head	1.2;
access;
symbols
	pkgsrc-2013Q2:1.2.0.8
	pkgsrc-2013Q2-base:1.2
	pkgsrc-2012Q4:1.2.0.6
	pkgsrc-2012Q4-base:1.2
	pkgsrc-2011Q4:1.2.0.4
	pkgsrc-2011Q4-base:1.2
	pkgsrc-2011Q2:1.2.0.2
	pkgsrc-2011Q2-base:1.2
	pkgsrc-2010Q4:1.1.0.4
	pkgsrc-2010Q4-base:1.1
	pkgsrc-2010Q3:1.1.0.2;
locks; strict;
comment	@# @;


1.2
date	2011.03.19.07.01.19;	author taca;	state dead;
branches;
next	1.1;

1.1
date	2011.01.07.09.20.16;	author taca;	state Exp;
branches
	1.1.2.1
	1.1.4.1;
next	;

1.1.2.1
date	2011.01.07.09.20.16;	author tron;	state dead;
branches;
next	1.1.2.2;

1.1.2.2
date	2011.01.08.15.29.47;	author tron;	state Exp;
branches;
next	;

1.1.4.1
date	2011.03.22.06.55.44;	author sbd;	state dead;
branches;
next	;


desc
@@


1.2
log
@Update lang/php53 package to PHP 5.3.


PHP 5.3.6 Released!

[17-Mar-2011]
The PHP development team would like to announce the immediate availability
of PHP 5.3.6. This release focuses on improving the stability of the PHP
5.3.x branch with over 60 bug fixes, some of which are security related.

Security Enhancements and Fixes in PHP 5.3.6:

* Enforce security in the fastcgi protocol parsing with fpm SAPI.
* Fixed bug #54247 (format-string vulnerability on Phar). (CVE-2011-1153)
* Fixed bug #54193 (Integer overflow in shmop_read()). (CVE-2011-1092)
* Fixed bug #54055 (buffer overrun with high values for precision ini setting).
* Fixed bug #54002 (crash on crafted tag in exif). (CVE-2011-0708)
* Fixed bug #53885 (ZipArchive segfault with FL_UNCHANGED on empty
  archive). (CVE-2011-0421)

Key enhancements in PHP 5.3.6 include:

* Upgraded bundled Sqlite3 to version 3.7.4.
* Upgraded bundled PCRE to version 8.11.
* Added ability to connect to HTTPS sites through proxy with basic
  authentication using stream_context/http/header/Proxy-Authorization.
* Added options to debug backtrace functions.
* Changed default value of ini directive serialize_precision from 100 to 17.
* Fixed Bug #53971 (isset() and empty() produce apparently spurious
  runtime error).
* Fixed Bug #53958 (Closures can't 'use' shared variables by value and
  by reference).
* Fixed bug #53577 (Regression introduced in 5.3.4 in open_basedir
  with a trailing forward slash).
* Over 60 other bug fixes.
@
text
@$NetBSD: patch-ar,v 1.1 2011/01/07 09:20:16 taca Exp $

Fix for VAX floating point handling (Bug #53682), r307192 from PHP's repositry.

--- Zend/zend_strtod.c.orig	2011-01-05 13:32:26.000000000 +0000
+++ Zend/zend_strtod.c
@@@@ -164,6 +164,7 @@@@ typedef unsigned long int uint32_t;
 
 #ifdef __vax__
 #define VAX
+#undef IEEE_LITTLE_ENDIAN
 #endif
 
 #if defined(_MSC_VER)
@


1.1
log
@Update php53 pacakge to 5.3.5.

* Add fix for VAX floating point handling (Bug #53682), r307192 from
  PHP's repositry.  (It is in PHP 5.2.17 but not in 5.3.5).


06 Jan 2011, PHP 5.3.5
- Fixed Bug #53632 (infinite loop with x87 fpu). (Scott, Rasmus)
@
text
@d1 1
a1 1
$NetBSD$
@


1.1.4.1
log
@Pullup ticket #3395 - requested by taca
security fix for lang/php53

Revisions pulled up:
- lang/php53/Makefile                                           1.8
- lang/php53/Makefile.common                                    1.5
- lang/php53/distinfo                                           1.13
- lang/php53/patches/patch-aa                                   1.2
- lang/php53/patches/patch-ab                                   1.4
- lang/php53/patches/patch-af                                   1.2
- lang/php53/patches/patch-ar                                   Removed
- lang/php53/patches/patch-ext_exif_exif.c                      Removed
- lang/php53/patches/patch-ext_zip_lib_zip__name__locate.c      Removed
- lang/php53/patches/patch-ext_zip_php__zip.c                   Removed

---
   Module Name:	pkgsrc
   Committed By:	taca
   Date:		Sat Mar 19 07:01:19 UTC 2011

   Modified Files:
   	pkgsrc/lang/php53: Makefile Makefile.common distinfo
   	pkgsrc/lang/php53/patches: patch-aa patch-ab patch-af
   Removed Files:
   	pkgsrc/lang/php53/patches: patch-ar patch-ext_exif_exif.c
   	    patch-ext_zip_lib_zip__name__locate.c patch-ext_zip_php__zip.c

   Log Message:
   Update lang/php53 package to PHP 5.3.

