The NetBSD Project

CVS log for pkgsrc/lang/php53/Attic/Makefile

[BACK] Up to [cvs.NetBSD.org] / pkgsrc / lang / php53

Request diff between arbitrary revisions


Default branch: MAIN


Revision 1.51, Sun Mar 15 15:00:46 2015 UTC (7 years, 10 months ago) by taca
Branch: MAIN
CVS Tags: HEAD
Changes since 1.50: +1 -1 lines
FILE REMOVED

Remove php53 now.  It is not supported any more including security fix.

Revision 1.49.2.1 / (download) - annotate - [select for diffs], Sat Oct 25 15:55:51 2014 UTC (8 years, 3 months ago) by tron
Branch: pkgsrc-2014Q3
Changes since 1.49: +2 -1 lines
Diff to previous 1.49 (colored) next main 1.50 (colored)

Pullup ticket #4526 - requested by taca
graphics/php-exif: security patch
lang/php53: security patch
net/php-xmlrpc: security patch

Revisions pulled up:
- graphics/php-exif/Makefile                                    1.13
- lang/php53/Makefile                                           1.50
- lang/php53/distinfo                                           1.77
- lang/php53/patches/patch-ext_exif_exif.c                      1.3
- lang/php53/patches/patch-ext_standard_var__unserializer.c     1.1
- lang/php53/patches/patch-ext_standard_var__unserializer.re    1.1
- lang/php53/patches/patch-ext_xmlrpc_libxmlrpc_xmlrpc.c        1.1
- net/php-xmlrpc/Makefile                                       1.17

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Oct 23 16:18:48 UTC 2014

   Modified Files:
   	pkgsrc/lang/php53: Makefile distinfo
   Added Files:
   	pkgsrc/lang/php53/patches: patch-ext_exif_exif.c
   	    patch-ext_standard_var__unserializer.c
   	    patch-ext_standard_var__unserializer.re
   	    patch-ext_xmlrpc_libxmlrpc_xmlrpc.c

   Log Message:
   Add patch for CVE-2014-3668, CVE-2014-3669 and CVE-2014-3670.

   Bump PKGREVISION.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Oct 23 16:20:04 UTC 2014

   Modified Files:
   	pkgsrc/graphics/php-exif: Makefile

   Log Message:
   Bump PKGREVISION for php53-exif update.  It also bump php54-exif and
   php55-exit as a side effect.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Oct 23 16:20:38 UTC 2014

   Modified Files:
   	pkgsrc/net/php-xmlrpc: Makefile

   Log Message:
   Bump PKGREVISION for php53-xmlrpc update.  It also bump php54-xmlrpc and
   php55-xmlrpc as a side effect.

Revision 1.50 / (download) - annotate - [select for diffs], Thu Oct 23 16:18:47 2014 UTC (8 years, 3 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2014Q4-base, pkgsrc-2014Q4
Changes since 1.49: +2 -1 lines
Diff to previous 1.49 (colored)

Add patch for CVE-2014-3668, CVE-2014-3669 and CVE-2014-3670.

Bump PKGREVISION.

Revision 1.48.2.1 / (download) - annotate - [select for diffs], Mon Aug 18 12:48:05 2014 UTC (8 years, 5 months ago) by tron
Branch: pkgsrc-2014Q2
Changes since 1.48: +1 -2 lines
Diff to previous 1.48 (colored) next main 1.49 (colored)

Pullup ticket #4475 - requested by prlw1
lang/php53: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.69 via patch
- lang/php53/Makefile                                           1.49
- lang/php53/Makefile.php                                       1.41
- lang/php53/distinfo                                           1.75-1.76
- lang/php53/patches/patch-Zend_zend_language_parser.h          deleted
- lang/php53/patches/patch-ext_date_lib_parse__iso__intervals.c deleted
- lang/php53/patches/patch-ext_date_lib_parse__iso__intervals.re deleted

---
   Module Name:	pkgsrc
   Committed By:	prlw1
   Date:		Mon Jul 28 16:12:57 UTC 2014

   Modified Files:
   	pkgsrc/lang/php53: distinfo
   Added Files:
   	pkgsrc/lang/php53/patches: patch-Zend_zend_language_parser.h

   Log Message:
   Fix build of www/ap-php with PHP 5.3.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Aug 15 16:09:16 UTC 2014

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php53: Makefile Makefile.php distinfo
   Removed Files:
   	pkgsrc/lang/php53/patches: patch-Zend_zend_language_parser.h
   	    patch-ext_date_lib_parse__iso__intervals.c
   	    patch-ext_date_lib_parse__iso__intervals.re

   Log Message:
   Update php53 to 5.3.29, final PHP 5.3 release.

   14 Aug 2014, PHP 5.3.29

   - Core:
     . Fixed bug #66127 (Segmentation fault with ArrayObject unset). (Stas)
     . Fixed bug #67247 (spl_fixedarray_resize integer overflow). (Stas)
     . Fixed bug #67249 (printf out-of-bounds read). (Stas)
     . Fixed bug #67250 (iptcparse out-of-bounds read). (Stas)
     . Fixed bug #67252 (convert_uudecode out-of-bounds read). (Stas)
     . Fixed bug #67359 (Segfault in recursiveDirectoryIterator). (Laruence)
     . Fixed bug #67390 (insecure temporary file use in the configure script).
       (Remi) (CVE-2014-3981)
     . Fixed bug #67399 (putenv with empty variable may lead to crash). (Stas)
     . Fixed bug #67492 (unserialize() SPL ArrayObject / SPLObjectStorage Type
       Confusion) (CVE-2014-3515). (Stefan Esser)
     . Fixed bug #67498 (phpinfo() Type Confusion Information Leak Vulnerability).
       (Stefan Esser)

   - COM:
     . Fixed missing type checks in com_event_sink (Yussuf Khalil, Stas).

   - Date:
     . Fixed bug #66060 (Heap buffer over-read in DateInterval). (CVE-2013-6712)
       (Remi)
     . Fixed bug #67251 (date_parse_from_format out-of-bounds read). (Stas)
     . Fixed bug #67253 (timelib_meridian_with_check out-of-bounds read). (Stas)

   - Exif:
     . Fixed bug #65873 (Integer overflow in exif_read_data()). (Stas)

   - Fileinfo:
     . Fixed bug #66307 (Fileinfo crashes with powerpoint files). (Anatol)
     . Fixed bug #67326 (fileinfo: cdf_read_short_sector insufficient boundary
       check). (CVE-2014-0207)
     . Fixed bug #67327 (fileinfo: CDF infinite loop in nelements DoS).
       (CVE-2014-0238)
     . Fixed bug #67328 (fileinfo: fileinfo: numerous file_printf calls resulting
       in performance degradation). (CVE-2014-0237)
     . Fixed bug #67410 (fileinfo: mconvert incorrect handling of truncated pascal
       string size). (Francisco Alonso, Jan Kaluza, Remi)
     . Fixed bug #67411 (fileinfo: cdf_check_stream_offset insufficient boundary
       check). (Francisco Alonso, Jan Kaluza, Remi)
     . Fixed bug #67412 (fileinfo: cdf_count_chain insufficient boundary check).
       (Francisco Alonso, Jan Kaluza, Remi)
     . Fixed bug #67413 (fileinfo: cdf_read_property_info insufficient boundary
       check). (Francisco Alonso, Jan Kaluza, Remi)

   - Intl:
     . Fixed bug #67349 (Locale::parseLocale Double Free). (Stas)
     . Fixed bug #67397 (Buffer overflow in locale_get_display_name and
       uloc_getDisplayName (libicu 4.8.1)). (Stas)

   - Network:
     . Fixed bug #67432 (Fix potential segfault in dns_check_record()).
       (CVE-2014-4049). (Sara)

   - OpenSSL:
     . Fixed missing type checks in OpenSSL options (Yussuf Khalil, Stas).

   - Session:
     . Fixed missing type checks in php_session_create_id (Yussuf Khalil, Stas).

Revision 1.49 / (download) - annotate - [select for diffs], Fri Aug 15 16:09:16 2014 UTC (8 years, 5 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2014Q3-base
Branch point for: pkgsrc-2014Q3
Changes since 1.48: +1 -2 lines
Diff to previous 1.48 (colored)

Update php53 to 5.3.29, final PHP 5.3 release.

14 Aug 2014, PHP 5.3.29

- Core:
  . Fixed bug #66127 (Segmentation fault with ArrayObject unset). (Stas)
  . Fixed bug #67247 (spl_fixedarray_resize integer overflow). (Stas)
  . Fixed bug #67249 (printf out-of-bounds read). (Stas)
  . Fixed bug #67250 (iptcparse out-of-bounds read). (Stas)
  . Fixed bug #67252 (convert_uudecode out-of-bounds read). (Stas)
  . Fixed bug #67359 (Segfault in recursiveDirectoryIterator). (Laruence)
  . Fixed bug #67390 (insecure temporary file use in the configure script).
    (Remi) (CVE-2014-3981)
  . Fixed bug #67399 (putenv with empty variable may lead to crash). (Stas)
  . Fixed bug #67492 (unserialize() SPL ArrayObject / SPLObjectStorage Type
    Confusion) (CVE-2014-3515). (Stefan Esser)
  . Fixed bug #67498 (phpinfo() Type Confusion Information Leak Vulnerability).
    (Stefan Esser)

- COM:
  . Fixed missing type checks in com_event_sink (Yussuf Khalil, Stas).

- Date:
  . Fixed bug #66060 (Heap buffer over-read in DateInterval). (CVE-2013-6712)
    (Remi)
  . Fixed bug #67251 (date_parse_from_format out-of-bounds read). (Stas)
  . Fixed bug #67253 (timelib_meridian_with_check out-of-bounds read). (Stas)

- Exif:
  . Fixed bug #65873 (Integer overflow in exif_read_data()). (Stas)

- Fileinfo:
  . Fixed bug #66307 (Fileinfo crashes with powerpoint files). (Anatol)
  . Fixed bug #67326 (fileinfo: cdf_read_short_sector insufficient boundary
    check). (CVE-2014-0207)
  . Fixed bug #67327 (fileinfo: CDF infinite loop in nelements DoS).
    (CVE-2014-0238)
  . Fixed bug #67328 (fileinfo: fileinfo: numerous file_printf calls resulting
    in performance degradation). (CVE-2014-0237)
  . Fixed bug #67410 (fileinfo: mconvert incorrect handling of truncated pascal
    string size). (Francisco Alonso, Jan Kaluza, Remi)
  . Fixed bug #67411 (fileinfo: cdf_check_stream_offset insufficient boundary
    check). (Francisco Alonso, Jan Kaluza, Remi)
  . Fixed bug #67412 (fileinfo: cdf_count_chain insufficient boundary check).
    (Francisco Alonso, Jan Kaluza, Remi)
  . Fixed bug #67413 (fileinfo: cdf_read_property_info insufficient boundary
    check). (Francisco Alonso, Jan Kaluza, Remi)

- Intl:
  . Fixed bug #67349 (Locale::parseLocale Double Free). (Stas)
  . Fixed bug #67397 (Buffer overflow in locale_get_display_name and
    uloc_getDisplayName (libicu 4.8.1)). (Stas)

- Network:
  . Fixed bug #67432 (Fix potential segfault in dns_check_record()).
    (CVE-2014-4049). (Sara)

- OpenSSL:
  . Fixed missing type checks in OpenSSL options (Yussuf Khalil, Stas).

- Session:
  . Fixed missing type checks in php_session_create_id (Yussuf Khalil, Stas).

Revision 1.48 / (download) - annotate - [select for diffs], Fri Jun 13 14:13:20 2014 UTC (8 years, 7 months ago) by fhajny
Branch: MAIN
CVS Tags: pkgsrc-2014Q2-base
Branch point for: pkgsrc-2014Q2
Changes since 1.47: +2 -2 lines
Diff to previous 1.47 (colored)

Add the mysqlnd (MySQL Native Driver) include files.
Bump PKGREVISION for this and the previous commit.

Revision 1.47 / (download) - annotate - [select for diffs], Wed Mar 12 19:52:04 2014 UTC (8 years, 10 months ago) by asau
Branch: MAIN
CVS Tags: pkgsrc-2014Q1-base, pkgsrc-2014Q1
Changes since 1.46: +2 -2 lines
Diff to previous 1.46 (colored)

Stop treating FreeBSD 10 as FreeBSD 1.
This lets multiple PHP modules to build on FreeBSD.

