Wed Mar 4 18:52:36 2015 UTC ()
Pullup ticket #4633 - requested by taca
lang/php56: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.88
- lang/php56/Makefile                                           1.4
- lang/php56/PLIST                                              1.2
- lang/php56/distinfo                                           1.6
- lang/php56/patches/patch-ext_date_php_date.c                  deleted
- lang/php56/patches/patch-ext_date_tests_bug68942.phpt         deleted
- lang/php56/patches/patch-ext_date_tests_bug68942_2.phpt       deleted

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Feb 20 01:17:50 UTC 2015

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php56: Makefile PLIST distinfo
   Removed Files:
   	pkgsrc/lang/php56/patches: patch-ext_date_php_date.c
   	    patch-ext_date_tests_bug68942.phpt
   	    patch-ext_date_tests_bug68942_2.phpt

   Log Message:
   Update php56 to 5.6.6 (PHP 5.6.6).

   19 Feb 2015, PHP 5.6.6

   - Core:
     . Removed support for multi-line headers, as the are deprecated by RFC 7230.
       (Stas)
     . Fixed bug #67068 (getClosure returns somethings that's not a closure).
       (Danack at basereality dot com)
     . Fixed bug #68942 (Use after free vulnerability in unserialize() with
       DateTimeZone). (CVE-2015-0273) (Stas)
     . Fixed bug #68925 (Mitigation for CVE-2015-0235 – GHOST: glibc gethostbyname
       buffer overflow). (Stas)
     . Fixed Bug #67988 (htmlspecialchars() does not respect default_charset
       specified by ini_set) (Yasuo)
     . Added NULL byte protection to exec, system and passthru. (Yasuo)

   - Dba:
     . Fixed bug #68711 (useless comparisons). (bugreports at internot dot info)

   - Enchant:
     . Fixed bug #68552 (heap buffer overflow in enchant_broker_request_dict()).
       (Antony)

   - Fileinfo:
     . Fixed bug #68827 (Double free with disabled ZMM). (Joshua Rogers)
     . Fixed bug #67647 (Bundled libmagic 5.17 does not detect quicktime files
       correctly). (Anatol)
     . Fixed bug #68731 (finfo_buffer doesn't extract the correct mime with some
       gifs). (Anatol)

   - FPM:
     . Fixed bug #66479 (Wrong response to FCGI_GET_VALUES). (Frank Stolle)
     . Fixed bug #68571 (core dump when webserver close the socket).
       (redfoxli069 at gmail dot com, Laruence)

   - JSON:
     . Fixed bug #50224 (json_encode() does not always encode a float as a float)
       by adding JSON_PRESERVE_ZERO_FRACTION. (Juan Basso)

   - LIBXML:
     . Fixed bug #64938 (libxml_disable_entity_loader setting is shared
       between threads). (Martin Jansen)

   - Mysqli:
     . Fixed bug #68114 (linker error on some OS X machines with fixed
       width decimal support) (Keyur Govande)
     . Fixed bug #68657 (Reading 4 byte floats with Mysqli and libmysqlclient
       has rounding errors) (Keyur Govande)

   - Opcache:
     . Fixed bug with try blocks being removed when extended_info opcode
       generation is turned on. (Laruence)

   - PDO_mysql:
     . Fixed bug #68750 (PDOMysql with mysqlnd does not allow the usage of
       named pipes). (steffenb198 at aol dot com)

   - Phar:
     . Fixed bug #68901 (use after free). (bugreports at internot dot info)

   - Pgsql:
     . Fixed Bug #65199 (pg_copy_from() modifies input array variable) (Yasuo)

   - Session:
     . Fixed bug #68941 (mod_files.sh is a bash-script) (bugzilla at ii.nl, Yasuo)
     . Fixed Bug #66623 (no EINTR check on flock) (Yasuo)
     . Fixed bug #68063 (Empty session IDs do still start sessions) (Yasuo)

   - Sqlite3:
     . Fixed bug #68260 (SQLite3Result::fetchArray declares wrong
       required_num_args). (Julien)

   - Standard:
     . Fixed bug #65272 (flock() out parameter not set correctly in windows).
       (Daniel Lowrey)
     . Fixed bug #69033 (Request may get env. variables from previous requests
       if PHP works as FastCGI). (Anatol)

   - Streams:
     . Fixed bug which caused call after final close on streams filter. (Bob)


