head 1.2; access; symbols pkgsrc-2013Q2:1.2.0.4 pkgsrc-2013Q2-base:1.2 pkgsrc-2012Q4:1.2.0.2 pkgsrc-2012Q4-base:1.2 pkgsrc-2011Q4:1.1.0.4 pkgsrc-2011Q4-base:1.1 pkgsrc-2011Q3:1.1.0.2; locks; strict; comment @# @; 1.2 date 2012.01.11.14.53.35; author taca; state dead; branches; next 1.1; 1.1 date 2011.10.06.05.34.00; author jklos; state Exp; branches 1.1.2.1 1.1.4.1; next ; 1.1.2.1 date 2011.10.06.05.34.00; author sbd; state dead; branches; next 1.1.2.2; 1.1.2.2 date 2011.10.22.07.01.25; author sbd; state Exp; branches; next ; 1.1.4.1 date 2012.01.12.11.29.04; author tron; state dead; branches; next ; desc @@ 1.2 log @Update php53 pacakge to 5.3.9; PHP 5.3.9. suhosin-patch is provided as modified one; only copyright year. PHP 5.3.9 Released! [10-Jan-2012] The PHP development team would like to announce the immediate availability of PHP 5.3.9. This release focuses on improving the stability of the PHP 5.3.x branch with over 90 bug fixes, some of which are security related. Security Enhancements and Fixes in PHP 5.3.9: * Added max_input_vars directive to prevent attacks based on hash collisions. (CVE-2011-4885) * Fixed bug #60150 (Integer overflow during the parsing of invalid exif header). (CVE-2011-4566) Key enhancements in PHP 5.3.9 include: * Fixed bug #55475 (is_a() triggers autoloader, new optional 3rd argument to is_a and is_subclass_of). * Fixed bug #55609 (mysqlnd cannot be built shared) * Many changes to the FPM SAPI module For a full list of changes in PHP 5.3.9, see the ChangeLog. For source downloads please visit our downloads page, Windows binaries can be found on windows.php.net/download/. All users are strongly encouraged to upgrade to PHP 5.3.9. @ text @$NetBSD: patch-as,v 1.1 2011/10/06 05:34:00 jklos Exp $ --- ext/standard/php_crypt_r.c.orig 2011-10-06 05:25:16.000000000 +0000 +++ ext/standard/php_crypt_r.c @@@@ -94,7 +94,8 @@@@ void _crypt_extended_init_r(void) if (!initialized) { #ifdef PHP_WIN32 InterlockedIncrement(&initialized); -#elif (defined(__GNUC__) && !defined(__hpux) && (__GNUC__ > 4 || \ +#elif (defined(__GNUC__) && (defined(__amd64__) || defined(__alpha__) || \ + defined(__i386__) || defined(__powerpc__)) && (__GNUC__ > 4 || \ (__GNUC__ == 4 && (__GNUC_MINOR__ > 1 || (__GNUC_MINOR__ == 1 && __GNUC_PATCHLEVEL__ > 1))))) __sync_fetch_and_add(&initialized, 1); #elif defined(HAVE_ATOMIC_H) /* Solaris 10 defines atomic API within */ @ 1.1 log @Atomic operations via gcc are not supported on many archs. Allow them only on amd64, powerpc, i386 and alpha. @ text @d1 1 a1 1 $NetBSD$ @ 1.1.4.1 log @Pullup ticket #3641 - requested by taca archivers/php-bz2: security update archivers/php-zip: security update archivers/php-zlib: security update converters/php-iconv: security update converters/php-mbstring: security update databases/php-dba: security update databases/php-ldap: security update databases/php-mysql: security update databases/php-mysqli: security update databases/php-pdo: security update databases/php-pdo_dblib: security update databases/php-pdo_mysql: security update databases/php-pdo_pgsql: security update databases/php-pdo_sqlite: security update databases/php-pgsql: security update databases/php-sqlite: security update devel/php-gettext: security update devel/php-gmp: security update devel/php-pcntl: security update devel/php-posix: security update devel/php-shmop: security update devel/php-sysvmsg: security update devel/php-sysvsem: security update devel/php-sysvshm: security update graphics/php-exif: security update graphics/php-gd: security update mail/php-imap: security update math/php-bcmath: security update net/php-ftp: security update net/php-snmp: security update net/php-soap: security update net/php-sockets: security update net/php-xmlrpc: security update security/php-mcrypt: security update textproc/php-dom: security update textproc/php-json: security update textproc/php-pspell: security update textproc/php-wddx: security update textproc/php-xsl: security update time/php-calendar: security update www/php-curl: security update www/php-tidy: security update Revisions pulled up: - lang/php53/Makefile 