Pullup ticket #5509 - requested by taca lang/php56: security fix Revisions pulled up: - lang/php/phpversion.mk 1.184 - lang/php56/Makefile 1.14 - lang/php56/distinfo 1.42 --- Module Name: pkgsrc Committed By: taca Date: Fri Jul 7 03:13:48 UTC 2017 Modified Files: pkgsrc/lang/php: phpversion.mk pkgsrc/lang/php56: Makefile distinfo Log Message: Update php56 to 5.6.31. 06 Jul 2017, PHP 5.6.31 - Core: . Fixed bug #73807 (Performance problem with processing post request over 2000000 chars). (Nikita) . Fixed bug #74111 (Heap buffer overread (READ: 1) finish_nested_data from unserialize). (Nikita) . Fixed bug #74603 (PHP INI Parsing Stack Buffer Overflow Vulnerability). (Stas) . Fixed bug #74819 (wddx_deserialize() heap out-of-bound read via php_parse_date()). (Derick) - GD: . Fixed bug #74435 (Buffer over-read into uninitialized memory). (cmb) - mbstring: . Add oniguruma upstream fix (CVE-2017-9224, CVE-2017-9226, CVE-2017-9227, CVE-2017-9228, CVE-2017-9229) (Remi, Mamoru TASAKA) - OpenSSL: . Fixed bug #74651 (negative-size-param (-1) in memcpy in zif_openssl_seal()). (Stas) - PCRE: . Fixed bug #74087 (Segmentation fault in PHP7.1.1(compiled using the bundled PCRE library)). (Stas) - WDDX: . Fixed bug #74145 (wddx parsing empty boolean tag leads to SIGSEGV). (Stas)diff -r1.181.2.2 -r1.181.2.3 pkgsrc/lang/php/phpversion.mk
(bsiegert)
@@ -1,14 +1,14 @@ | @@ -1,14 +1,14 @@ | |||
1 | # $NetBSD: phpversion.mk,v 1.181.2.2 2017/07/15 19:16:20 bsiegert Exp $ | 1 | # $NetBSD: phpversion.mk,v 1.181.2.3 2017/07/15 19:23:43 bsiegert Exp $ | |
2 | # | 2 | # | |
3 | # This file selects a PHP version, based on the user's preferences and | 3 | # This file selects a PHP version, based on the user's preferences and | |
4 | # the installed packages. It does not add a dependency on the PHP | 4 | # the installed packages. It does not add a dependency on the PHP | |
5 | # package. | 5 | # package. | |
6 | # | 6 | # | |
7 | # === User-settable variables === | 7 | # === User-settable variables === | |
8 | # | 8 | # | |
9 | # PHP_VERSION_DEFAULT | 9 | # PHP_VERSION_DEFAULT | |
10 | # The PHP version to choose when more than one is acceptable to | 10 | # The PHP version to choose when more than one is acceptable to | |
11 | # the package. | 11 | # the package. | |
12 | # | 12 | # | |
13 | # Possible: 56 70 71 | 13 | # Possible: 56 70 71 | |
14 | # Default: 56 | 14 | # Default: 56 | |
@@ -77,27 +77,27 @@ | @@ -77,27 +77,27 @@ | |||
77 | # PHP_EXTENSION_DIR | 77 | # PHP_EXTENSION_DIR | |
78 | # Relative path to ${PREFIX} for PHP's extensions. It is derived from | 78 | # Relative path to ${PREFIX} for PHP's extensions. It is derived from | |
79 | # initial release of major version. | 79 | # initial release of major version. | |
80 | # | 80 | # | |
