Commit: 0a5529f0b957cf19f1b593e0f5033b5475722285
Author: Stanislav Malyshev <[email protected]> Fri, 16 Aug 2013
11:40:26 -0700
Parents: 5ebcfa96ec4fe35cf8b5e3d60cb42454a1a6afcc
Branches: master
Link:
http://git.php.net/?p=web/php.git;a=commitdiff;h=0a5529f0b957cf19f1b593e0f5033b5475722285
Log:
5.5.2 announcement
Changed paths:
M ChangeLog-5.php
M archive/archive.xml
M archive/entries/2013-08-15-1.xml
A archive/entries/2013-08-16-1.xml
M include/version.inc
M releases/5_4_18.php
A releases/5_5_2.php
diff --git a/ChangeLog-5.php b/ChangeLog-5.php
index 296010b..a1007b2 100644
--- a/ChangeLog-5.php
+++ b/ChangeLog-5.php
@@ -11,6 +11,69 @@ function peclbugl($number) { echo "<a
href=\"http://pecl.php.net/bugs/bug.php?
<h1>PHP 5 ChangeLog</h1>
+<a name="5.5.2"></a><!-- {{{ 5.5.2 -->
+<h3>Version 5.5.2</h3>
+<b>15-Aug-2013</b>
+<ul><li>Core:
+<ul>
+ <li><?php bugfix(65372); ?> (Segfault in gc_zval_possible_root when return
reference fails).</li>
+ <li>Fixed value of FILTER_SANITIZE_FULL_SPECIAL_CHARS constant (previously
was erroneously set to FILTER_SANITIZE_SPECIAL_CHARS value). </li>
+ <li><?php bugfix(65304); ?> (Use of max int in array_sum).</li>
+ <li><?php bugfix(65291); ?> (get_defined_constants() causes PHP to crash in
a very limited case).</li>
+ <li><?php bugfix(62691); ?> (solaris sed has no -i switch).</li>
+ <li><?php bugfix(61345); ?> (CGI mode - make install don't work).</li>
+ <li><?php bugfix(61268); ?> (--enable-dtrace leads make to clobber
Zend/zend_dtrace.d).</li>
+</ul></li>
+<li>DOM:
+<ul>
+ <li>Added flags option to DOMDocument::schemaValidate() and
DOMDocument::schemaValidateSource(). Added LIBXML_SCHEMA_CREATE flag.</li>
+</ul></li>
+<li>OPcache:
+<ul>
+ <li>Added opcache.restrict_api configuration directive that may limit usage
of OPcahce API functions only to patricular script(s).</li>
+ <li>Added support for glob symbols in blacklist entries (?, *, **).</li>
+ <li><?php bugfix(65338); ?> (Enabling both php_opcache and php_wincache AVs
on shutdown).</li>
+</ul></li>
+<li>Openssl:
+<ul>
+ <li>Fixed handling null bytes in subjectAltName (CVE-2013-4248).</li>
+</ul></li>
+<li>PDO_mysql:
+<ul>
+ <li><?php bugfix(65299); ?> (pdo mysql parsing errors).</li>
+</ul></li>
+<li>Phar:
+<ul>
+ <li><?php bugfix(65028); ?> (Phar::buildFromDirectory creates corrupt
archives for some specific contents).</li>
+</ul></li>
+<li>Pgsql:
+<ul>
+ <li><?php bugfix(62978); ?> (Disallow possible SQL injections with
pg_select()/pg_update() /pg_delete()/pg_insert()).</li>
+ <li><?php bugfix(65336); ?> (pg_escape_literal/identifier() silently returns
false).</li>
+</ul></li>
+<li>Sessions:
+<ul>
+ <li>Implemented strict sessions RFC
(https://wiki.php.net/rfc/strict_sessions) which protects against session
fixation attacks and session collisions.</li>
+ <li>Fixed possible buffer overflow under Windows. Note: Not a security
fix.</li>
+ <li>Changed session.auto_start to PHP_INI_PERDIR.</li>
+</ul></li>
+<li>SOAP:
+<ul>
+ <li><?php bugfix(65018); ?> (SoapHeader problems with SoapServer).</li>
+</ul></li>
+<li>SPL:
+<ul>
+ <li><?php bugfix(65328); ?> (Segfault when getting SplStack object
Value).</li>
+ <li>Added RecursiveTreeIterator setPostfix and getPostifx methods.</li>
+ <li><?php bugfix(61697); ?> (spl_autoload_functions returns lambda functions
incorrectly).</li>
+</ul></li>
+<li>Streams:
+<ul>
+ <li><?php bugfix(65268); ?> (select() implementation uses outdated tick
API).</li>
+</ul></li>
+</ul>
+<!-- }}} -->
+
<a name="5.4.18"></a><!-- {{{ 5.4.18 -->
<h3>Version 5.4.18</h3>
<b>15-Aug-2013</b>
diff --git a/archive/archive.xml b/archive/archive.xml
index 2f930fe..36b68ac 100644
--- a/archive/archive.xml
+++ b/archive/archive.xml
@@ -9,6 +9,7 @@
<uri>http://php.net/contact</uri>
<email>[email protected]</email>
</author>
+ <xi:include href="entries/2013-08-16-1.xml"/>
<xi:include href="entries/2013-08-15-1.xml"/>
<xi:include href="entries/2013-08-08-1.xml"/>
<xi:include href="entries/2013-08-07-1.xml"/>
diff --git a/archive/entries/2013-08-15-1.xml b/archive/entries/2013-08-15-1.xml
index ca77142..4c5fe3b 100644
--- a/archive/entries/2013-08-15-1.xml
+++ b/archive/entries/2013-08-15-1.xml
@@ -11,7 +11,7 @@
<content type="xhtml">
<div xmlns="http://www.w3.org/1999/xhtml";>
<p>The PHP development team announces the immediate availability of PHP
- 5.4.18. About 30 bugs were fixed, including security issues CVE-2013-4113
and CVE-2013-4073.