Revision 1.46 / (download) - annotate - [select for diffs], Wed Feb 12 23:18:05 2014 UTC (8 years, 11 months ago) by tron
Branch: MAIN
Changes since 1.45: +2 -1 lines
Diff to previous 1.45 (colored)

Recursive PKGREVISION bump for OpenSSL API version bump.

Revision 1.43.2.1 / (download) - annotate - [select for diffs], Mon Dec 16 17:05:48 2013 UTC (9 years, 1 month ago) by tron
Branch: pkgsrc-2013Q3
Changes since 1.43: +1 -2 lines
Diff to previous 1.43 (colored) next main 1.44 (colored)

Pullup ticket #4269 - requested by taca
lang/php53: security update
lang/php54: security update
lang/php55: security update

Revisions pulled up:
- lang/php/phpversion.mk                                        1.46-1.52
- lang/php53/Makefile                                           1.44-1.45
- lang/php53/Makefile.php                                       1.38
- lang/php53/distinfo                                           1.69-1.70
- lang/php53/patches/patch-ext_date_lib_parse__iso__intervals.c 1.1
- lang/php53/patches/patch-ext_date_lib_parse__iso__intervals.re 1.1
- lang/php53/patches/patch-ext_openssl_openssl.c                deleted
- lang/php54/Makefile                                           1.15-1.16
- lang/php54/distinfo                                           1.28-1.31
- lang/php54/patches/patch-ext_date_lib_parse__iso__intervals.c 1.1
- lang/php54/patches/patch-ext_date_lib_parse__iso__intervals.re 1.1
- lang/php55/Makefile                                           1.6-1.7
- lang/php55/PLIST                                              1.2
- lang/php55/distinfo                                           1.7-1.12
- lang/php55/patches/patch-configure                            1.3
- lang/php55/patches/patch-ext_date_lib_parse__iso__intervals.c 1.1
- lang/php55/patches/patch-ext_date_lib_parse__iso__intervals.re 1.1
- lang/php55/patches/patch-ext_opcache_config.m4                1.1
- lang/php55/patches/patch-ext_sockets_sockaddr__conv.c         1.1
- lang/php55/patches/patch-sockaddr__conv.c                     deleted
- net/php-sockets/Makefile                                      1.12

---
   Module Name:	pkgsrc
   Committed By:	joerg
   Date:		Tue Oct 15 14:43:51 UTC 2013

   Modified Files:
   	pkgsrc/lang/php55: distinfo
   Added Files:
   	pkgsrc/lang/php55/patches: patch-sockaddr__conv.c

   Log Message:
   Add patch that would fix the build of net/php-sockets for PHP 5.5, if I
   knew how to get it applied.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Tue Oct 15 15:46:37 UTC 2013

   Modified Files:
   	pkgsrc/lang/php55: distinfo
   	pkgsrc/net/php-sockets: Makefile
   Added Files:
   	pkgsrc/lang/php55/patches: patch-ext_sockets_sockaddr__conv.c
   Removed Files:
   	pkgsrc/lang/php55/patches: patch-sockaddr__conv.c

   Log Message:
   Fix php-socket with php55.

   - Use USE_PHP_EXT_PATCHES in net/php-sockets.
   - Make AI_V4MAPPED noop if platform dosen't have it.

   It is poor assumption that AI_V4MAPPED is always defined and V4 mapped
   address is always available.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Oct 18 12:25:12 UTC 2013

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php54: distinfo

   Log Message:
   Update php54 to 5.4.21 (PHP 5.4.21).

   17 Oct 2013, PHP 5.4.21

   - Core:
     . Fixed bug #65322 (compile time errors won't trigger auto loading). (Nikita)

   - CLI server:
     . Fixed bug #65633 (built-in server treat some http headers as
       case-sensitive). (Adam)

   - Datetime:
     . Fixed bug #64157 (DateTime::createFromFormat() reports confusing error
       message). (Boro Sitnikovski)

   - DBA extension:
     . Fixed bug #65708 (dba functions cast $key param to string in-place,
       bypassing copy on write). (Adam)

   - Filter:
     . Add RFC 6598 IPs to reserved addresses. (Sebastian Nohn)
     . Fixed bug #64441 (FILTER_VALIDATE_URL rejects fully qualified domain names).
       (Syra)

   - IMAP:
     . Fixed bug #65721 (configure script broken in 5.5.4 and 5.4.20 when enabling
       imap). (ryotakatsuki at gmail dot com)

   - Standard:
     . Fixed bug #61548 (content-type must appear at the end of headers for 201
       Location to work in http). (Mike)

   - Build system:
     . Fixed bug #62396 ('make test' crashes starting with 5.3.14 (missing
       gzencode())). (Mike)

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Oct 18 15:49:08 UTC 2013

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php55: distinfo
   	pkgsrc/lang/php55/patches: patch-configure
   Added Files:
   	pkgsrc/lang/php55/patches: patch-ext_opcache_config.m4

   Log Message:
   Update php55 to 5.5.5.

   17 Oct 2013, PHP 5.5.5

   - Core:
     . Fixed bug #64979 (Wrong behavior of static variables in closure generators).
       (Nikita)
     . Fixed bug #65322 (compile time errors won't trigger auto loading). (Nikita)
     . Fixed bug #65821 (By-ref foreach on property access of string offset
       segfaults). (Nikita)

   - CLI server:
     . Fixed bug #65633 (built-in server treat some http headers as
       case-sensitive). (Adam)
     . Fixed bug #65818 (Segfault with built-in webserver and chunked transfer
       encoding). (Felipe)
     . Added application/pdf to PHP CLI Web Server mime types (Chris Jones)

   - Datetime:
     . Fixed bug #64157 (DateTime::createFromFormat() reports confusing error
       message). (Boro Sitnikovski)
     . Fixed bug #65502 (DateTimeImmutable::createFromFormat returns DateTime).
       (Boro Sitnikovski)
     . Fixed bug #65548 (Comparison for DateTimeImmutable doesn't work).
       (Boro Sitnikovski)

   - DBA extension:
     . Fixed bug #65708 (dba functions cast $key param to string in-place,
       bypassing copy on write). (Adam)

   - Filter:
     . Add RFC 6598 IPs to reserved addresses. (Sebastian Nohn)
     . Fixed bug #64441 (FILTER_VALIDATE_URL rejects fully qualified domain names).
       (Syra)

   - FTP:
     . Fixed bug #65667 (ftp_nb_continue produces segfault). (Philip Hofstetter)

   - GD
     . Ensure that the defined interpolation method is used with the generic
       scaling methods. (Pierre)

   - IMAP:
     . Fixed bug #65721 (configure script broken in 5.5.4 and 5.4.20 when enabling
       imap). (ryotakatsuki at gmail dot com)

   - OPcache:
     . Added support for GNU Hurd. (Svante Signell)
     . Added function opcache_compile_file() to load PHP scripts into cache
       without execution. (Julien)
     . Fixed bug #65845 (Error when Zend Opcache Optimizer is fully enabled).
       (Dmitry)
     . Fixed bug #65665 (Exception not properly caught when opcache enabled).
       (Laruence)
     . Fixed bug #65510 (5.5.2 crashes in _get_zval_ptr_ptr_var). (Dmitry)
     . Fixed issue #135 (segfault in interned strings if initial memory is too
       low). (Julien)

   - Sockets:
     . Fixed bug #65808 (the socket_connect() won't work with IPv6 address).
       (Mike)

   - SPL:
     . Fix bug #64782 (SplFileObject constructor make $context optional / give it
       a default value). (Nikita)

   - Standard:
     . Fixed bug #61548 (content-type must appear at the end of headers for 201
       Location to work in http). (Mike)

   - XMLReader:
     . Fixed bug #51936 (Crash with clone XMLReader). (Mike)
     . Fixed bug #64230 (XMLReader does not suppress errors). (Mike)

   - Build system:
     . Fixed bug #51076 (race condition in shtool's mkdir -p implementation).
       (Mike, Raphael Geissert)
     . Fixed bug #62396 ('make test' crashes starting with 5.3.14 (missing
       gzencode())). (Mike)

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Nov 15 16:33:14 UTC 2013

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php55: PLIST distinfo

   Log Message:
   Update php55 package to 5.5.6.

   14 Nov 2013, PHP 5.5.6

   - Core:
     . Fixed bug #65947 (basename is no more working after fgetcsv in certain
       situation). (Laruence)
     . Improved performance of array_merge() and func_get_args() by eliminating
       useless copying. (Dmitry)
     . Fixed bug #65939 (Space before ";" breaks php.ini parsing).
       (brainstorm at nopcode dot org)
     . Fixed bug #65911 (scope resolution operator - strange behavior with $this).
       (Bob Weinand)
     . Fixed bug #65936 (dangling context pointer causes crash). (Tony)

   - FPM:
     . Changed default listen() backlog to 65535. (Tony)

   - MySQLi:
     . Fixed bug #66043 (Segfault calling bind_param() on mysqli). (Laruence)

   - OPcache
     . Increased limit for opcache.max_accelerated_files to 1,000,000. (Chris)
     . Fixed issue #115 (path issue when using phar). (Dmitry)
     . Fixed issue #149 (Phar mount points not working with OPcache enabled).
     (Dmitry)

   - ODBC
     . Fixed bug #65950 (Field name truncation if the field name is bigger than
       32 characters). (patch submitted by: michael dot y at zend dot com, Yasuo)

   - PDO:
     . Fixed bug #66033 (Segmentation Fault when constructor of PDO statement
       throws an exception). (Laruence)
     . Fixed bug 65946 (sql_parser permanently converts values bound to strings)

   - Standard:
     . Fixed bug #64760 (var_export() does not use full precision for floating-point
       numbers) (Yasuo)

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Nov 16 09:45:26 UTC 2013

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php54: distinfo

   Log Message:
   Update php54 to 5.4.22.

   Version 5.4.22
   14-Nov-2013

   * Core:

       - Fixed bug #65911 (scope resolution operator - strange behavior with
         $this).

   CLI server:

       - Fixed bug #65818 (Segfault with built-in webserver and chunked transfer
         encoding).

   * Exif:

       - Fixed crash on unknown encoding.

   * FTP:

       - Fixed bug #65667 (ftp_nb_continue produces segfault).

   * ODBC:

       - Fixed bug #65950 (Field name truncation if the field name is bigger than
         32 characters).

   * Sockets:

       - Fixed bug #65808 (the socket_connect() won't work with IPv6 address).

   * Standard:

       - Fixed bug #64760 (var_export() does not use full precision for
         floating-point numbers).

   * XMLReader:

       - Fixed bug #51936 (Crash with clone XMLReader).
       - Fixed bug #64230 (XMLReader does not suppress errors).

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Dec  5 16:16:40 UTC 2013

   Modified Files:
   	pkgsrc/lang/php53: Makefile distinfo
   Added Files:
   	pkgsrc/lang/php53/patches: patch-ext_date_lib_parse__iso__intervals.c
   	    patch-ext_date_lib_parse__iso__intervals.re

   Log Message:
   Add fix for CVE-2013-6712, ext/date DoS vulnerability.

   Bump PKGREVISION.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Dec  5 16:17:15 UTC 2013

   Modified Files:
   	pkgsrc/lang/php54: Makefile distinfo
   Added Files:
   	pkgsrc/lang/php54/patches: patch-ext_date_lib_parse__iso__intervals.c
   	    patch-ext_date_lib_parse__iso__intervals.re

   Log Message:
   Add fix for CVE-2013-6712, ext/date DoS vulnerability.

   Bump PKGREVISION.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Dec  5 16:17:48 UTC 2013

   Modified Files:
   	pkgsrc/lang/php55: Makefile distinfo
   Added Files:
   	pkgsrc/lang/php55/patches: patch-ext_date_lib_parse__iso__intervals.c
   	    patch-ext_date_lib_parse__iso__intervals.re

   Log Message:
   Add fix for CVE-2013-6712, ext/date DoS vulnerability.

   Bump PKGREVISION.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Dec 13 15:30:35 UTC 2013

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php53: Makefile Makefile.php distinfo
   Removed Files:
   	pkgsrc/lang/php53/patches: patch-ext_openssl_openssl.c

   Log Message:
   Update php53 to 5.3.28 (PHP 5.3.28).

   12 Dec 2013, PHP 5.3.28

   - Openssl:
     . Fixed handling null bytes in subjectAltName (CVE-2013-4073).
       (Christian Heimes)
     . Fixed memory corruption in openssl_x509_parse() (CVE-2013-6420).
       (Stefan Esser).

