CVS commit: [pkgsrc-2009Q3] pkgsrc/lang/php5

To: pkgsrc-changes%NetBSD.org@localhost
Subject: CVS commit: [pkgsrc-2009Q3] pkgsrc/lang/php5
From: Matthias Scheler <tron%netbsd.org@localhost>
Date: Mon, 30 Nov 2009 23:10:20 +0000

Module Name:    pkgsrc
Committed By:   tron
Date:           Mon Nov 30 23:10:20 UTC 2009

Modified Files:
        pkgsrc/lang/php5 [pkgsrc-2009Q3]: Makefile distinfo
        pkgsrc/lang/php5/patches [pkgsrc-2009Q3]: patch-ag patch-ah patch-ay
Added Files:
        pkgsrc/lang/php5/patches [pkgsrc-2009Q3]: patch-az patch-ba patch-bb
            patch-bc patch-bd

Log Message:
Pullup ticket #2939 - requested by taca
php5: security patch

Revisions pulled up:
- lang/php5/Makefile                            1.73-1.74
- lang/php5/distinfo                            1.69-1.70
- lang/php5/patches/patch-ag                    1.3
- lang/php5/patches/patch-ah                    1.2
- lang/php5/patches/patch-ay                    1.2
- lang/php5/patches/patch-az                    1.1-1.2
- lang/php5/patches/patch-ba                    1.1
- lang/php5/patches/patch-bb                    1.1
- lang/php5/patches/patch-bc                    1.1
- lang/php5/patches/patch-bd                    1.1
---
Module Name:    pkgsrc
Committed By:   taca
Date:           Thu Oct 22 14:49:06 UTC 2009

Modified Files:
        pkgsrc/lang/php5: Makefile distinfo
Added Files:
        pkgsrc/lang/php5/patches: patch-az

Log Message:
Add patch to check byte sequence more strictly in htmlspecialchars().

        http://bugs.php.net/bug.php?id=49785

These are patch refrects r289411, r289554, r289565, r289567 and r289605
in PHP svn repositry.

Bump PKGREVISION.
---
Module Name:    pkgsrc
Committed By:   taca
Date:           Mon Nov 30 06:14:08 UTC 2009

Modified Files:
        pkgsrc/lang/php5: Makefile distinfo
        pkgsrc/lang/php5/patches: patch-ag patch-ah patch-ay patch-az
Added Files:
        pkgsrc/lang/php5/patches: patch-ba patch-bb patch-bc patch-bd

Log Message:
Add fixes for http://secunia.com/advisories/37412/ from PHP's repositry.

1. CVE-2009-3292 is already fixed in 5.2.11.

2. CVE-2009-3558

        http://svn.php.net/viewvc?view=revision&revision=288934

3. CVE-2009-3557

        http://svn.php.net/viewvc?view=revision&revision=288945
        http://svn.php.net/viewvc?view=revision&revision=288971

4. CVE-2009-4017

        http://svn.php.net/viewvc?view=revision&revision=289990
        http://svn.php.net/viewvc?view=revision&revision=290820
        http://svn.php.net/viewvc?view=revision&revision=290885

Other pkgsrc changes:

* Don't hardcord /usr/pkg in php.ini-dist and php.ini-recommended.
* Add comments to some of patch files.

Bump PKGREVISION.


To generate a diff of this commit:
cvs rdiff -u -r1.72 -r1.72.4.1 pkgsrc/lang/php5/Makefile
cvs rdiff -u -r1.67.2.1 -r1.67.2.2 pkgsrc/lang/php5/distinfo
cvs rdiff -u -r1.2 -r1.2.34.1 pkgsrc/lang/php5/patches/patch-ag
cvs rdiff -u -r1.1 -r1.1.36.1 pkgsrc/lang/php5/patches/patch-ah
cvs rdiff -u -r1.1.2.2 -r1.1.2.3 pkgsrc/lang/php5/patches/patch-ay
cvs rdiff -u -r0 -r1.2.2.2 pkgsrc/lang/php5/patches/patch-az
cvs rdiff -u -r0 -r1.1.2.2 pkgsrc/lang/php5/patches/patch-ba \
    pkgsrc/lang/php5/patches/patch-bb pkgsrc/lang/php5/patches/patch-bc \
    pkgsrc/lang/php5/patches/patch-bd

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: pkgsrc/databases
Next by Date: CVS commit: [pkgsrc-2009Q3] pkgsrc/doc
Previous by Thread: CVS commit: pkgsrc/databases
Next by Thread: CVS commit: [pkgsrc-2009Q3] pkgsrc/doc
Indexes:

Home | Main Index | Thread Index | Old Index