Pullup ticket #5612 - requested by taca
lang/php71: security update
Revisions pulled up:
- lang/php71/Makefile 1.13
- lang/php71/Makefile.common 1.2
- lang/php71/distinfo 1.28-1.29
- lang/php/phpversion.mk patch
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Sun Oct 1 15:50:06 UTC 2017
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php71: distinfo
Log Message:
lang/php71: update to 7.1.10
28 Sep 2017, PHP 7.1.10
- Core:
. Fixed bug #75042 (run-tests.php issues with EXTENSION block). (John Boehr)
- BCMath:
. Fixed bug #44995 (bcpowmod() fails if scale != 0). (cmb)
. Fixed bug #46781 (BC math handles minus zero incorrectly). (cmb)
. Fixed bug #54598 (bcpowmod() may return 1 if modulus is 1). (okano1220, cmb)
. Fixed bug #75178 (bcpowmod() misbehaves for non-integer base or modulus). (cmb)
- CLI server:
. Fixed bug #70470 (Built-in server truncates headers spanning over TCP
packets). (bouk)
- CURL:
. Fixed bug #75093 (OpenSSL support not detected). (Remi)
- GD:
. Fixed bug #75124 (gdImageGrayScale() may produce colors). (cmb)
. Fixed bug #75139 (libgd/gd_interpolation.c:1786: suspicious if ?). (cmb)
- Gettext:
. Fixed bug #73730 (textdomain(null) throws in strict mode). (cmb)
- Intl:
. Fixed bug #75090 (IntlGregorianCalendar doesn't have constants from parent
class). (tpunt)
. Fixed bug #75193 (segfault in collator_convert_object_to_string). (Remi)
- PDO_OCI:
. Fixed bug #74631 (PDO_PCO with PHP-FPM: OCI environment initialized
before PHP-FPM sets it up). (Ingmar Runge)
- SPL:
. Fixed bug #75155 (AppendIterator::append() is broken when appending another
AppendIterator). (Nikita)
. Fixed bug #75173 (incorrect behavior of AppendIterator::append in foreach loop).
(jhdxr)
- Standard:
. Fixed bug #75152 (signed integer overflow in parse_iv). (Laruence)
. Fixed bug #75097 (gethostname fails if your host name is 64 chars long). (Andrea)
To generate a diff of this commit:
cvs rdiff -u -r1.27 -r1.28 pkgsrc/lang/php71/distinfo
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: jdolecek
Date: Mon Oct 9 21:43:30 UTC 2017
Modified Files:
pkgsrc/lang/php71: Makefile.common
Log Message:
seems we actually don't need the EXTRACT_USING=gtar, apparently
it's been carried over from php 5.x times
To generate a diff of this commit:
cvs rdiff -u -r1.1 -r1.2 pkgsrc/lang/php71/Makefile.common
-------------------------------------------------------------------
Module Name: pkgsrc
Committed By: taca
Date: Fri Oct 27 08:47:49 UTC 2017
Modified Files:
pkgsrc/lang/php: phpversion.mk
pkgsrc/lang/php71: Makefile distinfo
Log Message:
lang/php71: Update to 7.1.11
* pkgsrc change: remove post-extract which is not required any more.
* including securiy fixes.
26 Oct 2017, PHP 7.1.11
- Core:
. Fixed bug #75241 (Null pointer dereference in zend_mm_alloc_small()).
(Laruence)
. Fixed bug #75236 (infinite loop when printing an error-message). (Andrea)
. Fixed bug #75252 (Incorrect token formatting on two parse errors in one
request). (Nikita)
. Fixed bug #75220 (Segfault when calling is_callable on parent).
(andrewnester)
. Fixed bug #75290 (debug info of Closures of internal functions contain
garbage argument names). (Andrea)
- Date:
. Fixed bug #75055 (Out-Of-Bounds Read in timelib_meridian()). (Derick)
- Apache2Handler:
. Fixed bug #75311 (error: 'zend_hash_key' has no member named 'arKey' in
apache2handler). (mcarbonneaux)
- Hash:
. Fixed bug #75303 (sha3 hangs on bigendian). (Remi)
- Intl:
. Fixed bug #75318 (The parameter of UConverter::getAliases() is not
optional). (cmb)
- litespeed:
. Fixed bug #75248 (Binary directory doesn't get created when building
only litespeed SAPI). (petk)
. Fixed bug #75251 (Missing program prefix and suffix). (petk)
- mcrypt:
. Fixed bug #72535 (arcfour encryption stream filter crashes php). (Leigh)
- MySQLi:
. Fixed bug #75018 (Data corruption when reading fields of bit type). (Anatol)
- OCI8:
. Fixed incorrect reference counting. (Dmitry, Tianfang Yang)
- Opcache
. Fixed bug #75255 (Request hangs and not finish). (Dmitry)
- PCRE:
. Fixed bug #75207 (applied upstream patch for CVE-2016-1283). (Anatol)
- PDO_mysql:
. Fixed bug #75177 (Type 'bit' is fetched as unexpected string). (Anatol)
- SPL:
. Fixed bug #73629 (SplDoublyLinkedList::setIteratorMode masks intern flags).