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Dec 13 15:32:21 UTC 2013

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php54: Makefile distinfo

   Log Message:
   Update php54 to 5.4.23 (PHP 5.4.23).

   28 Nov 2013, PHP 5.4.23

   - Core:
     . Fixed bug #66094 (unregister_tick_function tries to cast a Closure to a
       string). (Laruence)
     . Fixed bug #65947 (basename is no more working after fgetcsv in certain
       situation). (Laruence)

   - JSON
     . Fixed whitespace part of bug #64874 ("json_decode handles whitespace and
       case-sensitivity incorrectly"). (Andrea Faulds)

   - MySQLi:
     . Fixed bug #66043 (Segfault calling bind_param() on mysqli). (Laruence)

   - mysqlnd:
     . Fixed bug #66124 (mysqli under mysqlnd loses precision when bind_param
       with 'i'). (Andrey)
     . Fixed bug #66141 (mysqlnd quote function is wrong with NO_BACKSLASH_ESCAPES
       after failed query). (Andrey)

   - OpenSSL:
     . Fixed memory corruption in openssl_x509_parse() (CVE-2013-6420).
       (Stefan Esser).

   - PDO
     . Fixed bug 65946 (sql_parser permanently converts values bound to strings)

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Dec 13 15:33:22 UTC 2013

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php55: Makefile distinfo

   Log Message:
   Update php55 to 5.5.7 (PHP 5.5.7).

   12 Dec 2013, PHP 5.5.7

   - CLI server:
     . Added some MIME types to the CLI web server (Chris Jones)
     . Implemented FR #65917 (getallheaders() is not supported by the built-in web
       server) - also implements apache_response_headers() (Andrea Faulds)

   - Core:
     . Fixed bug #66094 (unregister_tick_function tries to cast a Closure to a
       string). (Laruence)

   - OPCache
     . Fixed bug #66176 (Invalid constant substitution). (Dmitry)
     . Fixed bug #65915 (Inconsistent results with require return value). (Dmitry)
     . Fixed bug #65559 (Opcache: cache not cleared if changes occur while
       running). (Dmitry)

   - OpenSSL:
     . Fixed memory corruption in openssl_x509_parse() (CVE-2013-6420).
       (Stefan Esser).

   - readline
     . Fixed Bug #65714 (PHP cli forces the tty to cooked mode). (Remi)

Revision 1.45 / (download) - annotate - [select for diffs], Fri Dec 13 15:30:35 2013 UTC (9 years, 1 month ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2013Q4-base, pkgsrc-2013Q4
Changes since 1.44: +1 -2 lines
Diff to previous 1.44 (colored)

Update php53 to 5.3.28 (PHP 5.3.28).

12 Dec 2013, PHP 5.3.28

- Openssl:
  . Fixed handling null bytes in subjectAltName (CVE-2013-4073).
    (Christian Heimes)
  . Fixed memory corruption in openssl_x509_parse() (CVE-2013-6420).
    (Stefan Esser).

Revision 1.44 / (download) - annotate - [select for diffs], Thu Dec 5 16:16:40 2013 UTC (9 years, 2 months ago) by taca
Branch: MAIN
Changes since 1.43: +2 -2 lines
Diff to previous 1.43 (colored)

Add fix for CVE-2013-6712, ext/date DoS vulnerability.

Bump PKGREVISION.

Revision 1.39.4.3 / (download) - annotate - [select for diffs], Sat Aug 31 16:51:50 2013 UTC (9 years, 5 months ago) by tron
Branch: pkgsrc-2013Q2
Changes since 1.39.4.2: +3 -1 lines
Diff to previous 1.39.4.2 (colored) to branchpoint 1.39 (colored) next main 1.40 (colored)

Pullup ticket #4226 - requested by bouyer
lang/php53: build fix
lang/php54: build fix

Revisions pulled up:
- lang/php53/Makefile                                           1.42
- lang/php54/Makefile                                           1.12

---
   Module Name:    pkgsrc
   Committed By:   joerg
   Date:           Tue Aug 13 10:22:26 UTC 2013

   Modified Files:
           pkgsrc/lang/php53: Makefile
           pkgsrc/lang/php54: Makefile

   Log Message:
   Allow only the PHP version itself, otherwise the multi-version logic
   will trigger with failing distinfo entries.

Revision 1.39.4.2 / (download) - annotate - [select for diffs], Sun Aug 25 16:56:44 2013 UTC (9 years, 5 months ago) by tron
Branch: pkgsrc-2013Q2
Changes since 1.39.4.1: +2 -1 lines
Diff to previous 1.39.4.1 (colored) to branchpoint 1.39 (colored)

Pullup ticket #4221 - requested by taca
lang/php*: apply framework changes to make pullup requests possible

Revisions pulled up:
- lang/php/common.mk                                            1.1
- lang/php/ext.mk                                               1.30
- lang/php/phpversion.mk                                        1.37-1.39
- lang/php53/DESCR                                              1.2
- lang/php53/Makefile                                           1.40-1.42
- lang/php53/Makefile.common                                    1.28-1.29
- lang/php53/Makefile.php                                       1.37
- lang/php54/DESCR                                              1.2
- lang/php54/MESSAGE.suhosin                                    deleted
- lang/php54/Makefile                                           1.9-1.10,1.12
- lang/php54/Makefile.common                                    1.15-1.16
- lang/php54/Makefile.php                                       1.6
- lang/php54/PLIST                                              1.4

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun Jul 21 17:29:47 UTC 2013

   Modified Files:
   	pkgsrc/lang/php: ext.mk phpversion.mk
   	pkgsrc/lang/php53: Makefile.common Makefile.php
   	pkgsrc/lang/php54: Makefile.common Makefile.php PLIST
   Added Files:
   	pkgsrc/lang/php: common.mk
   Removed Files:
   	pkgsrc/lang/php54: MESSAGE.suhosin

   Log Message:
   Clean up php's framework.

   * Define PHP's version at one place.
   * Remove obsolete description in comments.
   * Add "used by www/php-fpm/Makefile" in php5[34]/Makefile.php.
   * Remove commented out support for suhosin extension from php54.
   * Add PHP_CHECK_INSTALLED and PHP_EXTENSION_DIR to php/phpversion.mk.

   No functional should be made.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Mon Jul 29 03:59:44 UTC 2013

   Modified Files:
   	pkgsrc/lang/php53: Makefile Makefile.common

   Log Message:
   Move PHP_CHECK_INSTALLED to before including Makefile.php since it should
   be defined before including lang/php/phpversion.mk.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Mon Jul 29 04:20:55 UTC 2013

   Modified Files:
   	pkgsrc/lang/php54: Makefile Makefile.common

   Log Message:
   Move PHP_CHECK_INSTALLED to before including Makefile.php since it should
   be defined before including lang/php/phpversion.mk.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Mon Jul 29 16:19:24 UTC 2013

   Modified Files:
   	pkgsrc/lang/php53: DESCR Makefile

   Log Message:
   Explicitly note it is PHP 5.3.x pacakge in COMMENT of Makefile and DESCR
   file.

   Bump PKGREVISION.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Mon Jul 29 16:21:07 UTC 2013

   Modified Files:
   	pkgsrc/lang/php54: DESCR Makefile

   Log Message:
   Explicitly note it is PHP 5.4.x pacakge in COMMENT of Makefile and DESCR
   file.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Mon Jul 29 16:38:12 UTC 2013

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk

   Log Message:
   * Add php55 support.
   * Make PKG_PHP's value as description in comment.

---
   Module Name:	pkgsrc
   Committed By:	joerg
   Date:		Tue Aug 13 10:22:26 UTC 2013

   Modified Files:
   	pkgsrc/lang/php53: Makefile
   	pkgsrc/lang/php54: Makefile
   	pkgsrc/lang/php55: Makefile

   Log Message:
   Allow only the PHP version itself, otherwise the multi-version logic
   will trigger with failing distinfo entries.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Wed Aug 14 14:53:03 UTC 2013

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk


   Log Message:
   Correct checking condition of PHP_CHECK_INSTALLED.

Revision 1.39.4.1 / (download) - annotate - [select for diffs], Sun Aug 25 16:52:09 2013 UTC (9 years, 5 months ago) by tron
Branch: pkgsrc-2013Q2
Changes since 1.39: +2 -1 lines
Diff to previous 1.39 (colored)

Pullup ticket #4220 - requested by taca
lang/php53: security patch

Revisions pulled up:
- lang/php53/Makefile                                           1.43 via patch
- lang/php53/distinfo                                           1.67-1.68
- lang/php53/patches/patch-ext_openssl_openssl.c                1.1-1.2

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Wed Aug 14 15:42:56 UTC 2013

   Modified Files:
   	pkgsrc/lang/php53: Makefile distinfo
   Added Files:
   	pkgsrc/lang/php53/patches: patch-ext_openssl_openssl.c

   Log Message:
   Add fix fo openssl, CVE-2013-4073.

   Bump PKGREVISION.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Aug 16 00:38:13 UTC 2013

   Modified Files:
   	pkgsrc/lang/php53: distinfo
   	pkgsrc/lang/php53/patches: patch-ext_openssl_openssl.c

   Log Message:
   Since openssl's security problem has assigned CVE-2013-4248, update comment
   in the patch file.

Revision 1.43 / (download) - annotate - [select for diffs], Wed Aug 14 15:42:56 2013 UTC (9 years, 5 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2013Q3-base
Branch point for: pkgsrc-2013Q3
Changes since 1.42: +2 -2 lines
Diff to previous 1.42 (colored)

Add fix fo openssl, CVE-2013-4073.

Bump PKGREVISION.

Revision 1.42 / (download) - annotate - [select for diffs], Tue Aug 13 10:22:26 2013 UTC (9 years, 5 months ago) by joerg
Branch: MAIN
Changes since 1.41: +3 -1 lines
Diff to previous 1.41 (colored)

Allow only the PHP version itself, otherwise the multi-version logic
will trigger with failing distinfo entries.

Revision 1.41 / (download) - annotate - [select for diffs], Mon Jul 29 16:19:24 2013 UTC (9 years, 6 months ago) by taca
Branch: MAIN
Changes since 1.40: +3 -2 lines
Diff to previous 1.40 (colored)

Explicitly note it is PHP 5.3.x pacakge in COMMENT of Makefile and DESCR
file.

Bump PKGREVISION.

Revision 1.40 / (download) - annotate - [select for diffs], Mon Jul 29 03:59:44 2013 UTC (9 years, 6 months ago) by taca
Branch: MAIN
Changes since 1.39: +2 -1 lines
Diff to previous 1.39 (colored)

Move PHP_CHECK_INSTALLED to before including Makefile.php since it should
be defined before including lang/php/phpversion.mk.

Revision 1.39 / (download) - annotate - [select for diffs], Sat Mar 16 01:58:17 2013 UTC (9 years, 10 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2013Q2-base, pkgsrc-2013Q1-base, pkgsrc-2013Q1
Branch point for: pkgsrc-2013Q2
Changes since 1.38: +1 -2 lines
Diff to previous 1.38 (colored)

Update php53 to 5.3.23.

14 Mar 2013, PHP 5.3.23

- SOAP
  . Improved check that soap.wsdl_cache_dir conforms to open_basedir (Dmitry)
  . Disabled external entities loading. (Dmitry)

- SPL:
  . Fixed bug #64264 (SPLFixedArray toArray problem). (Laruence)
  . Fixed bug #64228 (RecursiveDirectoryIterator always assumes SKIP_DOTS).
    (patch by kriss@krizalys.com, Laruence)
  . Fixed bug #52861 (unset fails with ArrayObject and deep arrays).
    (Mike Willbanks)

Revision 1.38 / (download) - annotate - [select for diffs], Thu Feb 28 21:28:20 2013 UTC (9 years, 11 months ago) by imil
Branch: MAIN
Changes since 1.37: +2 -1 lines
Diff to previous 1.37 (colored)

Uncomment the pid parameter for php-fpm.conf so the pidfile is created and
rc.d script can really start / stop php-fpm. Bump PKGREVISION.

Revision 1.37 / (download) - annotate - [select for diffs], Fri Feb 22 03:06:16 2013 UTC (9 years, 11 months ago) by taca
Branch: MAIN
Changes since 1.36: +1 -2 lines
Diff to previous 1.36 (colored)

Update php53 to 5.3.22.