   PHP 5.3.6 Released!

   [17-Mar-2011]
   The PHP development team would like to announce the immediate availability
   of PHP 5.3.6. This release focuses on improving the stability of the PHP
   5.3.x branch with over 60 bug fixes, some of which are security related.

   Security Enhancements and Fixes in PHP 5.3.6:

   * Enforce security in the fastcgi protocol parsing with fpm SAPI.
   * Fixed bug #54247 (format-string vulnerability on Phar). (CVE-2011-1153)
   * Fixed bug #54193 (Integer overflow in shmop_read()). (CVE-2011-1092)
   * Fixed bug #54055 (buffer overrun with high values for precision ini setting).
   * Fixed bug #54002 (crash on crafted tag in exif). (CVE-2011-0708)
   * Fixed bug #53885 (ZipArchive segfault with FL_UNCHANGED on empty
     archive). (CVE-2011-0421)

   Key enhancements in PHP 5.3.6 include:

   * Upgraded bundled Sqlite3 to version 3.7.4.
   * Upgraded bundled PCRE to version 8.11.
   * Added ability to connect to HTTPS sites through proxy with basic
     authentication using stream_context/http/header/Proxy-Authorization.
   * Added options to debug backtrace functions.
   * Changed default value of ini directive serialize_precision from 100 to 17.
   * Fixed Bug #53971 (isset() and empty() produce apparently spurious
     runtime error).
   * Fixed Bug #53958 (Closures can't 'use' shared variables by value and
     by reference).
   * Fixed bug #53577 (Regression introduced in 5.3.4 in open_basedir
     with a trailing forward slash).
   * Over 60 other bug fixes.
@
text
@d1 1
a1 1
$NetBSD: patch-ar,v 1.1 2011/01/07 09:20:16 taca Exp $
@


1.1.2.1
log
@file patch-ar was added on branch pkgsrc-2010Q3 on 2011-01-08 15:29:47 +0000
@
text
@d1 14
@


1.1.2.2
log
@Pullup ticket #3319 - requested by taca
lang/php5: security update
lang/php53: security update

Revisions pulled up:
- lang/php5/Makefile.common			1.45
- lang/php5/distinfo				1.83
- lang/php5/distinfo				1.84
- lang/php5/patches/patch-ab			1.6
- lang/php5/patches/patch-ab			delete
- lang/php53/Makefile.common			1.4
- lang/php53/distinfo				1.9
- lang/php53/patches/patch-ar			1.1
---
Module Name:	pkgsrc
Committed By:	jklos
Date:		Thu Jan  6 22:13:24 UTC 2011

Modified Files:
	pkgsrc/lang/php5: distinfo
Added Files:
	pkgsrc/lang/php5/patches: patch-ab

Log Message:
Fix VAX floating point handling in zend_strtod.c.
---
Module Name:	pkgsrc
Committed By:	taca
Date:		Fri Jan  7 09:16:28 UTC 2011

Modified Files:
	pkgsrc/lang/php5: Makefile.common distinfo
Removed Files:
	pkgsrc/lang/php5/patches: patch-ab

Log Message:
Update php5 pacakge to 5.2.17.

* patch-ab (Fix VAX floating point handling) is merge to PHP 5.2.17.

06 Jan 2010, PHP 5.2.17
- Fixed Bug #53632 (infinite loop with x87 fpu). (CVE-2010-4645) (Scott,
  Rasmus)
---
Module Name:	pkgsrc
Committed By:	taca
Date:		Fri Jan  7 09:20:16 UTC 2011

Modified Files:
	pkgsrc/lang/php53: Makefile.common distinfo
Added Files:
	pkgsrc/lang/php53/patches: patch-ar

Log Message:
Update php53 pacakge to 5.3.5.

* Add fix for VAX floating point handling (Bug #53682), r307192 from
  PHP's repositry.  (It is in PHP 5.2.17 but not in 5.3.5).

06 Jan 2011, PHP 5.3.5
- Fixed Bug #53632 (infinite loop with x87 fpu). (Scott, Rasmus)
@
text
@a0 14
$NetBSD: patch-ar,v 1.1 2011/01/07 09:20:16 taca Exp $

Fix for VAX floating point handling (Bug #53682), r307192 from PHP's repositry.

--- Zend/zend_strtod.c.orig	2011-01-05 13:32:26.000000000 +0000
+++ Zend/zend_strtod.c
@@@@ -164,6 +164,7 @@@@ typedef unsigned long int uint32_t;
 
 #ifdef __vax__
 #define VAX
+#undef IEEE_LITTLE_ENDIAN
 #endif
 
 #if defined(_MSC_VER)
@