(tron)
diff -r1.81.2.5 -r1.81.2.6 pkgsrc/lang/php/phpversion.mk
diff -r1.1.2.1 -r1.1.2.2 pkgsrc/lang/php56/Makefile
diff -r1.1 -r1.1.2.1 pkgsrc/lang/php56/PLIST
diff -r1.3.2.2 -r1.3.2.3 pkgsrc/lang/php56/distinfo
diff -r1.1.2.2 -r0 pkgsrc/lang/php56/patches/patch-ext_date_php_date.c
diff -r1.1.2.2 -r0 pkgsrc/lang/php56/patches/patch-ext_date_tests_bug68942.phpt
diff -r1.1.2.2 -r0 pkgsrc/lang/php56/patches/patch-ext_date_tests_bug68942_2.phpt
cvs diff -r1.81.2.5 -r1.81.2.6 pkgsrc/lang/php/phpversion.mk (expand / switch to unified diff)

--- pkgsrc/lang/php/phpversion.mk 2015/03/03 20:58:45 1.81.2.5
+++ pkgsrc/lang/php/phpversion.mk 2015/03/04 18:52:36 1.81.2.6
@@ -1,14 +1,14 @@ @@ -1,14 +1,14 @@
1# $NetBSD: phpversion.mk,v 1.81.2.5 2015/03/03 20:58:45 tron Exp $ 1# $NetBSD: phpversion.mk,v 1.81.2.6 2015/03/04 18:52:36 tron Exp $
2# 2#
3# This file selects a PHP version, based on the user's preferences and 3# This file selects a PHP version, based on the user's preferences and
4# the installed packages. It does not add a dependency on the PHP 4# the installed packages. It does not add a dependency on the PHP
5# package. 5# package.
6# 6#
7# === User-settable variables === 7# === User-settable variables ===
8# 8#
9# PHP_VERSION_DEFAULT 9# PHP_VERSION_DEFAULT
10# The PHP version to choose when more than one is acceptable to 10# The PHP version to choose when more than one is acceptable to
11# the package. 11# the package.
12# 12#
13# Possible: 53 54 55 56 13# Possible: 53 54 55 56
14# Default: 54 14# Default: 54
@@ -74,27 +74,27 @@ @@ -74,27 +74,27 @@
74# 74#
75# Example: lib/php/20090630 75# Example: lib/php/20090630
76# 76#
77# Keywords: php 77# Keywords: php
78# 78#
79 79
80.if !defined(PHPVERSION_MK) 80.if !defined(PHPVERSION_MK)
81PHPVERSION_MK= defined 81PHPVERSION_MK= defined
82 82
83# Define each PHP's version. 83# Define each PHP's version.
84PHP53_VERSION= 5.3.29 84PHP53_VERSION= 5.3.29
85PHP54_VERSION= 5.4.38 85PHP54_VERSION= 5.4.38
86PHP55_VERSION= 5.5.22 86PHP55_VERSION= 5.5.22
87PHP56_VERSION= 5.6.5 87PHP56_VERSION= 5.6.6
88 88
89# Define initial release of major version. 89# Define initial release of major version.
90PHP53_RELDATE= 20090630 90PHP53_RELDATE= 20090630
91PHP54_RELDATE= 20120301 91PHP54_RELDATE= 20120301
92PHP55_RELDATE= 20130620 92PHP55_RELDATE= 20130620
93PHP56_RELDATE= 20140828 93PHP56_RELDATE= 20140828
94 94
95_VARGROUPS+= php 95_VARGROUPS+= php
96_USER_VARS.php= PHP_VERSION_DEFAULT 96_USER_VARS.php= PHP_VERSION_DEFAULT
97_PKG_VARS.php= PHP_VERSIONS_ACCEPTED PHP_VERSION_REQD 97_PKG_VARS.php= PHP_VERSIONS_ACCEPTED PHP_VERSION_REQD
98_SYS_VARS.php= PKG_PHP_VERSION PKG_PHP PHPPKGSRCDIR PHP_PKG_PREFIX \ 98_SYS_VARS.php= PKG_PHP_VERSION PKG_PHP PHPPKGSRCDIR PHP_PKG_PREFIX \
99 PKG_PHP_MAJOR_VERS 99 PKG_PHP_MAJOR_VERS
100 100
cvs diff -r1.1.2.1 -r1.1.2.2 pkgsrc/lang/php56/Makefile (expand / switch to unified diff)