PHP                                                                        NEWS
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
21 Feb 2013, PHP 5.3.22

- Zend Engine:
  . Fixed bug #64099 (Wrong TSRM usage in zend_Register_class alias). (Johannes)
  . Fixed bug #63899 (Use after scope error in zend_compile). (Laruence)

- Core
  . Fixed bug #63943 (Bad warning text from strpos() on empty needle).
    (Laruence)

- Date:
  . Fixed bug #55397 (comparsion of incomplete DateTime causes SIGSEGV).
    (Laruence, Derick)

- FPM:
  . Fixed bug #63999 (php with fpm fails to build on Solaris 10 or 11). (Adam)

- SOAP
  . Added check that soap.wsdl_cache_dir conforms to open_basedir
    (CVE-2013-1635). (Dmitry)
  . Disabled external entities loading (CVE-2013-1643). (Dmitry)

- SPL:
  . Fixed bug #64106 (Segfault on SplFixedArray[][x] = y when extended). (Nikita Popov)

Revision 1.36 / (download) - annotate - [select for diffs], Wed Feb 6 23:22:37 2013 UTC (9 years, 11 months ago) by jperkin
Branch: MAIN
Changes since 1.35: +2 -1 lines
Diff to previous 1.35 (colored)

PKGREVISION bumps for the security/openssl 1.0.1d update.

Revision 1.35 / (download) - annotate - [select for diffs], Tue Oct 2 20:11:49 2012 UTC (10 years, 4 months ago) by asau
Branch: MAIN
CVS Tags: pkgsrc-2012Q4-base, pkgsrc-2012Q4
Changes since 1.34: +1 -2 lines
Diff to previous 1.34 (colored)

Drop superfluous PKG_DESTDIR_SUPPORT, "user-destdir" is default these days.

Revision 1.34 / (download) - annotate - [select for diffs], Fri Aug 17 15:32:31 2012 UTC (10 years, 5 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2012Q3-base, pkgsrc-2012Q3
Changes since 1.33: +1 -2 lines
Diff to previous 1.33 (colored)

Update php53 to 5.3.16 (PHP 5.3.16).

PHP                                                                        NEWS
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
16 Aug 2012, PHP 5.3.16

- Core:
  . Fixed bug #60194 (--with-zend-multibyte and --enable-debug reports LEAK
    with run-test.php). (Laruence)

- CURL:
  . Fixed bug #62499 (curl_setopt($ch, CURLOPT_COOKIEFILE, "") returns false).
    (r.hampartsumyan@gmail.com, Laruence)

- DateTime:
  . Fixed Bug #62500 (Segfault in DateInterval class when extended). (Laruence)

- Reflection:
  . Fixed bug #62715 (ReflectionParameter::isDefaultValueAvailable() wrong
    result). (Laruence)

- SPL:
  . Fixed bug #62616 (ArrayIterator::count() from IteratorIterator instance
    gives Segmentation fault). (Laruence, Gustavo)

Revision 1.33 / (download) - annotate - [select for diffs], Wed Jul 25 13:20:30 2012 UTC (10 years, 6 months ago) by fhajny
Branch: MAIN
Changes since 1.32: +2 -1 lines
Diff to previous 1.32 (colored)

Fix file descriptor leak on SunOS. Bump PKGREVISION.
See https://bugs.php.net/bug.php?id=47675

Revision 1.32 / (download) - annotate - [select for diffs], Sat Jun 16 01:27:24 2012 UTC (10 years, 7 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2012Q2-base, pkgsrc-2012Q2
Changes since 1.31: +1 -2 lines
Diff to previous 1.31 (colored)

Update php53 to 5.3.14 (PHP 5.3.14).

Version 5.3.14
06-June-2012

* CLI SAPI
    - Fixed bug #61546 (functions related to current script failed when
      chdir() in cli sapi)

* Core
    - Fixed CVE-2012-2143
    - Fixed bug #62005 (unexpected behavior when incrementally assigning to a
      member of a null object)
    - Fixed bug #61730 (Segfault from array_walk modifying an array passed by
      reference)
    - Fixed missing bound check in iptcparse()
    - Fixed bug #61764 ('I' unpacks n as signed if n > 2^31-1 on LP64)
    - Fixed bug #54197 ([PATH=] sections incompatibility with
      user_ini.filename set to null)
    - Fixed bug #61713 (Logic error in charset detection for htmlentities)
    - Fixed bug #61991 (long overflow in realpath_cache_get())
    - Changed php://fd to be available only for CLI.

* CURL
    - Fixed bug #61948 (CURLOPT_COOKIEFILE '' raises open_basedir restriction)

* COM
    - Fixed bug #62146 com_dotnet cannot be built shared

* Fileinfo
    - Fixed bug #61812 (Uninitialised value used in libmagic)

* Iconv
    - Fixed a bug that iconv extension fails to link to the correct library
      when another extension makes use of a library that links to the iconv
      library. See https://bugs.gentoo.org/show_bug.cgi?id=364139 for detail

* Intl
    - Fixed bug #62082 (Memory corruption in internal function
      get_icu_disp_value_src_php()

* JSON
    - Fixed bug #61537 (json_encode() incorrectly truncates/discards
      information)

* PDO
    - Fixed bug #61755 (A parsing bug in the prepared statements can lead to
      access violations)

* Phar
    - Fixed bug #61065 (Secunia SA44335)

* Streams
    - Fixed bug #61961 (file_get_contents leaks when access empty file with
      maxlen set)

Revision 1.31 / (download) - annotate - [select for diffs], Thu Jun 14 07:43:11 2012 UTC (10 years, 7 months ago) by sbd
Branch: MAIN
Changes since 1.30: +2 -2 lines
Diff to previous 1.30 (colored)

Recursive PKGREVISION bump for libxml2 buildlink addition.

Revision 1.30 / (download) - annotate - [select for diffs], Tue Jun 12 14:45:51 2012 UTC (10 years, 7 months ago) by taca
Branch: MAIN
Changes since 1.29: +2 -2 lines
Diff to previous 1.29 (colored)

Add fix for http://secunia.com/advisories/44335/, also CVE-2012-2386.

Bump PKGREVISION.

Revision 1.29 / (download) - annotate - [select for diffs], Thu May 31 15:58:10 2012 UTC (10 years, 8 months ago) by taca
Branch: MAIN
Changes since 1.28: +2 -1 lines
Diff to previous 1.28 (colored)

Add a patch to fix for CVE_2012-2143 from PHP's repository.

Bump PKGREVISION.

Revision 1.28 / (download) - annotate - [select for diffs], Sat May 19 09:51:34 2012 UTC (10 years, 8 months ago) by marino
Branch: MAIN
Changes since 1.27: +3 -3 lines
Diff to previous 1.27 (colored)

lang/php53: Fix unwanted directory removal

Replace OWN_DIRS with @pkgdir to avoid unwanted deletion of PHP extension
directory when the only extension is deinstalled.

Revision 1.27 / (download) - annotate - [select for diffs], Wed May 9 06:52:51 2012 UTC (10 years, 8 months ago) by taca
Branch: MAIN
Changes since 1.26: +1 -2 lines
Diff to previous 1.26 (colored)

Update php53 pacakge to 5.3.13 (PHP 5.3.13).

08 May 2012, PHP 5.3.13
- CGI
  . Improve fix for PHP-CGI query string parameter vulnerability, CVE-2012-2311.
    (Stas)

Revision 1.24.2.2 / (download) - annotate - [select for diffs], Mon May 7 09:40:48 2012 UTC (10 years, 9 months ago) by sbd
Branch: pkgsrc-2012Q1
Changes since 1.24.2.1: +2 -1 lines
Diff to previous 1.24.2.1 (colored) to branchpoint 1.24 (colored) next main 1.25 (colored)

Pullup ticket #3774 - requested by taca
lang/php53 security update

Revisions pulled up:
- lang/php53/Makefile                                           1.26
- lang/php53/distinfo                                           1.39-1.40
- lang/php53/patches/patch-sapi_cgi_cgi__main.c                 1.1-1.2

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun May  6 14:27:46 UTC 2012

   Modified Files:
   	pkgsrc/lang/php53: Makefile distinfo
   Added Files:
   	pkgsrc/lang/php53/patches: patch-sapi_cgi_cgi__main.c

   Log Message:
   Additional fix for CVS-2012-1823; it wasn't fixed by PHP 5.3.12.

   Bump PKGREVISION.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sun May  6 14:31:21 UTC 2012

   Modified Files:
   	pkgsrc/lang/php53: distinfo
   	pkgsrc/lang/php53/patches: patch-sapi_cgi_cgi__main.c

   Log Message:
   Fix miss spelling in comment: s/CVS-/CVE-/.

Revision 1.26 / (download) - annotate - [select for diffs], Sun May 6 14:27:46 2012 UTC (10 years, 9 months ago) by taca
Branch: MAIN
Changes since 1.25: +2 -1 lines
Diff to previous 1.25 (colored)

Additional fix for CVS-2012-1823; it wasn't fixed by PHP 5.3.12.

Bump PKGREVISION.

Revision 1.24.2.1 / (download) - annotate - [select for diffs], Fri May 4 08:39:30 2012 UTC (10 years, 9 months ago) by spz
Branch: pkgsrc-2012Q1
Changes since 1.24: +1 -2 lines
Diff to previous 1.24 (colored)

Pullup ticket #3769 - requested by taca
lang/php53: security update

Revisions pulled up:
- lang/php53/Makefile                                           1.25
- lang/php53/Makefile.common                                    1.11-1.12
- lang/php53/Makefile.php                                       1.14-1.15
- lang/php53/distinfo                                           1.37-1.38
- lang/php53/patches/patch-main_SAPI.c                          deleted

-------------------------------------------------------------------
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Apr 26 14:26:33 UTC 2012

   Modified Files:
   	pkgsrc/lang/php53: Makefile Makefile.common Makefile.php distinfo
   Removed Files:
   	pkgsrc/lang/php53/patches: patch-main_SAPI.c

   Log Message:
   Update php53 package to 5.3.11.

   For full changes, please refer <http://www.php.net/ChangeLog-5.php#5.3.11>.

   Security Enhancements:

   * Fixed bug #54374 (Insufficient validating of upload name leading to
     corrupted $_FILES indices). (CVE-2012-1172).
   * Add open_basedir checks to readline_write_history and readline_read_history.
   * Fixed bug #61043 (Regression in magic_quotes_gpc fix for CVE-2012-0831).

   Key enhancements in these releases include:

   * Added debug info handler to DOM objects.
   * Fixed bug #61172 (Add Apache 2.4 support).


   To generate a diff of this commit:
   cvs rdiff -u -r1.24 -r1.25 pkgsrc/lang/php53/Makefile
   cvs rdiff -u -r1.10 -r1.11 pkgsrc/lang/php53/Makefile.common
   cvs rdiff -u -r1.13 -r1.14 pkgsrc/lang/php53/Makefile.php
   cvs rdiff -u -r1.36 -r1.37 pkgsrc/lang/php53/distinfo
   cvs rdiff -u -r1.1 -r0 pkgsrc/lang/php53/patches/patch-main_SAPI.c

-------------------------------------------------------------------
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri May  4 01:48:41 UTC 2012

   Modified Files:
   	pkgsrc/lang/php53: Makefile.common Makefile.php distinfo

   Log Message:
   Update php53 package to 5.3.12.

   03 Mar 2012, PHP 5.3.12
   - Fix PHP-CGI query string parameter vulnerability, CVE-2012-1823. (Rasmus)


   To generate a diff of this commit:
   cvs rdiff -u -r1.11 -r1.12 pkgsrc/lang/php53/Makefile.common
   cvs rdiff -u -r1.14 -r1.15 pkgsrc/lang/php53/Makefile.php
   cvs rdiff -u -r1.37 -r1.38 pkgsrc/lang/php53/distinfo

Revision 1.25 / (download) - annotate - [select for diffs], Thu Apr 26 14:26:32 2012 UTC (10 years, 9 months ago) by taca
Branch: MAIN
Changes since 1.24: +1 -2 lines
Diff to previous 1.24 (colored)

Update php53 package to 5.3.11.

For full changes, please refer <http://www.php.net/ChangeLog-5.php#5.3.11>.

Security Enhancements:

* Fixed bug #54374 (Insufficient validating of upload name leading to
  corrupted $_FILES indices). (CVE-2012-1172).
* Add open_basedir checks to readline_write_history and readline_read_history.
* Fixed bug #61043 (Regression in magic_quotes_gpc fix for CVE-2012-0831).

Key enhancements in these releases include:

* Added debug info handler to DOM objects.
* Fixed bug #61172 (Add Apache 2.4 support).