(J. Jeising, cmb)
To generate a diff of this commit:
cvs rdiff -u -r1.12 -r1.13 pkgsrc/lang/php71/Makefile
cvs rdiff -u -r1.28 -r1.29 pkgsrc/lang/php71/distinfo
(spz)
diff -r1.12 -r1.12.6.1 pkgsrc/lang/php71/Makefile| @@ -1,14 +1,14 @@ | @@ -1,14 +1,14 @@ | |||
| 1 | # $NetBSD: Makefile,v 1.12 2017/06/20 07:24:08 manu Exp $ | 1 | # $NetBSD: Makefile,v 1.12.6.1 2017/10/31 18:12:24 spz Exp $ | |
| 2 | 2 | |||
| 3 | # | 3 | # | |
| 4 | # We can't omit PKGNAME here to handle PKG_OPTIONS. | 4 | # We can't omit PKGNAME here to handle PKG_OPTIONS. | |
| 5 | # | 5 | # | |
| 6 | PKGNAME= php-${PHP_VERSION:S/RC/rc/} | 6 | PKGNAME= php-${PHP_VERSION:S/RC/rc/} | |
| 7 | CATEGORIES= lang | 7 | CATEGORIES= lang | |
| 8 | 8 | |||
| 9 | HOMEPAGE= http://www.php.net/ | 9 | HOMEPAGE= http://www.php.net/ | |
| 10 | COMMENT= PHP Hypertext Preprocessor version 7.1 | 10 | COMMENT= PHP Hypertext Preprocessor version 7.1 | |
| 11 | LICENSE= php | 11 | LICENSE= php | |
| 12 | 12 | |||
| 13 | TEST_TARGET= test | 13 | TEST_TARGET= test | |
| 14 | 14 | |||
| @@ -49,27 +49,23 @@ CONFIGURE_ARGS+= --without-pcre-jit | @@ -49,27 +49,23 @@ CONFIGURE_ARGS+= --without-pcre-jit | |||
| 49 | .endif | 49 | .endif | |
| 50 | 50 | |||
| 51 | # Make sure modules can link correctly | 51 | # Make sure modules can link correctly | |
| 52 | .if ${OPSYS} == "Darwin" | 52 | .if ${OPSYS} == "Darwin" | |
| 53 | INSTALL_UNSTRIPPED= yes | 53 | INSTALL_UNSTRIPPED= yes | |
| 54 | .endif | 54 | .endif | |
| 55 | 55 | |||
| 56 | # Darwin < 9 (Mac OS X < 10.5 "Leopard") doesn't have gethostuuid(2) | 56 | # Darwin < 9 (Mac OS X < 10.5 "Leopard") doesn't have gethostuuid(2) | |
| 57 | # and lacks the zone memory allocator | 57 | # and lacks the zone memory allocator | |
| 58 | .if !empty(MACHINE_PLATFORM:MDarwin-[0-8].*-*) | 58 | .if !empty(MACHINE_PLATFORM:MDarwin-[0-8].*-*) | |
| 59 | CFLAGS+= -DSQLITE_ENABLE_LOCKING_STYLE=0 -DSQLITE_WITHOUT_ZONEMALLOC | 59 | CFLAGS+= -DSQLITE_ENABLE_LOCKING_STYLE=0 -DSQLITE_WITHOUT_ZONEMALLOC | |
| 60 | .endif | 60 | .endif | |
| 61 | 61 | |||
| 62 | post-extract: | |||
| 63 | cd ${WRKSRC} && \ | |||
| 64 | ${FIND} . -xdev -type f -name '*.orig' -exec ${RM} -f {} \; | |||
| 65 | ||||
| 66 | post-install: | 62 | post-install: | |
| 67 | ${INSTALL_PROGRAM} ${WRKSRC}/sapi/cli/php ${DESTDIR}${PREFIX}/bin/php | 63 | ${INSTALL_PROGRAM} ${WRKSRC}/sapi/cli/php ${DESTDIR}${PREFIX}/bin/php | |
| 68 | ${INSTALL_DATA} ${WRKSRC}/sapi/cli/php.1 \ | 64 | ${INSTALL_DATA} ${WRKSRC}/sapi/cli/php.1 \ | |
| 69 | ${DESTDIR}${PREFIX}/${PKGMANDIR}/man1/php.1 | 65 | ${DESTDIR}${PREFIX}/${PKGMANDIR}/man1/php.1 | |
