Pullup ticket #5509 - requested by taca
lang/php56: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.184
- lang/php56/Makefile 1.14
- lang/php56/distinfo 1.42
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Jul 7 03:13:48 UTC 2017
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php56: Makefile distinfo
Log Message:
Update php56 to 5.6.31.
06 Jul 2017, PHP 5.6.31
- Core:
. Fixed bug #73807 (Performance problem with processing post request over
2000000 chars). (Nikita)
. Fixed bug #74111 (Heap buffer overread (READ: 1) finish_nested_data from
unserialize). (Nikita)
. Fixed bug #74603 (PHP INI Parsing Stack Buffer Overflow Vulnerability).
(Stas)
. Fixed bug #74819 (wddx_deserialize() heap out-of-bound read via
php_parse_date()). (Derick)
- GD:
. Fixed bug #74435 (Buffer over-read into uninitialized memory). (cmb)
- mbstring:
. Add oniguruma upstream fix (CVE-2017-9224, CVE-2017-9226, CVE-2017-9227,
CVE-2017-9228, CVE-2017-9229) (Remi, Mamoru TASAKA)
- OpenSSL:
. Fixed bug #74651 (negative-size-param (-1) in memcpy in zif_openssl_seal()).
(Stas)
- PCRE:
. Fixed bug #74087 (Segmentation fault in PHP7.1.1(compiled using the bundled PCRE library)).
(Stas)
- WDDX:
. Fixed bug #74145 (wddx parsing empty boolean tag leads to SIGSEGV). (Stas)
(bsiegert)
diff -r1.181.2.2 -r1.181.2.3 pkgsrc/lang/php/phpversion.mk| @@ -1,14 +1,14 @@ | @@ -1,14 +1,14 @@ | |||
| 1 | # $NetBSD: phpversion.mk,v 1.181.2.2 2017/07/15 19:16:20 bsiegert Exp $ | 1 | # $NetBSD: phpversion.mk,v 1.181.2.3 2017/07/15 19:23:43 bsiegert Exp $ | |
| 2 | # | 2 | # | |
| 3 | # This file selects a PHP version, based on the user's preferences and | 3 | # This file selects a PHP version, based on the user's preferences and | |
| 4 | # the installed packages. It does not add a dependency on the PHP | 4 | # the installed packages. It does not add a dependency on the PHP | |
| 5 | # package. | 5 | # package. | |
| 6 | # | 6 | # | |
| 7 | # === User-settable variables === | 7 | # === User-settable variables === | |
| 8 | # | 8 | # | |
| 9 | # PHP_VERSION_DEFAULT | 9 | # PHP_VERSION_DEFAULT | |
| 10 | # The PHP version to choose when more than one is acceptable to | 10 | # The PHP version to choose when more than one is acceptable to | |
| 11 | # the package. | 11 | # the package. | |
| 12 | # | 12 | # | |
| 13 | # Possible: 56 70 71 | 13 | # Possible: 56 70 71 | |
| 14 | # Default: 56 | 14 | # Default: 56 | |
| @@ -77,27 +77,27 @@ | @@ -77,27 +77,27 @@ | |||
| 77 | # PHP_EXTENSION_DIR | 77 | # PHP_EXTENSION_DIR | |
| 78 | # Relative path to ${PREFIX} for PHP's extensions. It is derived from | 78 | # Relative path to ${PREFIX} for PHP's extensions. It is derived from | |
| 79 | # initial release of major version. | 79 | # initial release of major version. | |
| 80 | # | 80 | # | |
| 81 | # Example: lib/php/20140828 | 81 | # Example: lib/php/20140828 | |