Revision 1.24 / (download) - annotate - [select for diffs], Thu Apr 5 03:17:26 2012 UTC (10 years, 10 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2012Q1-base
Branch point for: pkgsrc-2012Q1
Changes since 1.23: +2 -1 lines
Diff to previous 1.23 (colored)

Add a patch to fix possible newline injection problem of header() function
from PHP 5.4.0.  This is a small security fix.

Bump PKGREVISION.

Revision 1.19.2.3 / (download) - annotate - [select for diffs], Sat Feb 4 08:32:54 2012 UTC (11 years ago) by sbd
Branch: pkgsrc-2011Q4
Changes since 1.19.2.2: +1 -2 lines
Diff to previous 1.19.2.2 (colored) to branchpoint 1.19 (colored) next main 1.20 (colored)

Pullup ticket #3671 - requested by taca
lang/php53 security and build fixes.

Revisions pulled up:
- lang/php53/Makefile                                           1.22-1.23
- lang/php53/Makefile.common                                    1.10
- lang/php53/Makefile.php                                       1.13
- lang/php53/distinfo                                           1.32-1.35
- lang/php53/patches/patch-main_php__variables.c                deleted
- lang/php53/patches/patch-main_streams_cast.c                  1.1

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Feb  2 15:44:09 UTC 2012

   Modified Files:
   	pkgsrc/lang/php53: distinfo
   Added Files:
   	pkgsrc/lang/php53/patches: patch-main_streams_cast.c

   Log Message:
   Trying to fix build problem on NetBSD current recently.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Feb  2 16:00:40 UTC 2012

   Modified Files:
   	pkgsrc/lang/php53: Makefile distinfo
   Added Files:
   	pkgsrc/lang/php53/patches: patch-main_php__variables.c

   Log Message:
   Add fix for "Critical PHP Remote Vulnerability Introduced in Fix for PHP
   Hashtable Collision DOS" by revision 323007 from PHP's repository.

   http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/

   Bump PKGREVISION.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Feb  2 16:19:44 UTC 2012

   Modified Files:
   	pkgsrc/lang/php53: distinfo
   	pkgsrc/lang/php53/patches: patch-main_php__variables.c

   Log Message:
   And more fix for memory leaks by revision 323013 from PHP's repository.
   Hopefully, these 18 minutes is allowed to avoid to PKGREVISION bump.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Feb  3 03:10:34 UTC 2012

   Modified Files:
   	pkgsrc/lang/php53: Makefile Makefile.common Makefile.php distinfo
   Removed Files:
   	pkgsrc/lang/php53/patches: patch-main_php__variables.c

   Log Message:
   Update php53 package to 5.3.10.  Below security fix is already included
   in php-5.3.9nb2 package.

   02 Feb 2012, PHP 5.3.10

   - Core:
     . Fixed arbitrary remote code execution vulnerability reported by Stefan
       Esser, CVE-2012-0830. (Stas, Dmitry)

Revision 1.23 / (download) - annotate - [select for diffs], Fri Feb 3 03:10:33 2012 UTC (11 years ago) by taca
Branch: MAIN
Changes since 1.22: +1 -2 lines
Diff to previous 1.22 (colored)

Update php53 package to 5.3.10.  Below security fix is already included
in php-5.3.9nb2 package.

02 Feb 2012, PHP 5.3.10

- Core:
  . Fixed arbitrary remote code execution vulnerability reported by Stefan
    Esser, CVE-2012-0830. (Stas, Dmitry)

Revision 1.22 / (download) - annotate - [select for diffs], Thu Feb 2 16:00:40 2012 UTC (11 years ago) by taca
Branch: MAIN
Changes since 1.21: +2 -2 lines
Diff to previous 1.21 (colored)

Add fix for "Critical PHP Remote Vulnerability Introduced in Fix for PHP
Hashtable Collision DOS" by revision 323007 from PHP's repository.

http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/

Bump PKGREVISION.

Revision 1.19.2.2 / (download) - annotate - [select for diffs], Sat Jan 21 09:02:55 2012 UTC (11 years ago) by sbd
Branch: pkgsrc-2011Q4
Changes since 1.19.2.1: +2 -1 lines
Diff to previous 1.19.2.1 (colored) to branchpoint 1.19 (colored)

Pullup ticket #3659 - requested by taca
lang/php53 suhosin-patch update.

Revisions pulled up:
- lang/php53/Makefile                                           1.21
- lang/php53/Makefile.php                                       1.12
- lang/php53/distinfo                                           1.31

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Fri Jan 20 03:22:08 UTC 2012

   Modified Files:
   	pkgsrc/lang/php53: Makefile Makefile.php distinfo

   Log Message:
   Use official suhosin-patch for PHP 5.3.9 instead of local one based on
   for PHP5.3.7.

   Bump PKGREVISION.

Revision 1.21 / (download) - annotate - [select for diffs], Fri Jan 20 03:22:08 2012 UTC (11 years ago) by taca
Branch: MAIN
Changes since 1.20: +2 -1 lines
Diff to previous 1.20 (colored)

Use official suhosin-patch for PHP 5.3.9 instead of local one based on
for PHP5.3.7.

Bump PKGREVISION.

Revision 1.19.2.1 / (download) - annotate - [select for diffs], Thu Jan 12 11:29:04 2012 UTC (11 years ago) by tron
Branch: pkgsrc-2011Q4
Changes since 1.19: +1 -2 lines
Diff to previous 1.19 (colored)

Pullup ticket #3641 - requested by taca
archivers/php-bz2: security update
archivers/php-zip: security update
archivers/php-zlib: security update
converters/php-iconv: security update
converters/php-mbstring: security update
databases/php-dba: security update
databases/php-ldap: security update
databases/php-mysql: security update
databases/php-mysqli: security update
databases/php-pdo: security update
databases/php-pdo_dblib: security update
databases/php-pdo_mysql: security update
databases/php-pdo_pgsql: security update
databases/php-pdo_sqlite: security update
databases/php-pgsql: security update
databases/php-sqlite: security update
devel/php-gettext: security update
devel/php-gmp: security update
devel/php-pcntl: security update
devel/php-posix: security update
devel/php-shmop: security update
devel/php-sysvmsg: security update
devel/php-sysvsem: security update
devel/php-sysvshm: security update
graphics/php-exif: security update
graphics/php-gd: security update
mail/php-imap: security update
math/php-bcmath: security update
net/php-ftp: security update
net/php-snmp: security update
net/php-soap: security update
net/php-sockets: security update
net/php-xmlrpc: security update
security/php-mcrypt: security update
textproc/php-dom: security update
textproc/php-json: security update
textproc/php-pspell: security update
textproc/php-wddx: security update
textproc/php-xsl: security update
time/php-calendar: security update
www/php-curl: security update
www/php-tidy: security update

Revisions pulled up:
- lang/php53/Makefile                                           1.20
- lang/php53/Makefile.common                                    1.9
- lang/php53/Makefile.php                                       1.11
- lang/php53/distinfo                                           1.29
- lang/php53/patches/patch-Zend_zend__builtin__functions.c      deleted
- lang/php53/patches/patch-as                                   deleted
- lang/php53/patches/patch-main_main.c                          deleted
- lang/php53/patches/patch-main_php__globals.h                  deleted
- lang/php53/patches/patch-main_php__variables.c                deleted

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Wed Jan 11 14:53:35 UTC 2012

   Modified Files:
   	pkgsrc/lang/php53: Makefile Makefile.common Makefile.php distinfo
   Removed Files:
   	pkgsrc/lang/php53/patches: patch-Zend_zend__builtin__functions.c
   	    patch-as patch-main_main.c patch-main_php__globals.h
   	    patch-main_php__variables.c

   Log Message:
   Update php53 pacakge to 5.3.9; PHP 5.3.9.
   suhosin-patch is provided as modified one; only copyright year.

   PHP 5.3.9 Released!

   [10-Jan-2012] The PHP development team would like to announce the immediate
   availability of PHP 5.3.9. This release focuses on improving the stability of
   the PHP 5.3.x branch with over 90 bug fixes, some of which are security
   related.

   Security Enhancements and Fixes in PHP 5.3.9:

   	* Added max_input_vars directive to prevent attacks based on hash
   	  collisions. (CVE-2011-4885)
   	* Fixed bug #60150 (Integer overflow during the parsing of invalid
             exif header). (CVE-2011-4566)

   Key enhancements in PHP 5.3.9 include:

   	* Fixed bug #55475 (is_a() triggers autoloader, new optional 3rd
             argument to is_a and is_subclass_of).
   	* Fixed bug #55609 (mysqlnd cannot be built shared)
   	* Many changes to the FPM SAPI module

   For a full list of changes in PHP 5.3.9, see the ChangeLog. For source
   downloads please visit our downloads page, Windows binaries can be found on
   windows.php.net/download/.

   All users are strongly encouraged to upgrade to PHP 5.3.9.

Revision 1.20 / (download) - annotate - [select for diffs], Wed Jan 11 14:53:35 2012 UTC (11 years ago) by taca
Branch: MAIN
Changes since 1.19: +1 -2 lines
Diff to previous 1.19 (colored)

Update php53 pacakge to 5.3.9; PHP 5.3.9.
suhosin-patch is provided as modified one; only copyright year.


PHP 5.3.9 Released!

[10-Jan-2012] The PHP development team would like to announce the immediate
availability of PHP 5.3.9. This release focuses on improving the stability of
the PHP 5.3.x branch with over 90 bug fixes, some of which are security
related.

Security Enhancements and Fixes in PHP 5.3.9:

	* Added max_input_vars directive to prevent attacks based on hash
	  collisions. (CVE-2011-4885)
	* Fixed bug #60150 (Integer overflow during the parsing of invalid
          exif header). (CVE-2011-4566)

Key enhancements in PHP 5.3.9 include:

	* Fixed bug #55475 (is_a() triggers autoloader, new optional 3rd
          argument to is_a and is_subclass_of).
	* Fixed bug #55609 (mysqlnd cannot be built shared)
	* Many changes to the FPM SAPI module

For a full list of changes in PHP 5.3.9, see the ChangeLog. For source
downloads please visit our downloads page, Windows binaries can be found on
windows.php.net/download/.

All users are strongly encouraged to upgrade to PHP 5.3.9.

Revision 1.19 / (download) - annotate - [select for diffs], Tue Jan 3 16:23:14 2012 UTC (11 years, 1 month ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2011Q4-base
Branch point for: pkgsrc-2011Q4
Changes since 1.18: +2 -2 lines
Diff to previous 1.18 (colored)

Add security fix for http://www.ocert.org/advisories/ocert-2011-003.html
from r321038 from PHP's repository.

Bump PKGREVISION.

Revision 1.17.2.1 / (download) - annotate - [select for diffs], Sat Oct 22 07:01:25 2011 UTC (11 years, 3 months ago) by sbd
Branch: pkgsrc-2011Q3
Changes since 1.17: +2 -1 lines
Diff to previous 1.17 (colored) next main 1.18 (colored)

Pullup ticket #3573 - requested by taca
lang/php53 security update

Revisions pulled up:
- lang/php53/Makefile                                           1.18
- lang/php53/Makefile.php                                       1.9-1.10
- lang/php53/distinfo                                           1.23-1.26
- lang/php53/patches/patch-Zend_zend__builtin__functions.c      1.1-1.2
- lang/php53/patches/patch-as                                   1.1

---
   Module Name:	pkgsrc
   Committed By:	jklos
   Date:		Thu Oct  6 05:34:00 UTC 2011

   Modified Files:
   	pkgsrc/lang/php53: distinfo
   Added Files:
   	pkgsrc/lang/php53/patches: patch-as

   Log Message:
   Atomic operations via gcc are not supported on many archs. Allow them only
     on amd64, powerpc, i386 and alpha.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Oct 20 12:38:24 UTC 2011

   Modified Files:
   	pkgsrc/lang/php53: Makefile.php distinfo

   Log Message:
   Re-add suhosin-patch to distinfo.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Oct 20 12:39:33 UTC 2011

   Modified Files:
   	pkgsrc/lang/php53: Makefile.php

   Log Message:
   Revert accidental commit with previous commit.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Oct 20 13:32:20 UTC 2011

   Modified Files:
   	pkgsrc/lang/php53: Makefile distinfo
   Added Files:
   	pkgsrc/lang/php53/patches: patch-Zend_zend__builtin__functions.c

   Log Message:
   Add fix for 2011-3379 from r317183 from PHP's repository.

   Bump PKGREVISION.

