pkgsrc-changes: CVS commit: pkgsrc/lang/php5

Subject: CVS commit: pkgsrc/lang/php5
To: None <pkgsrc-changes@NetBSD.org>
From: Adrian Portelli <adrianp@netbsd.org>
List: pkgsrc-changes
Date: 06/06/2007 19:33:13

Module Name:	pkgsrc
Committed By:	adrianp
Date:		Wed Jun  6 19:33:13 UTC 2007

Modified Files:
	pkgsrc/lang/php5: Makefile Makefile.common distinfo

Log Message:
Update to php-5.2.3

Security Fixes
* Fixed an integer overflow inside chunk_split() (by Gerhard Wagner, CVE-2007-2872)
* Fixed possible infinite loop in imagecreatefrompng. (by Xavier Roche, CVE-2007-2756)
* Fixed ext/filter Email Validation Vulnerability (MOPB-45 by Stefan Esser, CVE-2007-1900)
* Fixed bug #41492 (open_basedir/safe_mode bypass inside realpath()) (by bugs dot php dot net at chsc dot dk)
* Improved fix for CVE-2007-1887 to work with non-bundled sqlite2 lib.
* Added mysql_set_charset() to allow runtime altering of connection encoding.

* Upgraded bundled SQLite 3 to version 3.3.17. (Ilia)
* Fixed gd build when used with freetype 1.x (Pierre, Tony)

And a fair few bugs fixed, see: http://www.php.net/ChangeLog-5.php#5.2.3
for all the details.


To generate a diff of this commit:
cvs rdiff -r1.51 -r1.52 pkgsrc/lang/php5/Makefile
cvs rdiff -r1.25 -r1.26 pkgsrc/lang/php5/Makefile.common
cvs rdiff -r1.40 -r1.41 pkgsrc/lang/php5/distinfo

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.