1.20 - lang/php53/Makefile.common 1.9 - lang/php53/Makefile.php 1.11 - lang/php53/distinfo 1.29 - lang/php53/patches/patch-Zend_zend__builtin__functions.c deleted - lang/php53/patches/patch-as deleted - lang/php53/patches/patch-main_main.c deleted - lang/php53/patches/patch-main_php__globals.h deleted - lang/php53/patches/patch-main_php__variables.c deleted --- Module Name: pkgsrc Committed By: taca Date: Wed Jan 11 14:53:35 UTC 2012 Modified Files: pkgsrc/lang/php53: Makefile Makefile.common Makefile.php distinfo Removed Files: pkgsrc/lang/php53/patches: patch-Zend_zend__builtin__functions.c patch-as patch-main_main.c patch-main_php__globals.h patch-main_php__variables.c Log Message: Update php53 pacakge to 5.3.9; PHP 5.3.9. suhosin-patch is provided as modified one; only copyright year. PHP 5.3.9 Released! [10-Jan-2012] The PHP development team would like to announce the immediate availability of PHP 5.3.9. This release focuses on improving the stability of the PHP 5.3.x branch with over 90 bug fixes, some of which are security related. Security Enhancements and Fixes in PHP 5.3.9: * Added max_input_vars directive to prevent attacks based on hash collisions. (CVE-2011-4885) * Fixed bug #60150 (Integer overflow during the parsing of invalid exif header). (CVE-2011-4566) Key enhancements in PHP 5.3.9 include: * Fixed bug #55475 (is_a() triggers autoloader, new optional 3rd argument to is_a and is_subclass_of). * Fixed bug #55609 (mysqlnd cannot be built shared) * Many changes to the FPM SAPI module For a full list of changes in PHP 5.3.9, see the ChangeLog. For source downloads please visit our downloads page, Windows binaries can be found on windows.php.net/download/. All users are strongly encouraged to upgrade to PHP 5.3.9. @ text @d1 1 a1 1 $NetBSD: patch-as,v 1.1 2011/10/06 05:34:00 jklos Exp $ @ 1.1.2.1 log @file patch-as was added on branch pkgsrc-2011Q3 on 2011-10-22 07:01:25 +0000 @ text @d1 14 @ 1.1.2.2 log @Pullup ticket #3573 - requested by taca lang/php53 security update Revisions pulled up: - lang/php53/Makefile 1.18 - lang/php53/Makefile.php 1.9-1.10 - lang/php53/distinfo 1.23-1.26 - lang/php53/patches/patch-Zend_zend__builtin__functions.c 1.1-1.2 - lang/php53/patches/patch-as 1.1 --- Module Name: pkgsrc Committed By: jklos Date: Thu Oct 6 05:34:00 UTC 2011 Modified Files: pkgsrc/lang/php53: distinfo Added Files: pkgsrc/lang/php53/patches: patch-as Log Message: Atomic operations via gcc are not supported on many archs. Allow them only on amd64, powerpc, i386 and alpha. --- Module Name: pkgsrc Committed By: taca Date: Thu Oct 20 12:38:24 UTC 2011 Modified Files: pkgsrc/lang/php53: Makefile.php distinfo Log Message: Re-add suhosin-patch to distinfo. --- Module Name: pkgsrc Committed By: taca Date: Thu Oct 20 12:39:33 UTC 2011 Modified Files: pkgsrc/lang/php53: Makefile.php Log Message: Revert accidental commit with previous commit. --- Module Name: pkgsrc Committed By: taca Date: Thu Oct 20 13:32:20 UTC 2011 Modified Files: pkgsrc/lang/php53: Makefile distinfo Added Files: pkgsrc/lang/php53/patches: patch-Zend_zend__builtin__functions.c Log Message: Add fix for 2011-3379 from r317183 from PHP's repository. Bump PKGREVISION. --- Module Name: pkgsrc Committed By: taca Date: Thu Oct 20 14:30:55 UTC 2011 Modified Files: pkgsrc/lang/php53: distinfo pkgsrc/lang/php53/patches: patch-Zend_zend__builtin__functions.c Log Message: A small correction in comment text of the patch. @ text @a0 14 $NetBSD$ --- ext/standard/php_crypt_r.c.orig 2011-10-06 05:25:16.000000000 +0000 +++ ext/standard/php_crypt_r.c @@@@ -94,7 +94,8 @@@@ void _crypt_extended_init_r(void) if (!initialized) { #ifdef PHP_WIN32 InterlockedIncrement(&initialized); -#elif (defined(__GNUC__) && !defined(__hpux) && (__GNUC__ > 4 || \ +#elif (defined(__GNUC__) && (defined(__amd64__) || defined(__alpha__) || \ + defined(__i386__) || defined(__powerpc__)) && (__GNUC__ > 4 || \ (__GNUC__ == 4 && (__GNUC_MINOR__ > 1 || (__GNUC_MINOR__ == 1 && __GNUC_PATCHLEVEL__ > 1))))) __sync_fetch_and_add(&initialized, 1); #elif defined(HAVE_ATOMIC_H) /* Solaris 10 defines atomic API within */ @