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Thu Oct 20 14:30:55 UTC 2011

   Modified Files:
   	pkgsrc/lang/php53: distinfo
   	pkgsrc/lang/php53/patches: patch-Zend_zend__builtin__functions.c

   Log Message:
   A small correction in comment text of the patch.

Revision 1.18 / (download) - annotate - [select for diffs], Thu Oct 20 13:32:20 2011 UTC (11 years, 3 months ago) by taca
Branch: MAIN
Changes since 1.17: +2 -1 lines
Diff to previous 1.17 (colored)

Add fix for 2011-3379 from r317183 from PHP's repository.

Bump PKGREVISION.

Revision 1.17 / (download) - annotate - [select for diffs], Tue Aug 23 22:22:27 2011 UTC (11 years, 5 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2011Q3-base
Branch point for: pkgsrc-2011Q3
Changes since 1.16: +1 -2 lines
Diff to previous 1.16 (colored)

Update php53 package to 5.3.8.

(crypt()'s problem was already fixed our php53-5.3.7nb1 package.)


PHP                                                                        NEWS
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
23 Aug 2011, PHP 5.3.8

- Core:
  . Fixed bug #55439 (crypt() returns only the salt for MD5). (Stas)

- OpenSSL:
  . Reverted a change in timeout handling restoring PHP 5.3.6 behavior,
    as the new behavior caused mysqlnd SSL connections to hang (#55283).
    (Pierre, Andrey, Johannes)

Revision 1.16 / (download) - annotate - [select for diffs], Mon Aug 22 11:43:30 2011 UTC (11 years, 5 months ago) by obache
Branch: MAIN
Changes since 1.15: +2 -1 lines
Diff to previous 1.15 (colored)

missing bump PKGREVISION of last fix for php53 MD5 password encryption problem.

Revision 1.15 / (download) - annotate - [select for diffs], Sat Aug 20 13:55:09 2011 UTC (11 years, 5 months ago) by taca
Branch: MAIN
Changes since 1.14: +1 -2 lines
Diff to previous 1.14 (colored)

Update php53 package to 5.3.7.


PHP 5.3.7 Released!

[18-Aug-2011] The PHP development team would like to announce the immediate
availability of PHP 5.3.7. This release focuses on improving the stability of
the PHP 5.3.x branch with over 90 bug fixes, some of which are security
related.

Security Enhancements and Fixes in PHP 5.3.7:

* Updated crypt_blowfish to 1.2. (CVE-2011-2483)
* Fixed crash in error_log(). Reported by Mateusz Kocielski
* Fixed buffer overflow on overlog salt in crypt().
* Fixed bug #54939 (File path injection vulnerability in RFC1867 File upload
  filename). Reported by Krzysztof Kotowicz. (CVE-2011-2202)
* Fixed stack buffer overflow in socket_connect(). (CVE-2011-1938)
* Fixed bug #54238 (use-after-free in substr_replace()). (CVE-2011-1148)

Key enhancements in PHP 5.3.7 include:

* Upgraded bundled Sqlite3 to version 3.7.7.1
* Upgraded bundled PCRE to version 8.12
* Fixed bug #54910 (Crash when calling call_user_func with unknown function
  name)

* Fixed bug #54585 (track_errors causes segfault)
* Fixed bug #54262 (Crash when assigning value to a dimension in a non-array)
* Fixed a crash inside dtor for error handling
* Fixed bug #55339 (Segfault with allow_call_time_pass_reference = Off)
* Fixed bug #54935 php_win_err can lead to crash
* Fixed bug #54332 (Crash in zend_mm_check_ptr // Heap corruption)
* Fixed bug #54305 (Crash in gc_remove_zval_from_buffer)
* Fixed bug #54580 (get_browser() segmentation fault when browscap ini
  directive is set through php_admin_value)
* Fixed bug #54529 (SAPI crashes on apache_config.c:197)
* Fixed bug #54283 (new DatePeriod(NULL) causes crash).
* Fixed bug #54269 (Short exception message buffer causes crash)
* Fixed Bug #54221 (mysqli::get_warnings segfault when used in multi queries)
* Fixed bug #54395 (Phar::mount() crashes when calling with wrong parameters)
* Fixed bug #54384 (Dual iterators, GlobIterator, SplFileObject and
  SplTempFileObject crash when user-space classes don't call the parent
  constructor)
* Fixed bug #54292 (Wrong parameter causes crash in
  SplFileObject::__construct())
* Fixed bug #54291 (Crash iterating DirectoryIterator for dir name starting
  with \0)
* Fixed bug #54281 (Crash in non-initialized RecursiveIteratorIterator)
* Fixed bug #54623 (Segfault when writing to a persistent socket after closing
  a copy of the socket)
* Fixed bug #54681 (addGlob() crashes on invalid flags)
* Over 80 other bug fixes.

Revision 1.14 / (download) - annotate - [select for diffs], Fri Jul 8 10:20:10 2011 UTC (11 years, 6 months ago) by adam
Branch: MAIN
Changes since 1.13: +9 -13 lines
Diff to previous 1.13 (colored)

pkglint clean-up

Revision 1.13 / (download) - annotate - [select for diffs], Fri Jun 24 11:59:29 2011 UTC (11 years, 7 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2011Q2-base, pkgsrc-2011Q2
Changes since 1.12: +2 -2 lines
Diff to previous 1.12 (colored)

Change LICENSE to php from php-license.

Revision 1.12 / (download) - annotate - [select for diffs], Wed Jun 22 09:54:35 2011 UTC (11 years, 7 months ago) by taca
Branch: MAIN
Changes since 1.11: +2 -2 lines
Diff to previous 1.11 (colored)

Improve previous security fix for cyrpt_blowfish().

There was incompatible result by previous fix and it should be gone away.

Beside ths security fix, ${PREFIX}/bin/phar.phar has correct shbang line.

Bump PKGREVISION.

Revision 1.11 / (download) - annotate - [select for diffs], Mon Jun 20 13:38:19 2011 UTC (11 years, 7 months ago) by taca
Branch: MAIN
Changes since 1.10: +4 -2 lines
Diff to previous 1.10 (colored)

* Add a fix of potential security problem by char signedness processing:

	http://www.openwall.com/lists/oss-security/2011/06/20/2

 Noted by Matthias Drochner via private mail.

* Add LICENSE.

Bump PKGREVISION.

Revision 1.10 / (download) - annotate - [select for diffs], Wed Jun 15 14:42:03 2011 UTC (11 years, 7 months ago) by taca
Branch: MAIN
Changes since 1.9: +2 -2 lines
Diff to previous 1.9 (colored)

Add two security fix, CVE-2011-1938 and filename-injection from PHP 5.3's
repository.

Bump PKGREVISION.

Revision 1.8.2.1 / (download) - annotate - [select for diffs], Tue May 17 08:17:06 2011 UTC (11 years, 8 months ago) by sbd
Branch: pkgsrc-2011Q1
Changes since 1.8: +2 -1 lines
Diff to previous 1.8 (colored) next main 1.9 (colored)

Pullup ticket #3432 - requested by taca
lang/php53 security update

Revisions pulled up:
- lang/php53/Makefile                                           1.9
- lang/php53/distinfo                                           1.14
- lang/php53/patches/patch-ext_standard_string.c                1.1

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Mon May 16 13:08:45 UTC 2011

   Modified Files:
   	pkgsrc/lang/php53: Makefile distinfo
   Added Files:
   	pkgsrc/lang/php53/patches: patch-ext_standard_string.c

   Log Message:
   Add a patch to fix for CVE-2011-1148 (and more bugfix) from PHP's repository.

   Bump PKGREVISION.

Revision 1.9 / (download) - annotate - [select for diffs], Mon May 16 13:08:45 2011 UTC (11 years, 8 months ago) by taca
Branch: MAIN
Changes since 1.8: +2 -1 lines
Diff to previous 1.8 (colored)

Add a patch to fix for CVE-2011-1148 (and more bugfix) from PHP's repository.

Bump PKGREVISION.

Revision 1.6.2.2 / (download) - annotate - [select for diffs], Tue Mar 22 06:55:44 2011 UTC (11 years, 10 months ago) by sbd
Branch: pkgsrc-2010Q4
Changes since 1.6.2.1: +0 -1 lines
Diff to previous 1.6.2.1 (colored) to branchpoint 1.6 (colored) next main 1.7 (colored)

Pullup ticket #3395 - requested by taca
security fix for lang/php53

Revisions pulled up:
- lang/php53/Makefile                                           1.8
- lang/php53/Makefile.common                                    1.5
- lang/php53/distinfo                                           1.13
- lang/php53/patches/patch-aa                                   1.2
- lang/php53/patches/patch-ab                                   1.4
- lang/php53/patches/patch-af                                   1.2
- lang/php53/patches/patch-ar                                   Removed
- lang/php53/patches/patch-ext_exif_exif.c                      Removed
- lang/php53/patches/patch-ext_zip_lib_zip__name__locate.c      Removed
- lang/php53/patches/patch-ext_zip_php__zip.c                   Removed

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Mar 19 07:01:19 UTC 2011

   Modified Files:
   	pkgsrc/lang/php53: Makefile Makefile.common distinfo
   	pkgsrc/lang/php53/patches: patch-aa patch-ab patch-af
   Removed Files:
   	pkgsrc/lang/php53/patches: patch-ar patch-ext_exif_exif.c
   	    patch-ext_zip_lib_zip__name__locate.c patch-ext_zip_php__zip.c

   Log Message:
   Update lang/php53 package to PHP 5.3.

   PHP 5.3.6 Released!

   [17-Mar-2011]
   The PHP development team would like to announce the immediate availability
   of PHP 5.3.6. This release focuses on improving the stability of the PHP
   5.3.x branch with over 60 bug fixes, some of which are security related.

   Security Enhancements and Fixes in PHP 5.3.6:

   * Enforce security in the fastcgi protocol parsing with fpm SAPI.
   * Fixed bug #54247 (format-string vulnerability on Phar). (CVE-2011-1153)
   * Fixed bug #54193 (Integer overflow in shmop_read()). (CVE-2011-1092)
   * Fixed bug #54055 (buffer overrun with high values for precision ini setting).
   * Fixed bug #54002 (crash on crafted tag in exif). (CVE-2011-0708)
   * Fixed bug #53885 (ZipArchive segfault with FL_UNCHANGED on empty
     archive). (CVE-2011-0421)

   Key enhancements in PHP 5.3.6 include:

   * Upgraded bundled Sqlite3 to version 3.7.4.
   * Upgraded bundled PCRE to version 8.11.
   * Added ability to connect to HTTPS sites through proxy with basic
     authentication using stream_context/http/header/Proxy-Authorization.
   * Added options to debug backtrace functions.
   * Changed default value of ini directive serialize_precision from 100 to 17.
   * Fixed Bug #53971 (isset() and empty() produce apparently spurious
     runtime error).
   * Fixed Bug #53958 (Closures can't 'use' shared variables by value and
     by reference).
   * Fixed bug #53577 (Regression introduced in 5.3.4 in open_basedir
     with a trailing forward slash).
   * Over 60 other bug fixes.

Revision 1.8 / (download) - annotate - [select for diffs], Sat Mar 19 07:01:18 2011 UTC (11 years, 10 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2011Q1-base
Branch point for: pkgsrc-2011Q1
Changes since 1.7: +1 -2 lines
Diff to previous 1.7 (colored)

Update lang/php53 package to PHP 5.3.


PHP 5.3.6 Released!

[17-Mar-2011]
The PHP development team would like to announce the immediate availability
of PHP 5.3.6. This release focuses on improving the stability of the PHP
5.3.x branch with over 60 bug fixes, some of which are security related.

Security Enhancements and Fixes in PHP 5.3.6:

* Enforce security in the fastcgi protocol parsing with fpm SAPI.
* Fixed bug #54247 (format-string vulnerability on Phar). (CVE-2011-1153)
* Fixed bug #54193 (Integer overflow in shmop_read()). (CVE-2011-1092)
* Fixed bug #54055 (buffer overrun with high values for precision ini setting).
* Fixed bug #54002 (crash on crafted tag in exif). (CVE-2011-0708)
* Fixed bug #53885 (ZipArchive segfault with FL_UNCHANGED on empty
  archive). (CVE-2011-0421)

Key enhancements in PHP 5.3.6 include:

* Upgraded bundled Sqlite3 to version 3.7.4.
* Upgraded bundled PCRE to version 8.11.
* Added ability to connect to HTTPS sites through proxy with basic
  authentication using stream_context/http/header/Proxy-Authorization.
* Added options to debug backtrace functions.
* Changed default value of ini directive serialize_precision from 100 to 17.
* Fixed Bug #53971 (isset() and empty() produce apparently spurious
  runtime error).
* Fixed Bug #53958 (Closures can't 'use' shared variables by value and
  by reference).
* Fixed bug #53577 (Regression introduced in 5.3.4 in open_basedir
  with a trailing forward slash).
* Over 60 other bug fixes.