| 70 | ${INSTALL_PROGRAM} ${WRKSRC}/sapi/cgi/php-cgi ${DESTDIR}${CGIDIR}/php | 66 | ${INSTALL_PROGRAM} ${WRKSRC}/sapi/cgi/php-cgi ${DESTDIR}${CGIDIR}/php | |
| 71 | cd ${WRKSRC}; ${INSTALL_DATA} php.ini-development php.ini-production \ | 67 | cd ${WRKSRC}; ${INSTALL_DATA} php.ini-development php.ini-production \ | |
| 72 | ${DESTDIR}${EGDIR} | 68 | ${DESTDIR}${EGDIR} | |
| 73 | ${INSTALL_DATA} ${WRKSRC}/php.gif ${DESTDIR}${PREFIX}/share/php | 69 | ${INSTALL_DATA} ${WRKSRC}/php.gif ${DESTDIR}${PREFIX}/share/php | |
| 74 | 70 | |||
| 75 | .include "../../mk/bsd.pkg.mk" | 71 | .include "../../mk/bsd.pkg.mk" |
| @@ -1,22 +1,20 @@ | @@ -1,22 +1,20 @@ | |||
| 1 | # $NetBSD: Makefile.common,v 1.1 2016/08/04 14:09:03 jdolecek Exp $ | 1 | # $NetBSD: Makefile.common,v 1.1.12.1 2017/10/31 18:12:24 spz Exp $ | |
| 2 | # used by lang/php71/Makefile.php | 2 | # used by lang/php71/Makefile.php | |
| 3 | # used by lang/php/ext.mk | 3 | # used by lang/php/ext.mk | |
| 4 | # used by meta-pkgs/php71-extensions/Makefile | 4 | # used by meta-pkgs/php71-extensions/Makefile | |
| 5 | 5 | |||
| 6 | PHP_VERSION_REQD= 71 | 6 | PHP_VERSION_REQD= 71 | |
| 7 | 7 | |||
| 8 | .include "../../lang/php/common.mk" | 8 | .include "../../lang/php/common.mk" | |
| 9 | 9 | |||
| 10 | CATEGORIES+= www | 10 | CATEGORIES+= www | |
| 11 | MAINTAINER?= pkgsrc-users@NetBSD.org | 11 | MAINTAINER?= pkgsrc-users@NetBSD.org | |
| 12 | 12 | |||
| 13 | # needed due to (broken?) configure checks in php-xmlrpc and php5-dom | 13 | # needed due to (broken?) configure checks in php-xmlrpc and php5-dom | |
| 14 | CONFIGURE_ENV+= PHP_LIBXML_SHARED="1" | 14 | CONFIGURE_ENV+= PHP_LIBXML_SHARED="1" | |
| 15 | 15 | |||
| 16 | EXTRACT_USING= gtar | |||
| 17 | ||||
| 18 | .include "../../mk/compiler.mk" | 16 | .include "../../mk/compiler.mk" | |
| 19 | .if !empty(PKGSRC_COMPILER:Mclang) | 17 | .if !empty(PKGSRC_COMPILER:Mclang) | |
| 20 | # configure test gets confused by wrappers dropping -R /usr/lib | 18 | # configure test gets confused by wrappers dropping -R /usr/lib | |
| 21 | CONFIGURE_ARGS+= php_cv_cc_dashr=no | 19 | CONFIGURE_ARGS+= php_cv_cc_dashr=no | |
| 22 | .endif | 20 | .endif |
| @@ -1,19 +1,19 @@ | @@ -1,19 +1,19 @@ | |||
| 1 | $NetBSD: distinfo,v 1.27 2017/09/01 10:50:39 taca Exp $ | 1 | $NetBSD: distinfo,v 1.27.4.1 2017/10/31 18:12:24 spz Exp $ | |
| 2 | 2 | |||
| 3 | SHA1 (php-7.1.9.tar.bz2) = a3406f8b34c1236af4f887be6196747425373351 | 3 | SHA1 (php-7.1.11.tar.bz2) = 39e986459c2b1d2765f28305d8175be8d3089629 | |
| 4 | RMD160 (php-7.1.9.tar.bz2) = 86cc822a92df922003c56ae02451f3531345d9fd | 4 | RMD160 (php-7.1.11.tar.bz2) = 57ba828c1ab08d86247f601107057c36a71bde23 | |