81 | # Example: lib/php/20140828 | 81 | # Example: lib/php/20140828 | |
82 | # | 82 | # | |
83 | # Keywords: php | 83 | # Keywords: php | |
84 | # | 84 | # | |
85 | 85 | |||
86 | .if !defined(PHPVERSION_MK) | 86 | .if !defined(PHPVERSION_MK) | |
87 | PHPVERSION_MK= defined | 87 | PHPVERSION_MK= defined | |
88 | 88 | |||
89 | # Define each PHP's version. | 89 | # Define each PHP's version. | |
90 | PHP56_VERSION= 5.6.30 | 90 | PHP56_VERSION= 5.6.31 | |
91 | PHP70_VERSION= 7.0.21 | 91 | PHP70_VERSION= 7.0.21 | |
92 | PHP71_VERSION= 7.1.7 | 92 | PHP71_VERSION= 7.1.7 | |
93 | 93 | |||
94 | # Define initial release of major version. | 94 | # Define initial release of major version. | |
95 | PHP56_RELDATE= 20140828 | 95 | PHP56_RELDATE= 20140828 | |
96 | PHP70_RELDATE= 20151203 | 96 | PHP70_RELDATE= 20151203 | |
97 | PHP71_RELDATE= 20160303 | 97 | PHP71_RELDATE= 20160303 | |
98 | 98 | |||
99 | _VARGROUPS+= php | 99 | _VARGROUPS+= php | |
100 | _USER_VARS.php= PHP_VERSION_DEFAULT | 100 | _USER_VARS.php= PHP_VERSION_DEFAULT | |
101 | _PKG_VARS.php= PHP_VERSIONS_ACCEPTED PHP_VERSION_REQD | 101 | _PKG_VARS.php= PHP_VERSIONS_ACCEPTED PHP_VERSION_REQD | |
102 | _SYS_VARS.php= PKG_PHP_VERSION PKG_PHP PHPPKGSRCDIR PHP_PKG_PREFIX \ | 102 | _SYS_VARS.php= PKG_PHP_VERSION PKG_PHP PHPPKGSRCDIR PHP_PKG_PREFIX \ | |
103 | PKG_PHP_MAJOR_VERS | 103 | PKG_PHP_MAJOR_VERS |
@@ -1,20 +1,19 @@ | @@ -1,20 +1,19 @@ | |||
1 | # $NetBSD: Makefile,v 1.13 2017/04/05 12:28:59 fhajny Exp $ | 1 | # $NetBSD: Makefile,v 1.13.2.1 2017/07/15 19:23:43 bsiegert Exp $ | |
2 | 2 | |||
3 | # | 3 | # | |
4 | # We can't omit PKGNAME here to handle PKG_OPTIONS. | 4 | # We can't omit PKGNAME here to handle PKG_OPTIONS. | |
5 | # | 5 | # | |
6 | PKGNAME= php-${PHP_VERSION} | 6 | PKGNAME= php-${PHP_VERSION} | |
7 | PKGREVISION= 1 | |||
8 | CATEGORIES= lang | 7 | CATEGORIES= lang | |
9 | 8 | |||
10 | HOMEPAGE= http://www.php.net/ | 9 | HOMEPAGE= http://www.php.net/ | |
11 | COMMENT= PHP Hypertext Preprocessor version 5.6 | 10 | COMMENT= PHP Hypertext Preprocessor version 5.6 | |
12 | LICENSE= php | 11 | LICENSE= php | |
13 | 12 | |||
14 | TEST_TARGET= test | 13 | TEST_TARGET= test | |
15 | 14 | |||
16 | USE_TOOLS+= gmake lex pkg-config | 15 | USE_TOOLS+= gmake lex pkg-config | |
17 | LIBTOOL_OVERRIDE= # empty | 16 | LIBTOOL_OVERRIDE= # empty | |
18 | PHP_CHECK_INSTALLED= No | 17 | PHP_CHECK_INSTALLED= No | |
19 | 18 | |||
20 | PHP_VERSIONS_ACCEPTED= 56 | 19 | PHP_VERSIONS_ACCEPTED= 56 |
@@ -1,19 +1,19 @@ | @@ -1,19 +1,19 @@ | |||
1 | $NetBSD: distinfo,v 1.41 2017/04/05 12:28:59 fhajny Exp $ | 1 | $NetBSD: distinfo,v 1.41.2.1 2017/07/15 19:23:43 bsiegert Exp $ | |
2 | 2 | |||
3 | SHA1 (php-5.6.30.tar.bz2) = 9ac486b7f86c01a297375cae5728b424ac5790ce | 3 | SHA1 (php-5.6.31.tar.bz2) = a4ea2b095c60d61958a43ca4151acfaf4ac82e4c | |