+ 5.4.18. About 30 bugs were fixed, including security issues CVE-2013-4113
and CVE-2013-4248.
All users of PHP are encouraged to upgrade to this release.</p>
<p>For source downloads of PHP 5.4.18 please visit our <a
href="http://www.php.net/downloads.php";>downloads page</a>,
diff --git a/archive/entries/2013-08-16-1.xml b/archive/entries/2013-08-16-1.xml
new file mode 100644
index 0000000..0f084c0
--- /dev/null
+++ b/archive/entries/2013-08-16-1.xml
@@ -0,0 +1,23 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom";>
+ <title>PHP 5.5.2 Released!</title>
+ <id>http://php.net/archive/2013.php#id2013-08-16-1</id>
+ <published>2013-08-16T11:39:27-07:00</published>
+ <updated>2013-08-16T11:39:27-07:00</updated>
+ <category term="frontpage" label="PHP.net frontpage news"/>
+ <category term="releases" label="New PHP release"/>
+ <link href="http://php.net/index.php#id2013-08-16-1"; rel="alternate"
type="text/html"/>
+ <link href="http://php.net/archive/2013.php#id2013-08-16-1"; rel="via"
type="text/html"/>
+ <content type="xhtml">
+ <div xmlns="http://www.w3.org/1999/xhtml";>
+ <p>The PHP development team announces the immediate availability of PHP
+ 5.5.2. About 20 bugs were fixed, including security issue in OpenSSL
module (CVE-2013-4248).
+ All users of PHP are encouraged to upgrade to this release.</p>
+
+ <p>For source downloads of PHP 5.5.2 please visit our <a
href="http://www.php.net/downloads.php";>downloads page</a>,
+ Windows binaries can be found on <a
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+ The list of changes is recorded in the <a
href="http://www.php.net/ChangeLog-5.php#5.5.2";>ChangeLog</a>.
+ </p>
+ </div>
+ </content>
+</entry>
diff --git a/include/version.inc b/include/version.inc
index 7fa69d0..9788fbe 100644
--- a/include/version.inc
+++ b/include/version.inc
@@ -18,12 +18,12 @@
$PHP_5_5_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
$PHP_5_5_RC_DATE = '23 May 2013';
-$PHP_5_5_VERSION = "5.5.1";
-$PHP_5_5_DATE = "18 Jul 2013";
+$PHP_5_5_VERSION = "5.5.2";
+$PHP_5_5_DATE = "15 Aug 2013";
$PHP_5_5_MD5 = array(
- "tar.bz2" => "e6520ba8f86e03451f1e9226ca2be681",
- "tar.gz" => "a7d9598c0e60b47960b8e803e51c4309",
- "tar.xz" => "365403c216d22255c3aa57fe54944f8e",
+ "tar.bz2" => "caf7f4d86514a568fb3c8021b096a9f0",
+ "tar.gz" => "2a90884749f97868071538098b3debc1",
+ "tar.xz" => "95c6d7a4c36c475b10447954dea056a5",
);
/* PHP 5.4 Release */
$PHP_5_4_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
diff --git a/releases/5_4_18.php b/releases/5_4_18.php
index db604c6..d9104cc 100644
--- a/releases/5_4_18.php
+++ b/releases/5_4_18.php
@@ -8,7 +8,7 @@ site_header("PHP 5.4.18 Release Announcement");
<h1>PHP 5.4.18 Release Announcement</h1>
<p>The PHP development team announces the immediate availability of PHP
-5.4.18. About 30 bugs were fixed, including security issues CVE-2013-4113 and
CVE-2013-4073.
+5.4.18. About 30 bugs were fixed, including security issues CVE-2013-4113 and
CVE-2013-4248.
All users of PHP are encouraged to upgrade to this release.</p>
<p>For source downloads of PHP 5.4.18 please visit our <a
href="http://www.php.net/downloads.php";>downloads page</a>,
diff --git a/releases/5_5_2.php b/releases/5_5_2.php
new file mode 100644
index 0000000..8c14e59
--- /dev/null
+++ b/releases/5_5_2.php
@@ -0,0 +1,19 @@
+<?php
+// $Id$
+$_SERVER['BASE_PAGE'] = 'releases/5_5_2.php';
+include_once $_SERVER['DOCUMENT_ROOT'] . '/include/prepend.inc';
+site_header("PHP 5.5.2 Release Announcement");
+?>
+
+<h1>PHP 5.5.2 Release Announcement</h1>
+
+<p>The PHP development team announces the immediate availability of PHP
+5.5.2. About 20 bugs were fixed, including security issue in OpenSSL module
(CVE-2013-4248).
+All users of PHP are encouraged to upgrade to this release.</p>
+
+<p>For source downloads of PHP 5.5.2 please visit our <a
href="http://www.php.net/downloads.php";>downloads page</a>,
+Windows binaries can be found on <a
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+The list of changes is recorded in the <a
href="http://www.php.net/ChangeLog-5.php#5.5.2";>ChangeLog</a>.
+</p>
+
+<?php site_footer(); ?>--
PHP Webmaster List Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