--- pkgsrc/lang/php56/Makefile 2015/02/19 19:18:59 1.1.2.1
+++ pkgsrc/lang/php56/Makefile 2015/03/04 18:52:36 1.1.2.2
@@ -1,20 +1,19 @@ @@ -1,20 +1,19 @@
1# $NetBSD: Makefile,v 1.1.2.1 2015/02/19 19:18:59 tron Exp $ 1# $NetBSD: Makefile,v 1.1.2.2 2015/03/04 18:52:36 tron Exp $
2 2
3# 3#
4# We can't omit PKGNAME here to handle PKG_OPTIONS. 4# We can't omit PKGNAME here to handle PKG_OPTIONS.
5# 5#
6PKGNAME= php-${PHP_BASE_VERS} 6PKGNAME= php-${PHP_BASE_VERS}
7PKGREVISION= 1 
8CATEGORIES= lang 7CATEGORIES= lang
9 8
10HOMEPAGE= http://www.php.net/ 9HOMEPAGE= http://www.php.net/
11COMMENT= PHP Hypertext Preprocessor version 5.6 10COMMENT= PHP Hypertext Preprocessor version 5.6
12LICENSE= php 11LICENSE= php
13 12
14TEST_TARGET= test 13TEST_TARGET= test
15 14
16USE_TOOLS+= gmake lex pkg-config 15USE_TOOLS+= gmake lex pkg-config
17LIBTOOL_OVERRIDE= # empty 16LIBTOOL_OVERRIDE= # empty
18PHP_CHECK_INSTALLED= No 17PHP_CHECK_INSTALLED= No
19 18
20PHP_VERSIONS_ACCEPTED= 56 19PHP_VERSIONS_ACCEPTED= 56
cvs diff -r1.1 -r1.1.2.1 pkgsrc/lang/php56/PLIST (expand / switch to unified diff)