Revision 1.6.2.1 / (download) - annotate - [select for diffs], Wed Feb 23 19:12:54 2011 UTC (11 years, 11 months ago) by tron
Branch: pkgsrc-2010Q4
Changes since 1.6: +2 -1 lines
Diff to previous 1.6 (colored)

Pullup ticket #3362 - requested by taca
archivers/php-zip: security patch
graphics/php-exif: security patch
lang/php5: security patch
lang/php53: security patch

Revisions pulled up:
- archivers/php-zip/Makefile					1.12-1.13
- graphics/php-exif/Makefile					1.9-1.10
- lang/php5/Makefile						1.82-1.83
- lang/php5/Makefile.php					1.43-1.44
- lang/php5/distinfo						1.86-1.87
- lang/php5/patches/patch-ext_exif_exif.c			1.1
- lang/php5/patches/patch-ext_zip_lib_zip__name__locate.c	1.1
- lang/php5/patches/patch-ext_zip_php__zip.c			1.1
- lang/php53/Makefile						1.7
- lang/php53/Makefile.php					1.5
- lang/php53/distinfo						1.12
- lang/php53/patches/patch-ext_exif_exif.c			1.1
- lang/php53/patches/patch-ext_zip_lib_zip__name__locate.c	1.1
- lang/php53/patches/patch-ext_zip_php__zip.c			1.1
---
Module Name:	pkgsrc
Committed By:	shattered
Date:		Tue Feb 15 20:52:24 UTC 2011

Modified Files:
	pkgsrc/lang/php5: Makefile Makefile.php

Log Message:
Re-enable DL_AUTO_VARS -- makes PHP CLI work again with extensions that
are linked to pthread (like mysql.so).
---
Module Name:	pkgsrc
Committed By:	taca
Date:		Mon Feb 21 16:21:17 UTC 2011

Modified Files:
	pkgsrc/lang/php5: Makefile.php distinfo

Log Message:
Re-enable suhosin patch as php53.
---
Module Name:	pkgsrc
Committed By:	taca
Date:		Mon Feb 21 16:23:58 UTC 2011

Modified Files:
	pkgsrc/lang/php53: Makefile.php

Log Message:
Re-enable DL_AUTO_VARS as php5 package.
---
Module Name:	pkgsrc
Committed By:	taca
Date:		Mon Feb 21 16:25:33 UTC 2011

Modified Files:
	pkgsrc/lang/php5: Makefile
Added Files:
	pkgsrc/lang/php5/patches: patch-ext_exif_exif.c
	    patch-ext_zip_lib_zip__name__locate.c patch-ext_zip_php__zip.c

Log Message:
Add patches to fix SA43328.

Bump PKGREVISION.
---
Module Name:	pkgsrc
Committed By:	taca
Date:		Mon Feb 21 16:26:50 UTC 2011

Modified Files:
	pkgsrc/lang/php5: distinfo

Log Message:
Regen distinfo.
---
Module Name:	pkgsrc
Committed By:	taca
Date:		Mon Feb 21 16:29:15 UTC 2011

Modified Files:
	pkgsrc/lang/php53: Makefile

Log Message:
Bump PKGREVISION for DL_AUTO_VARS.
---
Module Name:	pkgsrc
Committed By:	taca
Date:		Mon Feb 21 16:30:44 UTC 2011

Modified Files:
	pkgsrc/archivers/php-zip: Makefile
	pkgsrc/graphics/php-exif: Makefile

Log Message:
Bump PKGREVISION reflects fix of SA43328.
---

Module Name:	pkgsrc
Committed By:	taca
Date:		Mon Feb 21 16:38:40 UTC 2011

Modified Files:
	pkgsrc/lang/php53: distinfo
Added Files:
	pkgsrc/lang/php53/patches: patch-ext_exif_exif.c
	    patch-ext_zip_lib_zip__name__locate.c patch-ext_zip_php__zip.c

Log Message:
Oops, it should be commit before CHANGE-2011 update.

Add Add patches to fix SA43328.
---
Module Name:	pkgsrc
Committed By:	taca
Date:		Tue Feb 22 07:36:08 UTC 2011

Modified Files:
	pkgsrc/archivers/php-zip: Makefile
	pkgsrc/graphics/php-exif: Makefile

Log Message:
Add missing USE_PHP_EXT_PATCHES to apply patches really.

Revision 1.7 / (download) - annotate - [select for diffs], Mon Feb 21 16:29:15 2011 UTC (11 years, 11 months ago) by taca
Branch: MAIN
Changes since 1.6: +2 -1 lines
Diff to previous 1.6 (colored)

Bump PKGREVISION for DL_AUTO_VARS.

Revision 1.6 / (download) - annotate - [select for diffs], Mon Dec 13 13:16:37 2010 UTC (12 years, 1 month ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2010Q4-base
Branch point for: pkgsrc-2010Q4
Changes since 1.5: +1 -2 lines
Diff to previous 1.5 (colored)

Update lang/php53 package to 5.3.4 (PHP 5.3.4).


The PHP development team is proud to announce the immediate release of PHP
5.3.4. This is a maintenance release in the 5.3 series, which includes a large
number of bug fixes.

Security Enhancements and Fixes in PHP 5.3.4:

* Fixed crash in zip extract method (possible CWE-170).
* Paths with NULL in them (foo\0bar.txt) are now considered as invalid
  (CVE-2006-7243).
* Fixed a possible double free in imap extension (Identified by Mateusz
  Kocielski). (CVE-2010-4150).
* Fixed NULL pointer dereference in
  ZipArchive::getArchiveComment. (CVE-2010-3709).
* Fixed possible flaw in open_basedir (CVE-2010-3436).
* Fixed MOPS-2010-24, fix string validation. (CVE-2010-2950).
* Fixed symbolic resolution support when the target is a DFS share.
* Fixed bug #52929 (Segfault in filter_var with FILTER_VALIDATE_EMAIL with
  large amount of data) (CVE-2010-3710).

Key Bug Fixes in PHP 5.3.4 include:

* Added stat support for zip stream.
* Added follow_location (enabled by default) option for the http stream
  support.
* Added a 3rd parameter to get_html_translation_table. It now takes a charset
  hint, like htmlentities et al.
* Implemented FR #52348, added new constant ZEND_MULTIBYTE to detect zend
  multibyte at runtime.
* Multiple improvements to the FPM SAPI.
* Over 100 other bug fixes.

For users upgrading from PHP 5.2 there is a migration guide available here,
detailing the changes between those releases and PHP 5.3.

For a full list of changes in PHP 5.3.4, see the ChangeLog. For source
downloads please visit our downloads page, Windows binaries can be found on
windows.php.net/download/.

Revision 1.5 / (download) - annotate - [select for diffs], Thu Nov 25 03:43:50 2010 UTC (12 years, 2 months ago) by taca
Branch: MAIN
Changes since 1.4: +2 -1 lines
Diff to previous 1.4 (colored)


- GC bug fix: http://svn.php.net/viewvc?view=revision&revision=303016
- CVE-2010-3710 (a part of SA41724)
	http://svn.php.net/viewvc?view=revision&revision=303779
- CVE-2010-3870 (a part of SA41724)
	http://svn.php.net/viewvc?view=revision&revision=304959
- CVE-2010-4150 (php-imap)
	http://svn.php.net/viewvc?view=revision&revision=305032
- CVE-2010-4156 (SA42135)
	http://svn.php.net/viewvc?view=revision&revision=305214

Bump PKGREVISION.

Revision 1.3.2.1 / (download) - annotate - [select for diffs], Sun Jul 25 11:56:17 2010 UTC (12 years, 6 months ago) by spz
Branch: pkgsrc-2010Q2
Changes since 1.3: +1 -2 lines
Diff to previous 1.3 (colored) next main 1.4 (colored)

Pullup ticket 3184 - requested by tron
security updates

Revisions pulled up:
- pkgsrc/lang/php5/Makefile			1.79
- pkgsrc/lang/php5/distinf			1.79
- pkgsrc/lang/php5/Makefile.common		1.42
- pkgsrc/lang/php5/Makefile.ph			1.42
- pkgsrc/lang/php53/Makefile			1.4
- pkgsrc/lang/php53/Makefile.common		1.2
- pkgsrc/lang/php53/Makefile.php		1.3
- pkgsrc/lang/php53/distinfo			1.6
- pkgsrc/lang/php53/patches/patch-ab		1.2
- pkgsrc/converters/php-mbstring/Makefile	1.2
- pkgsrc/devel/php-gmp/Makefile			1.12
- pkgsrc/graphics/php-gd/Makefile		1.24
- pkgsrc/multimedia/php-ming/Makefile		1.11
- pkgsrc/net/php-xmlrpc/Makefile		1.13
- pkgsrc/net/php-yaz/Makefile			1.9
- pkgsrc/print/php-pdflib/Makefile		1.17

Files deleted:
pkgsrc/lang/php5/patches/patch-be
pkgsrc/lang/php53/patches/patch-ak

-------------------------------------------------------------------------
   Module Name:    pkgsrc
   Committed By:   tron
   Date:           Sat Jul 24 22:23:15 UTC 2010

   Modified Files:
           pkgsrc/lang/php5: Makefile Makefile.common Makefile.php distinfo
   Removed Files:
           pkgsrc/lang/php5/patches: patch-be

