From b3311aca2b0d2eabec6065c003f5d153d8932fca Mon Sep 17 00:00:00 2001
From: bsiegert <bsiegert>
Date: Mon, 28 Nov 2016 18:12:44 +0000
Subject: Pullup ticket #5158 - requested by taca lang/php70: security fix

Revisions pulled up:
- lang/php70/distinfo                                           1.21

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Nov 12 15:38:29 UTC 2016

   Modified Files:
   	pkgsrc/lang/php: phpversion.mk
   	pkgsrc/lang/php70: distinfo

   Log Message:
   Update php70 to 7.0.13 (PHP 7.0.13), including security fix (as usual).

   10 Nov 2016 PHP 7.0.13

   - Core:
     . Fixed bug #73350 (Exception::__toString() cause circular references).
       (Laruence)
     . Fixed bug #73181 (parse_str() without a second argument leads to crash).
       (Nikita)
     . Fixed bug #66773 (Autoload with Opcache allows importing conflicting class
       name to namespace). (Nikita)
     . Fixed bug #66862 ((Sub-)Namespaces unexpected behaviour). (Nikita)
     . Fix pthreads detection when cross-compiling (ffontaine)
     . Fixed bug #73337 (try/catch not working with two exceptions inside a same
       operation). (Dmitry)
     . Fixed bug #73338 (Exception thrown from error handler causes valgrind
       warnings (and crashes)). (Bob, Dmitry)
     . Fixed bug #73329 ((Float)"Nano" == NAN). (Anatol)

   - GD:
     . Fixed bug #73213 (Integer overflow in imageline() with antialiasing). (cmb)
     . Fixed bug #73272 (imagescale() is not affected by, but affects
       imagesetinterpolation()). (cmb)
     . Fixed bug #73279 (Integer overflow in gdImageScaleBilinearPalette()). (cmb)
     . Fixed bug #73280 (Stack Buffer Overflow in GD dynamicGetbuf). (cmb)
     . Fixed bug #72482 (Ilegal write/read access caused by gdImageAALine
       overflow). (cmb)
     . Fixed bug #72696 (imagefilltoborder stackoverflow on truecolor images).
       (cmb)

   - IMAP:
     . Fixed bug #73418 (Integer Overflow in "_php_imap_mail" leads to crash).
       (Anatol)

   - OCI8
     . Fixed bug #71148 (Bind reference overwritten on PHP 7). (Oracle Corp.)

   - phpdbg:
     . Properly allow for stdin input from a file. (Bob)
     . Add -s command line option / stdin command for reading script from stdin.
       (Bob)
     . Ignore non-executable opcodes in line mode of phpdbg_end_oplog(). (Bob)
     . Fixed bug #70776 (Simple SIGINT does not have any effect with -rr). (Bob)
     . Fixed bug #71234 (INI files are loaded even invoked as -n --version). (Bob)

   - Session:
     . Fixed bug #73273 (session_unset() empties values from all variables in which
       is $_session stored). (Nikita)

   - SOAP:
     . Fixed bug #73037 (SoapServer reports Bad Request when gzipped). (Anatol)
     . Fixed bug #73237 (Nested object in "any" element overwrites other fields).
       (Keith Smiley)
     . Fixed bug #69137 (Peer verification fails when using a proxy with SoapClient)
       (Keith Smiley)

   - SQLite3:
     . Fixed bug #73333 (2147483647 is fetched as string). (cmb)

   - Standard:
     . Fixed bug #73203 (passing additional_parameters causes mail to fail). (cmb)
     . Fixed bug #71241 (array_replace_recursive sometimes mutates its parameters).
       (adsr)

   - Wddx:
     . Fixed bug #73331 (NULL Pointer Dereference in WDDX Packet Deserialization
       with PDORow). (Stas)
---
 lang/php/phpversion.mk |  4 ++--
 lang/php70/distinfo    | 10 +++++-----
 2 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/lang/php/phpversion.mk b/lang/php/phpversion.mk
index bd7a1f76807..5691f63c10f 100644
--- a/lang/php/phpversion.mk
+++ b/lang/php/phpversion.mk
@@ -1,4 +1,4 @@
-# $NetBSD: phpversion.mk,v 1.158.2.4 2016/11/21 06:08:51 bsiegert Exp $
+# $NetBSD: phpversion.mk,v 1.158.2.5 2016/11/28 18:12:44 bsiegert Exp $
 #
 # This file selects a PHP version, based on the user's preferences and
 # the installed packages. It does not add a dependency on the PHP
@@ -88,7 +88,7 @@ PHPVERSION_MK=	defined
 
 # Define each PHP's version.
 PHP56_VERSION=	5.6.28
-PHP70_VERSION=	7.0.12
+PHP70_VERSION=	7.0.13
 PHP71_VERSION=	7.1.0RC3
 
 # Define initial release of major version.
diff --git a/lang/php70/distinfo b/lang/php70/distinfo
index a46ac3b827e..cdec6206992 100644
--- a/lang/php70/distinfo
+++ b/lang/php70/distinfo
@@ -1,9 +1,9 @@
-$NetBSD: distinfo,v 1.19.2.1 2016/10/21 18:44:42 bsiegert Exp $
+$NetBSD: distinfo,v 1.19.2.2 2016/11/28 18:12:44 bsiegert Exp $
 
-SHA1 (php-7.0.12.tar.bz2) = 0c83f578344c329df9778dc040175631a43ded79
-RMD160 (php-7.0.12.tar.bz2) = 27bcfc09296eb5e2e76f31952afa43e2ff20ae7c
-SHA512 (php-7.0.12.tar.bz2) = 87ced1c0fe1dc7668a2e72de499182724110a7a24818650a08e622f4a24c711247d99478ac073db296cb98548680b27d384475bb3d53517c8e253148e1803a4f
-Size (php-7.0.12.tar.bz2) = 15227851 bytes
+SHA1 (php-7.0.13.tar.bz2) = eb81c83dc4aa711926c870b4bf2f4e6ebc8ffbbb
+RMD160 (php-7.0.13.tar.bz2) = 9f6402077a57d33a99aeb3766fcfc42c25b8c88f
+SHA512 (php-7.0.13.tar.bz2) = 53276fbd35855b9337120fd74f6932e70822b8e5508b6bed068a78805049d36960300e781ec5640f4a90f2d4a09e506084a865341d151bc5c87b7777cb5ff6a3
+Size (php-7.0.13.tar.bz2) = 15239442 bytes
 SHA1 (patch-acinclude.m4) = b682280fd89950c082c2226bdb7364b0dc475bad
 SHA1 (patch-configure) = a129e19ef87338f6e53ccc967c40ddcde7c7357c
 SHA1 (patch-ext_gd_config.m4) = bde93678626592cdcee619189bfc6532d0913a76
-- 
cgit v1.2.3