--- pkgsrc/lang/php56/PLIST 2014/11/24 15:37:08 1.1
+++ pkgsrc/lang/php56/PLIST 2015/03/04 18:52:36 1.1.2.1
@@ -1,14 +1,14 @@ @@ -1,14 +1,14 @@
1@comment $NetBSD: PLIST,v 1.1 2014/11/24 15:37:08 taca Exp $ 1@comment $NetBSD: PLIST,v 1.1.2.1 2015/03/04 18:52:36 tron Exp $
2bin/phar 2bin/phar
3bin/phar.phar 3bin/phar.phar
4bin/php 4bin/php
5bin/php-config 5bin/php-config
6bin/phpize 6bin/phpize
7include/php/TSRM/TSRM.h 7include/php/TSRM/TSRM.h
8include/php/TSRM/readdir.h 8include/php/TSRM/readdir.h
9include/php/TSRM/tsrm_config.h 9include/php/TSRM/tsrm_config.h
10include/php/TSRM/tsrm_config.w32.h 10include/php/TSRM/tsrm_config.w32.h
11include/php/TSRM/tsrm_config_common.h 11include/php/TSRM/tsrm_config_common.h
12include/php/TSRM/tsrm_nw.h 12include/php/TSRM/tsrm_nw.h
13include/php/TSRM/tsrm_strtok_r.h 13include/php/TSRM/tsrm_strtok_r.h
14include/php/TSRM/tsrm_win32.h 14include/php/TSRM/tsrm_win32.h
@@ -86,26 +86,27 @@ include/php/ext/hash/php_hash_adler32.h @@ -86,26 +86,27 @@ include/php/ext/hash/php_hash_adler32.h
86include/php/ext/hash/php_hash_crc32.h 86include/php/ext/hash/php_hash_crc32.h
87include/php/ext/hash/php_hash_fnv.h 87include/php/ext/hash/php_hash_fnv.h
88include/php/ext/hash/php_hash_gost.h 88include/php/ext/hash/php_hash_gost.h
89include/php/ext/hash/php_hash_haval.h 89include/php/ext/hash/php_hash_haval.h
90include/php/ext/hash/php_hash_joaat.h 90include/php/ext/hash/php_hash_joaat.h
91include/php/ext/hash/php_hash_md.h 91include/php/ext/hash/php_hash_md.h
92include/php/ext/hash/php_hash_ripemd.h 92include/php/ext/hash/php_hash_ripemd.h
93include/php/ext/hash/php_hash_sha.h 93include/php/ext/hash/php_hash_sha.h
94include/php/ext/hash/php_hash_snefru.h 94include/php/ext/hash/php_hash_snefru.h
95include/php/ext/hash/php_hash_tiger.h 95include/php/ext/hash/php_hash_tiger.h
96include/php/ext/hash/php_hash_whirlpool.h 96include/php/ext/hash/php_hash_whirlpool.h
97include/php/ext/libxml/php_libxml.h 97include/php/ext/libxml/php_libxml.h
98include/php/ext/mysqlnd/config-win.h 98include/php/ext/mysqlnd/config-win.h
 99include/php/ext/mysqlnd/mysql_float_to_double.h
99include/php/ext/mysqlnd/mysqlnd.h 100include/php/ext/mysqlnd/mysqlnd.h
100include/php/ext/mysqlnd/mysqlnd_alloc.h 101include/php/ext/mysqlnd/mysqlnd_alloc.h
101include/php/ext/mysqlnd/mysqlnd_block_alloc.h 102include/php/ext/mysqlnd/mysqlnd_block_alloc.h
102include/php/ext/mysqlnd/mysqlnd_charset.h 103include/php/ext/mysqlnd/mysqlnd_charset.h
103include/php/ext/mysqlnd/mysqlnd_debug.h 104include/php/ext/mysqlnd/mysqlnd_debug.h
104include/php/ext/mysqlnd/mysqlnd_enum_n_def.h 105include/php/ext/mysqlnd/mysqlnd_enum_n_def.h
105include/php/ext/mysqlnd/mysqlnd_ext_plugin.h 106include/php/ext/mysqlnd/mysqlnd_ext_plugin.h
106include/php/ext/mysqlnd/mysqlnd_libmysql_compat.h 107include/php/ext/mysqlnd/mysqlnd_libmysql_compat.h
107include/php/ext/mysqlnd/mysqlnd_net.h 108include/php/ext/mysqlnd/mysqlnd_net.h
108include/php/ext/mysqlnd/mysqlnd_portability.h 109include/php/ext/mysqlnd/mysqlnd_portability.h
109include/php/ext/mysqlnd/mysqlnd_priv.h 110include/php/ext/mysqlnd/mysqlnd_priv.h
110include/php/ext/mysqlnd/mysqlnd_result.h 111include/php/ext/mysqlnd/mysqlnd_result.h
111include/php/ext/mysqlnd/mysqlnd_result_meta.h 112include/php/ext/mysqlnd/mysqlnd_result_meta.h
cvs diff -r1.3.2.2 -r1.3.2.3 pkgsrc/lang/php56/distinfo (expand / switch to unified diff)

