From d5546f79a92df82a624fc61752016ee04eedc32d Mon Sep 17 00:00:00 2001 From: bsiegert Date: Tue, 10 Sep 2019 17:56:00 +0000 Subject: Pullup ticket #6044 - requested by taca lang/php73: security fix Revisions pulled up: - lang/php/phpversion.mk 1.267 - lang/php73/distinfo 1.11 --- Module Name: pkgsrc Committed By: taca Date: Sun Sep 1 13:03:17 UTC 2019 Modified Files: pkgsrc/lang/php: phpversion.mk pkgsrc/lang/php73: distinfo Log Message: lag/php73: update to 7.3.9 29 Aug 2019, PHP 7.3.9 - Core: . Fixed bug #78363 (Buffer overflow in zendparse). (Nikita) . Fixed bug #78379 (Cast to object confuses GC, causes crash). (Dmitry) . Fixed bug #78412 (Generator incorrectly reports non-releasable $this as GC child). (Nikita) - Curl: . Fixed bug #77946 (Bad cURL resources returned by curl_multi_info_read()). (Abyr Valg) - Exif: . Fixed bug #78333 (Exif crash (bus error) due to wrong alignment and invalid cast). (Nikita) - FPM: . Fixed bug #77185 (Use-after-free in FPM master event handling). (Maksim Nikulin) - Iconv: . Fixed bug #78342 (Bus error in configure test for iconv //IGNORE). (Rainer Jung) - LiteSpeed: . Updated to LiteSpeed SAPI V7.5 (Fixed clean shutdown). (George Wang) - MBString: . Fixed bug #78380 (Oniguruma 6.9.3 fixes CVEs). (CVE-2019-13224) (Stas) - MySQLnd: . Fixed bug #78179 (MariaDB server version incorrectly detected). (cmb) . Fixed bug #78213 (Empty row pocket). (cmb) - Opcache: . Fixed bug #77191 (Assertion failure in dce_live_ranges() when silencing is used). (Nikita) - Standard: . Fixed bug #69100 (Bus error from stream_copy_to_stream (file -> SSL stream) with invalid length). (Nikita) . Fixed bug #78282 (atime and mtime mismatch). (cmb) . Fixed bug #78326 (improper memory deallocation on stream_get_contents() with fixed length buffer). (Albert Casademont) . Fixed bug #78346 (strip_tags no longer handling nested php tags). (cmb) --- lang/php/phpversion.mk | 4 ++-- lang/php73/distinfo | 10 +++++----- 2 files changed, 7 insertions(+), 7 deletions(-) diff --git a/lang/php/phpversion.mk b/lang/php/phpversion.mk index 53c3cc07e07..a653f67669a 100644 --- a/lang/php/phpversion.mk +++ b/lang/php/phpversion.mk @@ -1,4 +1,4 @@ -# $NetBSD: phpversion.mk,v 1.260.2.4 2019/09/08 19:24:31 bsiegert Exp $ +# $NetBSD: phpversion.mk,v 1.260.2.5 2019/09/10 17:56:00 bsiegert Exp $ # # This file selects a PHP version, based on the user's preferences and # the installed packages. It does not add a dependency on the PHP @@ -90,7 +90,7 @@ PHPVERSION_MK= defined PHP56_VERSION= 5.6.40 PHP71_VERSION= 7.1.31 PHP72_VERSION= 7.2.22 -PHP73_VERSION= 7.3.8 +PHP73_VERSION= 7.3.9 # Define initial release of major version. PHP56_RELDATE= 20140828 diff --git a/lang/php73/distinfo b/lang/php73/distinfo index 41c96a8f0f6..26cd6ea3133 100644 --- a/lang/php73/distinfo +++ b/lang/php73/distinfo @@ -1,9 +1,9 @@ -$NetBSD: distinfo,v 1.8.2.1 2019/08/10 12:07:22 bsiegert Exp $ +$NetBSD: distinfo,v 1.8.2.2 2019/09/10 17:56:00 bsiegert Exp $ -SHA1 (php-7.3.8.tar.bz2) = 9264a6d51f40e5e45459e28bd9ad96540bbde402 -RMD160 (php-7.3.8.tar.bz2) = 6ac55c13d496904d3a0d9028ddd8a6403394a947 -SHA512 (php-7.3.8.tar.bz2) = c8aea78a21e95a1ad91bdd157684f80b316c51f9fdd6718554d59e0256f39213dec8b176e621ede44e1ef037f77ba2865169274b2bd9f13f319bf01c7e9ed058 -Size (php-7.3.8.tar.bz2) = 14939284 bytes +SHA1 (php-7.3.9.tar.bz2) = d8d75fee3bed961f26e1beb8144ebb064fdc2ca4 +RMD160 (php-7.3.9.tar.bz2) = 1dff6e84af9cad3d505aee87e562416f57b26d55 +SHA512 (php-7.3.9.tar.bz2) = a46beb28a91f7ee99f37215ddf5f65ab1743373ba98a703ed45615625ee6b4cbda1be8495901da54089f7cb285a6ac21773a29d32871e0a9540c43b57ea41b97 +Size (php-7.3.9.tar.bz2) = 14947152 bytes SHA1 (patch-configure) = 08b80528ba90c705398e8841c232382663479a3b SHA1 (patch-disable-filter-url) = d7e450380b584e01e2f01e9c91c864d01991cdbf SHA1 (patch-ext_gd_config.m4) = eaecfb31b18700dd642c067ed82748d4f6be2335 -- cgit v1.2.3