   Log Message:
   Update "php5" package to version 5.2.14. Changes since version 5.2.13:
   - Reverted bug fix #49521 (PDO fetchObject sets values before calling
     constructor). (Felipe)
   - Updated timezone database to version 2010.5. (Derick)
   - Upgraded bundled PCRE to version 8.02. (Ilia)
   - Rewrote var_export() to use smart_str rather than output buffering, prevents
     data disclosure if a fatal error occurs (CVE-2010-2531). (Scott)
   - Fixed a possible interruption array leak in strrchr(). Reported by
     P??ter Veres. (CVE-2010-2484) (Felipe)
   - Fixed a possible interruption array leak in strchr(), strstr(), substr(),
     chunk_split(), strtok(), addcslashes(), str_repeat(), trim(). (Felipe)
   - Fixed a possible memory corruption in substr_replace() (Dmitry)
   - Fixed SplObjectStorage unserialization problems (CVE-2010-2225). (Stas)
   - Fixed a possible stack exaustion inside fnmatch(). Reporeted by Stefan
     Esser (Ilia)
   - Reset error state in PDO::beginTransaction() reset error state. (Ilia)
   - Fixed a NULL pointer dereference when processing invalid XML-RPC
     requests (Fixes CVE-2010-0397, bug #51288). (Raphael Geissert)
   - Fixed handling of session variable serialization on certain prefix
     characters. Reported by Stefan Esser (Ilia)
   - Fixed a possible arbitrary memory access inside sqlite extension. Reported
     by Mateusz Kocielski. (Ilia)
   - Fixed a crash when calling an inexistent method of a class that inherits
     PDOStatement if instantiated directly instead of doing by the PDO methods.
     (Felipe)
   - Fixed bug #52317 (Segmentation fault when using mail() on a rhel 4.x (only 64
     bit)). (Adam)
   - Fixed bug #52238 (Crash when an Exception occured in iterator_to_array).
     (Johannes)
   - Fixed bug #52237 (Crash when passing the reference of the property of a
     non-object). (Dmitry)
   - Fixed bug #52163 (SplFileObject::fgetss() fails due to parameter that can't
     be set). (Felipe)
   - Fixed bug #52162 (custom request header variables with numbers are removed).
     (Sriram Natarajan)
   - Fixed bug #52160 (Invalid E_STRICT redefined constructor error). (Felipe)
   - Fixed bug #52061 (memory_limit above 2G). (Felipe)
   - Fixed bug #52041 (Memory leak when writing on uninitialized variable returned
     from function). (Dmitry)
   - Fixed bug #52037 (Concurrent builds fail in install-programs). (seanius at
     debian dot org, Kalle)
   - Fixed bug #52019 (make lcov doesn't support TESTS variable anymore). (Patrick)
   - Fixed bug #52010 (open_basedir restrictions mismatch on vacuum command).
     (Ilia, Felipe)
   - Fixed bug #51943 (AIX: Several files are out of ANSI spec). (Kalle,
     coreystup at gmail dot com)
   - Fixed bug #51911 (ReflectionParameter::getDefaultValue() memory leaks with
     constant array). (Felipe)
   - Fixed bug #51905 (ReflectionParameter fails if default value is an array
     with an access to self::). (Felipe)
   - Fixed bug #51822 (Segfault with strange __destruct() for static class
     variables). (Dmitry)
   - Fixed bug #51671 (imagefill does not work correctly for small images).
     (Pierre)
   - Fixed bug #51670 (getColumnMeta causes segfault when re-executing query
     after calling nextRowset). (Pierrick)
   - Fixed bug #51629 (CURLOPT_FOLLOWLOCATION error message is misleading).
     (Pierre)
   - Fixed bug #51617 (PDO PGSQL still broken against PostGreSQL < 7.4).
     (Felipe, wdierkes at 5dollarwhitebox dot org)
   - Fixed bug #51615 (PHP crash with wrong HTML in SimpleXML). (Felipe)
   - Fixed bug #51609 (pg_copy_to: Invalid results when using fourth parameter).
     (Felipe)
   - Fixed bug #51608 (pg_copy_to: WARNING: nonstandard use of \\ in a string
     literal). (cbandy at jbandy dot com)
   - Fixed bug #51607 (pg_copy_from does not allow schema in the tablename
     argument). (cbandy at jbandy dot com)
   - Fixed bug #51604 (newline in end of header is shown in start of message).
     (Daniel Egeberg)
   - Fixed bug #51562 (query timeout in mssql can not be changed per query).
     (ejsmont dot artur at gmail dot com)
   - Fixed bug #51552 (debug_backtrace() causes segmentation fault and/or memory
     issues). (Dmitry)
   - Fixed bug #51532 (Wrong prototype for SplFileObject::fscanf()). (Etienne)
   - Fixed bug #51445 (var_dump() invalid/slow *RECURSION* detection). (Felipe)
   - Fixed bug #51393 (DateTime::createFromFormat() fails if format string contains
     timezone). (Adam)
   - Fixed bug #51374 (Wrongly initialized object properties). (Etienne)
   - Fixed bug #51338 (URL-Rewriter is still enabled if use_only_cookies is
     on). (Ilia, j dot jeising at gmail dot com)
   - Fixed bug #51273 (Faultstring property does not exist when the faultstring is
     empty) (Ilia, dennis at transip dot nl)
   - Fixed bug #51269 (zlib.output_compression Overwrites Vary Header). (Adam)
   - Fixed bug #51263 (imagettftext and rotated text uses wrong baseline)
     (cschneid at cschneid dot com, Takeshi Abe)
   - Fixed bug #51237 (milter SAPI crash on startup). (igmar at palsenberg dot com)
   - Fixed bug #51213 (pdo_mssql is trimming value of the money column). (Ilia,
     alexr at oplot dot com)
   - Fixed bug #51192 (FILTER_VALIDATE_URL will invalidate a hostname that
     includes '-'). (Adam, solar at azrael dot ws).
   - Fixed bug #51190 (ftp_put() returns false when transfer was successful).
     (Ilia)
   - Fixed bug #51183 (ext/date/php_date.c fails to compile with Sun Studio).
     (Sriram Natarajan)
   - Fixed bug #51171 (curl_setopt() doesn't output any errors or warnings when
     an invalid option is provided). (Ilia)
   - Fixed bug #51128 (imagefill() doesn't work with large images). (Pierre)
   - Fixed bug #51086 (DBA DB4 doesn't work with Berkeley DB 4.8). (Chris Jones)
   - Fixed bug #51062 (DBA DB4 uses mismatched headers and libraries). (Chris
     Jones)
   - Fixed bug #51023 (filter doesn't detect int overflows with GCC 4.4).
     (Raphael Geissert)
   - Fixed bug #50762 (in WSDL mode Soap Header handler function only being called
     if defined in WSDL). (mephius at gmail dot com)
   - Fixed bug #50698 (SoapClient should handle wsdls with some incompatiable
     endpoints). (Justin Dearing)
   - Fixed bug #50383 (Exceptions thrown in __call() / __callStatic() do not
     include file and line in trace). (Felipe)
   - Fixed bug #49730 (Firebird - new PDO() returns NULL). (Felipe)
   - Fixed bug #49723 (LimitIterator with empty SeekableIterator). (Etienne)
   - Fixed bug #49576 (FILTER_VALIDATE_EMAIL filter needs updating) (Rasmus)
   - Fixed bug #49320 (PDO returns null when SQLite connection fails). (Felipe)
   - Fixed bug #49267 (Linking fails for iconv). (Moriyosh)
   - Fixed bug #48601 (xpath() returns FALSE for legitimate query). (Rob)
   - Fixed bug #48289 (iconv_mime_encode() quoted-printable scheme is broken).
     (Adam, patch from hiroaki dot kawai at gmail dot com).
   - Fixed bug #43314 (iconv_mime_encode(), broken Q scheme). (Rasmus)
   - Fixed bug #33210 (getimagesize() fails to detect width/height on certain
     JPEGs). (Ilia)
   - Fixed bug #23229 (syslog() truncates messages). (Adam)


   To generate a diff of this commit:
   cvs rdiff -u -r1.78 -r1.79 pkgsrc/lang/php5/Makefile \
       pkgsrc/lang/php5/distinfo
   cvs rdiff -u -r1.41 -r1.42 pkgsrc/lang/php5/Makefile.common \
       pkgsrc/lang/php5/Makefile.php
   cvs rdiff -u -r1.1 -r0 pkgsrc/lang/php5/patches/patch-be

-------------------------------------------------------------------------
   Module Name:    pkgsrc
   Committed By:   tron
   Date:           Sat Jul 24 22:23:37 UTC 2010

   Modified Files:
           pkgsrc/lang/php53: Makefile Makefile.common Makefile.php distinfo
           pkgsrc/lang/php53/patches: patch-ab
   Removed Files:
           pkgsrc/lang/php53/patches: patch-ak

   Log Message:
   Update "php53" package to version 5.3.3. Changes since version 5.3.2:
   - Rewrote var_export() to use smart_str rather than output buffering,
     prevents data disclosure if a fatal error occurs (CVE-2010-2531).
     (Scott)
   - Fixed a NULL pointer dereference when processing invalid XML-RPC
     requests (Fixes CVE-2010-0397, bug #51288). (Raphael Geissert)
   - Fixed SplObjectStorage unserialization problems (CVE-2010-2225).
     (Stas)
   - A large number of not security related bug fixes


   To generate a diff of this commit:
   cvs rdiff -u -r1.3 -r1.4 pkgsrc/lang/php53/Makefile
   cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/lang/php53/Makefile.common
   cvs rdiff -u -r1.2 -r1.3 pkgsrc/lang/php53/Makefile.php
   cvs rdiff -u -r1.5 -r1.6 pkgsrc/lang/php53/distinfo
   cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/lang/php53/patches/patch-ab
   cvs rdiff -u -r1.1 -r0 pkgsrc/lang/php53/patches/patch-ak

-------------------------------------------------------------------------
   Module Name:    pkgsrc
   Committed By:   tron
   Date:           Sat Jul 24 22:24:22 UTC 2010

   Modified Files:
           pkgsrc/converters/php-mbstring: Makefile
           pkgsrc/devel/php-gmp: Makefile
           pkgsrc/graphics/php-gd: Makefile
           pkgsrc/multimedia/php-ming: Makefile
           pkgsrc/net/php-xmlrpc: Makefile
           pkgsrc/net/php-yaz: Makefile
           pkgsrc/print/php-pdflib: Makefile

   Log Message:
   Revert revision of several PHP extensions after both core PHP packages
   were updated.


   To generate a diff of this commit:
   cvs rdiff -u -r1.1.1.1 -r1.2 pkgsrc/converters/php-mbstring/Makefile
   cvs rdiff -u -r1.11 -r1.12 pkgsrc/devel/php-gmp/Makefile
   cvs rdiff -u -r1.23 -r1.24 pkgsrc/graphics/php-gd/Makefile
   cvs rdiff -u -r1.10 -r1.11 pkgsrc/multimedia/php-ming/Makefile
   cvs rdiff -u -r1.12 -r1.13 pkgsrc/net/php-xmlrpc/Makefile
   cvs rdiff -u -r1.8 -r1.9 pkgsrc/net/php-yaz/Makefile
   cvs rdiff -u -r1.16 -r1.17 pkgsrc/print/php-pdflib/Makefile

Revision 1.4 / (download) - annotate - [select for diffs], Sat Jul 24 22:23:37 2010 UTC (12 years, 6 months ago) by tron
Branch: MAIN
CVS Tags: pkgsrc-2010Q3-base, pkgsrc-2010Q3
Changes since 1.3: +1 -2 lines
Diff to previous 1.3 (colored)

Update "php53" package to version 5.3.3. Changes since version 5.3.2:
- Rewrote var_export() to use smart_str rather than output buffering,
  prevents data disclosure if a fatal error occurs (CVE-2010-2531).
  (Scott)
- Fixed a NULL pointer dereference when processing invalid XML-RPC
  requests (Fixes CVE-2010-0397, bug #51288). (Raphael Geissert)
- Fixed SplObjectStorage unserialization problems (CVE-2010-2225).
  (Stas)
- A large number of not security related bug fixes

Revision 1.2.2.1 / (download) - annotate - [select for diffs], Sun Apr 25 18:04:31 2010 UTC (12 years, 9 months ago) by tron
Branch: pkgsrc-2010Q1
Changes since 1.2: +6 -2 lines
Diff to previous 1.2 (colored) next main 1.3 (colored)

Pullup ticket #3093 - requested by taca
lang/php53: bug fix

Revisions pulled up:
- lang/php53/Makefile			1.3
- lang/php53/distinfo			1.3
---
Module Name:	pkgsrc
Committed By:	taca
Date:		Fri Apr 16 15:19:23 UTC 2010

Modified Files:
	pkgsrc/lang/php53: Makefile distinfo

Log Message:
Explicitly set PKGNAME to handle PKG_OPTIONS properly, noted by
PR pkg/43170 by Nathaniel Madura.  And add suhosin-patch to distinfo.

Bump PKG_REVISION.

Revision 1.3 / (download) - annotate - [select for diffs], Fri Apr 16 15:19:23 2010 UTC (12 years, 9 months ago) by taca
Branch: MAIN
CVS Tags: pkgsrc-2010Q2-base
Branch point for: pkgsrc-2010Q2
Changes since 1.2: +6 -2 lines
Diff to previous 1.2 (colored)

Explicitly set PKGNAME to handle PKG_OPTIONS properly, noted by
PR pkg/43170 by Nathaniel Madura.  And add suhosin-patch to distinfo.

Bump PKG_REVISION.

Revision 1.2 / (download) - annotate - [select for diffs], Sun Mar 21 17:10:01 2010 UTC (12 years, 10 months ago) by jdolecek
Branch: MAIN
CVS Tags: pkgsrc-2010Q1-base
Branch point for: pkgsrc-2010Q1
Changes since 1.1: +2 -1 lines
Diff to previous 1.1 (colored)

explicitly disable sqlite3 and intl, we don't want to compile them into main PHP executable;
the extensions were not actually built since necessary libraries were not found due to pkgsrc
framework, but better be explicit

fix MESSAGE_SRC to use lang/php53 locations

bump PKGREVISION

Revision 1.1.1.1 / (download) - annotate - [select for diffs] (vendor branch), Tue Mar 16 15:31:58 2010 UTC (12 years, 10 months ago) by taca
Branch: TNF
CVS Tags: pkgsrc-base
Changes since 1.1: +0 -0 lines
Diff to previous 1.1 (colored)

Importing PHP 5.3.2 as lang/php53.

This package and lang/php5 aren't installed at the same time.
Setting PHP_VERSION_DEFAULT as "5" or "53" to select PHP 5.2.x or 5.3.x.


PHP is an HTML-embedded scripting language. It is modular, with
some object-oriented features. Much of its syntax is borrowed from
C, Java and Perl with a couple of unique PHP-specific features
thrown in.  The language is designed to allow web developers to
write dynamically generated pages quickly.


Revision 1.1 / (download) - annotate - [select for diffs], Tue Mar 16 15:31:58 2010 UTC (12 years, 10 months ago) by taca
Branch: MAIN

Initial revision

This form allows you to request diff's between any two revisions of a file. You may select a symbolic revision name using the selection box or you may type in a numeric name using the type-in text box.




CVSweb <webmaster@jp.NetBSD.org>