| 5 | SHA512 (php-7.1.9.tar.bz2) = 6b7ad28868af904f24f68a062670561841399a2213ff5ad0408bf49ac08cdfe7aa0e5e250815a875ec558dc619c452247d731f48570ce6a8b1bb9fa4082aabff | 5 | SHA512 (php-7.1.11.tar.bz2) = 7ff898940f25bbe9c398b186afb36e7f8aed875d10374ab998ca99ab0c8d6ed3e20461e3f174de6ddc32623a4f97cd51a95bdba59f4473671ab1ab0ac3c6736a | |
| 6 | Size (php-7.1.9.tar.bz2) = 15093853 bytes | 6 | Size (php-7.1.11.tar.bz2) = 15068977 bytes | |
| 7 | SHA1 (patch-acinclude.m4) = b682280fd89950c082c2226bdb7364b0dc475bad | 7 | SHA1 (patch-acinclude.m4) = b682280fd89950c082c2226bdb7364b0dc475bad | |
| 8 | SHA1 (patch-configure) = a129e19ef87338f6e53ccc967c40ddcde7c7357c | 8 | SHA1 (patch-configure) = a129e19ef87338f6e53ccc967c40ddcde7c7357c | |
| 9 | SHA1 (patch-ext_gd_config.m4) = 93b62daad93b9ee6dc28e06016f739bc26b0dc9f | 9 | SHA1 (patch-ext_gd_config.m4) = 93b62daad93b9ee6dc28e06016f739bc26b0dc9f | |
| 10 | SHA1 (patch-ext_imap_config.m4) = f4e10ab81697b72019313f63bc630627a08efd92 | 10 | SHA1 (patch-ext_imap_config.m4) = f4e10ab81697b72019313f63bc630627a08efd92 | |
| 11 | SHA1 (patch-ext_intl_config.m4) = 1ea3d3e6f05d5fed0bd4ca4518440199aec0954d | 11 | SHA1 (patch-ext_intl_config.m4) = 1ea3d3e6f05d5fed0bd4ca4518440199aec0954d | |
| 12 | SHA1 (patch-ext_pcre_pcrelib_config.h) = c5fba95856628f68639fe63feeef04a5f83d3916 | 12 | SHA1 (patch-ext_pcre_pcrelib_config.h) = c5fba95856628f68639fe63feeef04a5f83d3916 | |
| 13 | SHA1 (patch-ext_pdo__mysql_config.m4) = b1ef91be5a729040197e9af50da0f5fd1f6c90a8 | 13 | SHA1 (patch-ext_pdo__mysql_config.m4) = b1ef91be5a729040197e9af50da0f5fd1f6c90a8 | |
| 14 | SHA1 (patch-ext_pdo_config.m4) = 522281775cc0e70a135b1f813158988ef1f3e244 | 14 | SHA1 (patch-ext_pdo_config.m4) = 522281775cc0e70a135b1f813158988ef1f3e244 | |
| 15 | SHA1 (patch-ext_phar_Makefile.frag) = 558869b60f8ed6674a3ba1d595a65f010df4c426 | 15 | SHA1 (patch-ext_phar_Makefile.frag) = 558869b60f8ed6674a3ba1d595a65f010df4c426 | |
| 16 | SHA1 (patch-ext_phar_phar_phar.php) = f630e3946b21b76d4fe857a43e00e25c9445f2c8 | 16 | SHA1 (patch-ext_phar_phar_phar.php) = f630e3946b21b76d4fe857a43e00e25c9445f2c8 | |
| 17 | SHA1 (patch-ext_recode_recode.c) = a97a1815d6a41410f68c289debbb9396128a2159 | 17 | SHA1 (patch-ext_recode_recode.c) = a97a1815d6a41410f68c289debbb9396128a2159 | |
| 18 | SHA1 (patch-ext_sqlite3_libsqlite_sqlite3.c) = 8a529a1b3f7c97731f2e719d006f67c3a7259bb5 | 18 | SHA1 (patch-ext_sqlite3_libsqlite_sqlite3.c) = 8a529a1b3f7c97731f2e719d006f67c3a7259bb5 | |
| 19 | SHA1 (patch-ext_standard_basic__functions.c) = f97a2748c7b15fbd9a2d3c21e56079088cc05d56 | 19 | SHA1 (patch-ext_standard_basic__functions.c) = f97a2748c7b15fbd9a2d3c21e56079088cc05d56 |