| 82 | # | 82 | # | |
| 83 | # Keywords: php | 83 | # Keywords: php | |
| 84 | # | 84 | # | |
| 85 | 85 | |||
| 86 | .if !defined(PHPVERSION_MK) | 86 | .if !defined(PHPVERSION_MK) | |
| 87 | PHPVERSION_MK= defined | 87 | PHPVERSION_MK= defined | |
| 88 | 88 | |||
| 89 | # Define each PHP's version. | 89 | # Define each PHP's version. | |
| 90 | PHP56_VERSION= 5.6.30 | 90 | PHP56_VERSION= 5.6.31 | |
| 91 | PHP70_VERSION= 7.0.21 | 91 | PHP70_VERSION= 7.0.21 | |
| 92 | PHP71_VERSION= 7.1.7 | 92 | PHP71_VERSION= 7.1.7 | |
| 93 | 93 | |||
| 94 | # Define initial release of major version. | 94 | # Define initial release of major version. | |
| 95 | PHP56_RELDATE= 20140828 | 95 | PHP56_RELDATE= 20140828 | |
| 96 | PHP70_RELDATE= 20151203 | 96 | PHP70_RELDATE= 20151203 | |
| 97 | PHP71_RELDATE= 20160303 | 97 | PHP71_RELDATE= 20160303 | |
| 98 | 98 | |||
| 99 | _VARGROUPS+= php | 99 | _VARGROUPS+= php | |
| 100 | _USER_VARS.php= PHP_VERSION_DEFAULT | 100 | _USER_VARS.php= PHP_VERSION_DEFAULT | |
| 101 | _PKG_VARS.php= PHP_VERSIONS_ACCEPTED PHP_VERSION_REQD | 101 | _PKG_VARS.php= PHP_VERSIONS_ACCEPTED PHP_VERSION_REQD | |
| 102 | _SYS_VARS.php= PKG_PHP_VERSION PKG_PHP PHPPKGSRCDIR PHP_PKG_PREFIX \ | 102 | _SYS_VARS.php= PKG_PHP_VERSION PKG_PHP PHPPKGSRCDIR PHP_PKG_PREFIX \ | |
| 103 | PKG_PHP_MAJOR_VERS | 103 | PKG_PHP_MAJOR_VERS |
| @@ -1,20 +1,19 @@ | @@ -1,20 +1,19 @@ | |||
| 1 | # $NetBSD: Makefile,v 1.13 2017/04/05 12:28:59 fhajny Exp $ | 1 | # $NetBSD: Makefile,v 1.13.2.1 2017/07/15 19:23:43 bsiegert Exp $ | |
| 2 | 2 | |||
| 3 | # | 3 | # | |
| 4 | # We can't omit PKGNAME here to handle PKG_OPTIONS. | 4 | # We can't omit PKGNAME here to handle PKG_OPTIONS. | |
| 5 | # | 5 | # | |
| 6 | PKGNAME= php-${PHP_VERSION} | 6 | PKGNAME= php-${PHP_VERSION} | |
| 7 | PKGREVISION= 1 | |||
| 8 | CATEGORIES= lang | 7 | CATEGORIES= lang | |
| 9 | 8 | |||
| 10 | HOMEPAGE= http://www.php.net/ | 9 | HOMEPAGE= http://www.php.net/ | |
| 11 | COMMENT= PHP Hypertext Preprocessor version 5.6 | 10 | COMMENT= PHP Hypertext Preprocessor version 5.6 | |
| 12 | LICENSE= php | 11 | LICENSE= php | |
| 13 | 12 | |||
| 14 | TEST_TARGET= test | 13 | TEST_TARGET= test | |
| 15 | 14 | |||
| 16 | USE_TOOLS+= gmake lex pkg-config | 15 | USE_TOOLS+= gmake lex pkg-config | |
| 17 | LIBTOOL_OVERRIDE= # empty | 16 | LIBTOOL_OVERRIDE= # empty | |
| 18 | PHP_CHECK_INSTALLED= No | 17 | PHP_CHECK_INSTALLED= No | |
| 19 | 18 | |||
| 20 | PHP_VERSIONS_ACCEPTED= 56 | 19 | PHP_VERSIONS_ACCEPTED= 56 |
| @@ -1,19 +1,19 @@ | @@ -1,19 +1,19 @@ | |||
| 1 | $NetBSD: distinfo,v 1.41 2017/04/05 12:28:59 fhajny Exp $ | 1 | $NetBSD: distinfo,v 1.41.2.1 2017/07/15 19:23:43 bsiegert Exp $ | |
| 2 | 2 | |||
| 3 | SHA1 (php-5.6.30.tar.bz2) = 9ac486b7f86c01a297375cae5728b424ac5790ce | 3 | SHA1 (php-5.6.31.tar.bz2) = a4ea2b095c60d61958a43ca4151acfaf4ac82e4c | |
