Sat Jul 15 19:23:44 2017 UTC ()
Pullup ticket #5509 - requested by taca
lang/php56: security fix
Revisions pulled up:
- lang/php/phpversion.mk 1.184
- lang/php56/Makefile 1.14
- lang/php56/distinfo 1.42
---
Module Name: pkgsrc
Committed By: taca
Date: Fri Jul 7 03:13:48 UTC 2017
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php56: Makefile distinfo
Log Message:
Update php56 to 5.6.31.
06 Jul 2017, PHP 5.6.31
- Core:
. Fixed bug #73807 (Performance problem with processing post request over
2000000 chars). (Nikita)
. Fixed bug #74111 (Heap buffer overread (READ: 1) finish_nested_data from
unserialize). (Nikita)
. Fixed bug #74603 (PHP INI Parsing Stack Buffer Overflow Vulnerability).
(Stas)
. Fixed bug #74819 (wddx_deserialize() heap out-of-bound read via
php_parse_date()). (Derick)
- GD:
. Fixed bug #74435 (Buffer over-read into uninitialized memory). (cmb)
- mbstring:
. Add oniguruma upstream fix (CVE-2017-9224, CVE-2017-9226, CVE-2017-9227,
CVE-2017-9228, CVE-2017-9229) (Remi, Mamoru TASAKA)
- OpenSSL:
. Fixed bug #74651 (negative-size-param (-1) in memcpy in zif_openssl_seal()).
(Stas)
- PCRE:
. Fixed bug #74087 (Segmentation fault in PHP7.1.1(compiled using the bundled PCRE library)).
(Stas)
- WDDX:
. Fixed bug #74145 (wddx parsing empty boolean tag leads to SIGSEGV). (Stas)
(bsiegert)
diff -r1.181.2.2 -r1.181.2.3 pkgsrc/lang/php/phpversion.mk
diff -r1.13 -r1.13.2.1 pkgsrc/lang/php56/Makefile
diff -r1.41 -r1.41.2.1 pkgsrc/lang/php56/distinfo
--- pkgsrc/lang/php/phpversion.mk 2017/07/15 19:16:20 1.181.2.2
+++ pkgsrc/lang/php/phpversion.mk 2017/07/15 19:23:43 1.181.2.3
@@ -1,4 +1,4 @@
-# $NetBSD: phpversion.mk,v 1.181.2.2 2017/07/15 19:16:20 bsiegert Exp $
+# $NetBSD: phpversion.mk,v 1.181.2.3 2017/07/15 19:23:43 bsiegert Exp $
#
# This file selects a PHP version, based on the user's preferences and
# the installed packages. It does not add a dependency on the PHP
@@ -87,7 +87,7 @@
PHPVERSION_MK= defined
# Define each PHP's version.
-PHP56_VERSION= 5.6.30
+PHP56_VERSION= 5.6.31
PHP70_VERSION= 7.0.21
PHP71_VERSION= 7.1.7
--- pkgsrc/lang/php56/Makefile 2017/04/05 12:28:59 1.13
+++ pkgsrc/lang/php56/Makefile 2017/07/15 19:23:43 1.13.2.1
@@ -1,10 +1,9 @@
-# $NetBSD: Makefile,v 1.13 2017/04/05 12:28:59 fhajny Exp $
+# $NetBSD: Makefile,v 1.13.2.1 2017/07/15 19:23:43 bsiegert Exp $
#
# We can't omit PKGNAME here to handle PKG_OPTIONS.
#
PKGNAME= php-${PHP_VERSION}
-PKGREVISION= 1
CATEGORIES= lang
HOMEPAGE= http://www.php.net/
--- pkgsrc/lang/php56/distinfo 2017/04/05 12:28:59 1.41
+++ pkgsrc/lang/php56/distinfo 2017/07/15 19:23:43 1.41.2.1
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.41 2017/04/05 12:28:59 fhajny Exp $
+$NetBSD: distinfo,v 1.41.2.1 2017/07/15 19:23:43 bsiegert Exp $
-SHA1 (php-5.6.30.tar.bz2) = 9ac486b7f86c01a297375cae5728b424ac5790ce
-RMD160 (php-5.6.30.tar.bz2) = 445f7a88b802f88484671e2981f44147b13794fc
-SHA512 (php-5.6.30.tar.bz2) = 12734d786cca5767b8b8838affbe1c3d578dd179c8d5339653d905658562c5fdf39a88349213b1340f320320700a5378aed617447b6e15909019788a49ad2da0
-Size (php-5.6.30.tar.bz2) = 15011816 bytes
+SHA1 (php-5.6.31.tar.bz2) = a4ea2b095c60d61958a43ca4151acfaf4ac82e4c
+RMD160 (php-5.6.31.tar.bz2) = e1512f94a9d1054ef136921787a47359d9cdd9bf
+SHA512 (php-5.6.31.tar.bz2) = fe0a0572917287a89910cc4d1bca7a8be17fb09d0459d68fea7b32f4b9fd94efbf36d90f8d7d34baee60efc6b0aeac1414a658fc0b451c5eb2f8e3864e20e3c0
+Size (php-5.6.31.tar.bz2) = 15028813 bytes
SHA1 (patch-acinclude.m4) = 34d38d2538cc00932cdfcc80d1d4a91632cd15d0
SHA1 (patch-configure) = 5d76f71aa903efa3c3491b908ff76419aa4af27c
SHA1 (patch-ext_gd_config.m4) = b92ab4c7fe8aceaef7787a607a7d2eac258fee19