deleted
- lang/php56/patches/patch-ext_date_tests_bug68942_2.phpt       deleted

---
   Module Name: pkgsrc
   Committed By:        taca
   Date:                Fri Feb 20 01:17:50 UTC 2015

   Modified Files:
        pkgsrc/lang/php: phpversion.mk
        pkgsrc/lang/php56: Makefile PLIST distinfo
   Removed Files:
        pkgsrc/lang/php56/patches: patch-ext_date_php_date.c
            patch-ext_date_tests_bug68942.phpt
            patch-ext_date_tests_bug68942_2.phpt

   Log Message:
   Update php56 to 5.6.6 (PHP 5.6.6).

   19 Feb 2015, PHP 5.6.6

   - Core:
     . Removed support for multi-line headers, as the are deprecated by RFC 7230.
       (Stas)
     . Fixed bug #67068 (getClosure returns somethings that's not a closure).
       (Danack at basereality dot com)
     . Fixed bug #68942 (Use after free vulnerability in unserialize() with
       DateTimeZone). (CVE-2015-0273) (Stas)
     . Fixed bug #68925 (Mitigation for CVE-2015-0235 – GHOST: glibc gethostbyname
       buffer overflow). (Stas)
     . Fixed Bug #67988 (htmlspecialchars() does not respect default_charset
       specified by ini_set) (Yasuo)
     . Added NULL byte protection to exec, system and passthru. (Yasuo)

   - Dba:
     . Fixed bug #68711 (useless comparisons). (bugreports at internot dot info)

   - Enchant:
     . Fixed bug #68552 (heap buffer overflow in enchant_broker_request_dict()).
       (Antony)

   - Fileinfo:
     . Fixed bug #68827 (Double free with disabled ZMM). (Joshua Rogers)
     . Fixed bug #67647 (Bundled libmagic 5.17 does not detect quicktime files
       correctly). (Anatol)
     . Fixed bug #68731 (finfo_buffer doesn't extract the correct mime with some
       gifs). (Anatol)

   - FPM:
     . Fixed bug #66479 (Wrong response to FCGI_GET_VALUES). (Frank Stolle)
     . Fixed bug #68571 (core dump when webserver close the socket).
       (redfoxli069 at gmail dot com, Laruence)

   - JSON:
     . Fixed bug #50224 (json_encode() does not always encode a float as a float)
       by adding JSON_PRESERVE_ZERO_FRACTION. (Juan Basso)

   - LIBXML:
     . Fixed bug #64938 (libxml_disable_entity_loader setting is shared
       between threads). (Martin Jansen)

   - Mysqli:
     . Fixed bug #68114 (linker error on some OS X machines with fixed
       width decimal support) (Keyur Govande)
     . Fixed bug #68657 (Reading 4 byte floats with Mysqli and libmysqlclient
       has rounding errors) (Keyur Govande)

   - Opcache:
     . Fixed bug with try blocks being removed when extended_info opcode
       generation is turned on. (Laruence)

   - PDO_mysql:
     . Fixed bug #68750 (PDOMysql with mysqlnd does not allow the usage of
       named pipes). (steffenb198 at aol dot com)

   - Phar:
     . Fixed bug #68901 (use after free). (bugreports at internot dot info)

   - Pgsql:
     . Fixed Bug #65199 (pg_copy_from() modifies input array variable) (Yasuo)

   - Session:
     . Fixed bug #68941 (mod_files.sh is a bash-script) (bugzilla at ii.nl, Yasuo)
     . Fixed Bug #66623 (no EINTR check on flock) (Yasuo)
     . Fixed bug #68063 (Empty session IDs do still start sessions) (Yasuo)

   - Sqlite3:
     . Fixed bug #68260 (SQLite3Result::fetchArray declares wrong
       required_num_args). (Julien)

   - Standard:
     . Fixed bug #65272 (flock() out parameter not set correctly in windows).
       (Daniel Lowrey)
     . Fixed bug #69033 (Request may get env. variables from previous requests
       if PHP works as FastCGI). (Anatol)

   - Streams:
     . Fixed bug which caused call after final close on streams filter. (Bob)


To generate a diff of this commit:
cvs rdiff -u -r1.81.2.5 -r1.81.2.6 pkgsrc/lang/php/phpversion.mk
cvs rdiff -u -r1.1.2.1 -r1.1.2.2 pkgsrc/lang/php56/Makefile
cvs rdiff -u -r1.1 -r1.1.2.1 pkgsrc/lang/php56/PLIST
cvs rdiff -u -r1.3.2.2 -r1.3.2.3 pkgsrc/lang/php56/distinfo
cvs rdiff -u -r1.1.2.2 -r0 \
    pkgsrc/lang/php56/patches/patch-ext_date_php_date.c \
    pkgsrc/lang/php56/patches/patch-ext_date_tests_bug68942.phpt \
    pkgsrc/lang/php56/patches/patch-ext_date_tests_bug68942_2.phpt

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [pkgsrc-2014Q4] pkgsrc/lang
Next by Date: CVS commit: pkgsrc/devel/lua-lpeg
Previous by Thread: CVS commit: [pkgsrc-2014Q4] pkgsrc/lang
Next by Thread: CVS commit: pkgsrc/devel/lua-lpeg
Indexes:

Home | Main Index | Thread Index | Old Index