| 4 | RMD160 (php-5.6.30.tar.bz2) = 445f7a88b802f88484671e2981f44147b13794fc | 4 | RMD160 (php-5.6.31.tar.bz2) = e1512f94a9d1054ef136921787a47359d9cdd9bf | |
| 5 | SHA512 (php-5.6.30.tar.bz2) = 12734d786cca5767b8b8838affbe1c3d578dd179c8d5339653d905658562c5fdf39a88349213b1340f320320700a5378aed617447b6e15909019788a49ad2da0 | 5 | SHA512 (php-5.6.31.tar.bz2) = fe0a0572917287a89910cc4d1bca7a8be17fb09d0459d68fea7b32f4b9fd94efbf36d90f8d7d34baee60efc6b0aeac1414a658fc0b451c5eb2f8e3864e20e3c0 | |
| 6 | Size (php-5.6.30.tar.bz2) = 15011816 bytes | 6 | Size (php-5.6.31.tar.bz2) = 15028813 bytes | |
| 7 | SHA1 (patch-acinclude.m4) = 34d38d2538cc00932cdfcc80d1d4a91632cd15d0 | 7 | SHA1 (patch-acinclude.m4) = 34d38d2538cc00932cdfcc80d1d4a91632cd15d0 | |
| 8 | SHA1 (patch-configure) = 5d76f71aa903efa3c3491b908ff76419aa4af27c | 8 | SHA1 (patch-configure) = 5d76f71aa903efa3c3491b908ff76419aa4af27c | |
| 9 | SHA1 (patch-ext_gd_config.m4) = b92ab4c7fe8aceaef7787a607a7d2eac258fee19 | 9 | SHA1 (patch-ext_gd_config.m4) = b92ab4c7fe8aceaef7787a607a7d2eac258fee19 | |
| 10 | SHA1 (patch-ext_imap_config.m4) = 9c6ed6966366c4fe1b7cfd34b5910e2ff0e68577 | 10 | SHA1 (patch-ext_imap_config.m4) = 9c6ed6966366c4fe1b7cfd34b5910e2ff0e68577 | |
| 11 | SHA1 (patch-ext_mssql_php__mssql.c) = c4fa9231dc539ffb027f1beb6f182f21ddb94a3c | 11 | SHA1 (patch-ext_mssql_php__mssql.c) = c4fa9231dc539ffb027f1beb6f182f21ddb94a3c | |
| 12 | SHA1 (patch-ext_pcre_pcrelib_config.h) = 26588e9932ee715e32c872a1c7e2f9c640bd9cf8 | 12 | SHA1 (patch-ext_pcre_pcrelib_config.h) = 26588e9932ee715e32c872a1c7e2f9c640bd9cf8 | |
| 13 | SHA1 (patch-ext_pdo__mysql_config.m4) = 9d25c673fc151e1b8ae137f2a0fc540189ef5398 | 13 | SHA1 (patch-ext_pdo__mysql_config.m4) = 9d25c673fc151e1b8ae137f2a0fc540189ef5398 | |
| 14 | SHA1 (patch-ext_pdo_config.m4) = f6deef3ac631769baa587dd7c27e55bd2e9ca6a5 | 14 | SHA1 (patch-ext_pdo_config.m4) = f6deef3ac631769baa587dd7c27e55bd2e9ca6a5 | |
| 15 | SHA1 (patch-ext_phar_Makefile.frag) = 1564c188e57d48f83de7c2420fdde183598539e2 | 15 | SHA1 (patch-ext_phar_Makefile.frag) = 1564c188e57d48f83de7c2420fdde183598539e2 | |
| 16 | SHA1 (patch-ext_phar_phar_phar.php) = 5a82d55c7965027115065412f9b68defb278db64 | 16 | SHA1 (patch-ext_phar_phar_phar.php) = 5a82d55c7965027115065412f9b68defb278db64 | |
| 17 | SHA1 (patch-ext_recode_recode.c) = a97a1815d6a41410f68c289debbb9396128a2159 | 17 | SHA1 (patch-ext_recode_recode.c) = a97a1815d6a41410f68c289debbb9396128a2159 | |
| 18 | SHA1 (patch-ext_sqlite3_libsqlite_sqlite3.c) = 85cd8f3e115705aa2eeab0e7229f24422e322a7f | 18 | SHA1 (patch-ext_sqlite3_libsqlite_sqlite3.c) = 85cd8f3e115705aa2eeab0e7229f24422e322a7f | |
| 19 | SHA1 (patch-ext_standard_basic__functions.c) = 669fe55c975bf2d971f6fdcb5b3004f7e20304d2 | 19 | SHA1 (patch-ext_standard_basic__functions.c) = 669fe55c975bf2d971f6fdcb5b3004f7e20304d2 |