--- pkgsrc/lang/php56/distinfo 2015/02/19 19:18:59 1.3.2.2
+++ pkgsrc/lang/php56/distinfo 2015/03/04 18:52:36 1.3.2.3
@@ -1,25 +1,22 @@ @@ -1,25 +1,22 @@
1$NetBSD: distinfo,v 1.3.2.2 2015/02/19 19:18:59 tron Exp $ 1$NetBSD: distinfo,v 1.3.2.3 2015/03/04 18:52:36 tron Exp $
2 2
3SHA1 (php-5.6.5.tar.bz2) = a523a13110a66f020c36f088089d2c5c7de9f6a9 3SHA1 (php-5.6.6.tar.bz2) = 6795db456f66193634ff38cf8039636b168eda3c
4RMD160 (php-5.6.5.tar.bz2) = 9c9219b69187c2b14c9bb3b74ef30a65dbf458ed 4RMD160 (php-5.6.6.tar.bz2) = 8d9a30c550397b9863cefbb7ea012b6a7e7e26ff
5Size (php-5.6.5.tar.bz2) = 13556146 bytes 5Size (php-5.6.6.tar.bz2) = 13687928 bytes
6SHA1 (patch-acinclude.m4) = b38fc34c3a3847dc317e8e286612b21ec8fd5ce8 6SHA1 (patch-acinclude.m4) = b38fc34c3a3847dc317e8e286612b21ec8fd5ce8
7SHA1 (patch-aclocal.m4) = 49117c42e03bd3ed57d967d33ba543f936013b4f 7SHA1 (patch-aclocal.m4) = 49117c42e03bd3ed57d967d33ba543f936013b4f
8SHA1 (patch-build_libtool.m4) = f459cda09cbdad9780568d271091fb17bbc5d965 8SHA1 (patch-build_libtool.m4) = f459cda09cbdad9780568d271091fb17bbc5d965
9SHA1 (patch-configure) = d3d44c814deb0264fd4fc41908c2ff31fde00b0d 9SHA1 (patch-configure) = d3d44c814deb0264fd4fc41908c2ff31fde00b0d
10SHA1 (patch-ext_date_php_date.c) = a5d594d5b054f170f5cd129c0a9ddec6334cce9a 
11SHA1 (patch-ext_date_tests_bug68942.phpt) = d3ebf7a5f78bf8b4b3f1a0c85d40480c335b491e 
12SHA1 (patch-ext_date_tests_bug68942_2.phpt) = af2a9ffef7c7f0ecf5425e96cfb67dd3beac6827 
13SHA1 (patch-ext_gd_config.m4) = 4b44853250eb4a638af4c663e618307ff25d2cbd 10SHA1 (patch-ext_gd_config.m4) = 4b44853250eb4a638af4c663e618307ff25d2cbd
14SHA1 (patch-ext_imap_config.m4) = 9c6ed6966366c4fe1b7cfd34b5910e2ff0e68577 11SHA1 (patch-ext_imap_config.m4) = 9c6ed6966366c4fe1b7cfd34b5910e2ff0e68577
15SHA1 (patch-ext_mssql_php__mssql.c) = c4fa9231dc539ffb027f1beb6f182f21ddb94a3c 12SHA1 (patch-ext_mssql_php__mssql.c) = c4fa9231dc539ffb027f1beb6f182f21ddb94a3c
16SHA1 (patch-ext_opcache_config.m4) = 031db201f68a120615561a5abd3e84aff58b523d 13SHA1 (patch-ext_opcache_config.m4) = 031db201f68a120615561a5abd3e84aff58b523d
17SHA1 (patch-ext_pdo__mysql_config.m4) = 9d25c673fc151e1b8ae137f2a0fc540189ef5398 14SHA1 (patch-ext_pdo__mysql_config.m4) = 9d25c673fc151e1b8ae137f2a0fc540189ef5398
18SHA1 (patch-ext_pdo_config.m4) = f6deef3ac631769baa587dd7c27e55bd2e9ca6a5 15SHA1 (patch-ext_pdo_config.m4) = f6deef3ac631769baa587dd7c27e55bd2e9ca6a5
19SHA1 (patch-ext_phar_Makefile.frag) = 3dc3627a908d129b54cfb745d60e352e0372b271 16SHA1 (patch-ext_phar_Makefile.frag) = 3dc3627a908d129b54cfb745d60e352e0372b271
20SHA1 (patch-ext_phar_phar_phar.php) = 5a82d55c7965027115065412f9b68defb278db64 17SHA1 (patch-ext_phar_phar_phar.php) = 5a82d55c7965027115065412f9b68defb278db64
21SHA1 (patch-ext_sqlite3_libsqlite_sqlite3.c) = 85cd8f3e115705aa2eeab0e7229f24422e322a7f 18SHA1 (patch-ext_sqlite3_libsqlite_sqlite3.c) = 85cd8f3e115705aa2eeab0e7229f24422e322a7f
22SHA1 (patch-ext_standard_basic__functions.c) = 669fe55c975bf2d971f6fdcb5b3004f7e20304d2 19SHA1 (patch-ext_standard_basic__functions.c) = 669fe55c975bf2d971f6fdcb5b3004f7e20304d2
23SHA1 (patch-makedist) = 8e8660b2e0a34f06f433e24dbb0a9c872963e419 20SHA1 (patch-makedist) = 8e8660b2e0a34f06f433e24dbb0a9c872963e419
24SHA1 (patch-php.ini-development) = 3c54a41310d28ecff4996c966934350368657c2f 21SHA1 (patch-php.ini-development) = 3c54a41310d28ecff4996c966934350368657c2f
25SHA1 (patch-php.ini-production) = 9b7ae64f3133139f0c3d42753ad5d8622873423d 22SHA1 (patch-php.ini-production) = 9b7ae64f3133139f0c3d42753ad5d8622873423d
File Deleted: pkgsrc/lang/php56/patches/Attic/patch-ext_date_php_date.c
File Deleted: pkgsrc/lang/php56/patches/Attic/patch-ext_date_tests_bug68942.phpt
File Deleted: pkgsrc/lang/php56/patches/Attic/patch-ext_date_tests_bug68942_2.phpt