4 | RMD160 (php-5.6.30.tar.bz2) = 445f7a88b802f88484671e2981f44147b13794fc | 4 | RMD160 (php-5.6.31.tar.bz2) = e1512f94a9d1054ef136921787a47359d9cdd9bf | |
5 | SHA512 (php-5.6.30.tar.bz2) = 12734d786cca5767b8b8838affbe1c3d578dd179c8d5339653d905658562c5fdf39a88349213b1340f320320700a5378aed617447b6e15909019788a49ad2da0 | 5 | SHA512 (php-5.6.31.tar.bz2) = fe0a0572917287a89910cc4d1bca7a8be17fb09d0459d68fea7b32f4b9fd94efbf36d90f8d7d34baee60efc6b0aeac1414a658fc0b451c5eb2f8e3864e20e3c0 | |
6 | Size (php-5.6.30.tar.bz2) = 15011816 bytes | 6 | Size (php-5.6.31.tar.bz2) = 15028813 bytes | |
7 | SHA1 (patch-acinclude.m4) = 34d38d2538cc00932cdfcc80d1d4a91632cd15d0 | 7 | SHA1 (patch-acinclude.m4) = 34d38d2538cc00932cdfcc80d1d4a91632cd15d0 | |
8 | SHA1 (patch-configure) = 5d76f71aa903efa3c3491b908ff76419aa4af27c | 8 | SHA1 (patch-configure) = 5d76f71aa903efa3c3491b908ff76419aa4af27c | |
9 | SHA1 (patch-ext_gd_config.m4) = b92ab4c7fe8aceaef7787a607a7d2eac258fee19 | 9 | SHA1 (patch-ext_gd_config.m4) = b92ab4c7fe8aceaef7787a607a7d2eac258fee19 | |
10 | SHA1 (patch-ext_imap_config.m4) = 9c6ed6966366c4fe1b7cfd34b5910e2ff0e68577 | 10 | SHA1 (patch-ext_imap_config.m4) = 9c6ed6966366c4fe1b7cfd34b5910e2ff0e68577 | |
11 | SHA1 (patch-ext_mssql_php__mssql.c) = c4fa9231dc539ffb027f1beb6f182f21ddb94a3c | 11 | SHA1 (patch-ext_mssql_php__mssql.c) = c4fa9231dc539ffb027f1beb6f182f21ddb94a3c | |
12 | SHA1 (patch-ext_pcre_pcrelib_config.h) = 26588e9932ee715e32c872a1c7e2f9c640bd9cf8 | 12 | SHA1 (patch-ext_pcre_pcrelib_config.h) = 26588e9932ee715e32c872a1c7e2f9c640bd9cf8 | |
13 | SHA1 (patch-ext_pdo__mysql_config.m4) = 9d25c673fc151e1b8ae137f2a0fc540189ef5398 | 13 | SHA1 (patch-ext_pdo__mysql_config.m4) = 9d25c673fc151e1b8ae137f2a0fc540189ef5398 | |
14 | SHA1 (patch-ext_pdo_config.m4) = f6deef3ac631769baa587dd7c27e55bd2e9ca6a5 | 14 | SHA1 (patch-ext_pdo_config.m4) = f6deef3ac631769baa587dd7c27e55bd2e9ca6a5 | |
15 | SHA1 (patch-ext_phar_Makefile.frag) = 1564c188e57d48f83de7c2420fdde183598539e2 | 15 | SHA1 (patch-ext_phar_Makefile.frag) = 1564c188e57d48f83de7c2420fdde183598539e2 | |
16 | SHA1 (patch-ext_phar_phar_phar.php) = 5a82d55c7965027115065412f9b68defb278db64 | 16 | SHA1 (patch-ext_phar_phar_phar.php) = 5a82d55c7965027115065412f9b68defb278db64 | |
17 | SHA1 (patch-ext_recode_recode.c) = a97a1815d6a41410f68c289debbb9396128a2159 | 17 | SHA1 (patch-ext_recode_recode.c) = a97a1815d6a41410f68c289debbb9396128a2159 | |
18 | SHA1 (patch-ext_sqlite3_libsqlite_sqlite3.c) = 85cd8f3e115705aa2eeab0e7229f24422e322a7f | 18 | SHA1 (patch-ext_sqlite3_libsqlite_sqlite3.c) = 85cd8f3e115705aa2eeab0e7229f24422e322a7f | |
19 | SHA1 (patch-ext_standard_basic__functions.c) = 669fe55c975bf2d971f6fdcb5b3004f7e20304d2 | 19 | SHA1 (patch-ext_standard_basic__functions.c) = 669fe55c975bf2d971f6fdcb5b3004f7e20304d2 |