5_4_37.php

Stanislav Malyshev Thu, 22 Jan 2015 20:23:24 -0800

Commit:    a904c938bb53816a41f799cde1ef3343734d8459
Author:    Stanislav Malyshev <[email protected]>         Thu, 22 Jan 2015 
20:21:48 -0800
Parents:   6450d8f11ccc786594a88f75028382af1c86d582
Branches:  master


Link:       
http://git.php.net/?p=web/php.git;a=commitdiff;h=a904c938bb53816a41f799cde1ef3343734d8459

Log:
5.4.37

Changed paths:
  M  ChangeLog-5.php
  M  archive/archive.xml
  A  archive/entries/2015-01-22-3.xml
  M  include/releases.inc
  M  include/version.inc
  A  releases/5_4_37.php


Diff:
diff --git a/ChangeLog-5.php b/ChangeLog-5.php
index 5596a06..cc907f0 100644
--- a/ChangeLog-5.php
+++ b/ChangeLog-5.php
@@ -215,6 +215,33 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", 
"css" => array("change
 </ul>
 <!-- }}} --></section>
 
+<section class="version" id="5.4.37"><!-- {{{ 5.4.37 -->
+<h3>Version 5.4.37</h3>
+<b>22-Jan-2015</b>
+<ul><li>Core:
+<ul>
+  <li><?php bugfix(68710); ?> (Use After Free Vulnerability in PHP's 
unserialize()) (CVE-2015-0231).</li>
+</ul></li>
+<li>CGI:
+<ul>
+  <li><?php bugfix(68618); ?> (out of bounds read crashes php-cgi) 
(CVE-2014-9427).</li>
+</ul></li>
+<li>EXIF:
+<ul>
+  <li><?php bugfix(68799); ?> (Free called on unitialized pointer) 
(CVE-2015-0232).</li>
+</ul></li>
+<li>Fileinfo:
+<ul>
+  <li>Removed readelf.c and related code from libmagic sources.</li>
+  <li><?php bugfix(68735); ?> (fileinfo out-of-bounds memory access).</li>
+</ul></li>
+<li>OpenSSL:
+<ul>
+  <li><?php bugfix(55618); ?> (use case-insensitive cert name matching).</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
 <section class="version" id="5.6.4"><!-- {{{ 5.6.4 -->
 <h3>Version 5.6.4</h3>
 <?php release_date('18-Dec-2014'); ?>
diff --git a/archive/archive.xml b/archive/archive.xml
index 5ccd0fc..7d69e91 100644
--- a/archive/archive.xml
+++ b/archive/archive.xml
@@ -9,6 +9,7 @@
     <uri>http://php.net/contact</uri>
     <email>[email protected]</email>
   </author>
+  <xi:include href="entries/2015-01-22-3.xml"/>
   <xi:include href="entries/2015-01-22-2.xml"/>
   <xi:include href="entries/2015-01-22-1.xml"/>
   <xi:include href="entries/2015-01-16-1.xml"/>
diff --git a/archive/entries/2015-01-22-3.xml b/archive/entries/2015-01-22-3.xml
new file mode 100644
index 0000000..f8cce90
--- /dev/null
+++ b/archive/entries/2015-01-22-3.xml
@@ -0,0 +1,28 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom";>
+  <title>PHP 5.4.37 Released</title>
+  <id>http://php.net/archive/2015.php#id2015-01-22-3</id>
+  <published>2015-01-22T20:20:52-08:00</published>
+  <updated>2015-01-22T20:20:52-08:00</updated>
+  <category term="frontpage" label="PHP.net frontpage news"/>
+  <category term="releases" label="New PHP release"/>
+  <link href="http://php.net/index.php#id2015-01-22-3"; rel="alternate" 
type="text/html"/>
+  <link href="http://php.net/archive/2015.php#id2015-01-22-3"; rel="via" 
type="text/html"/>
+  <content type="xhtml">
+    <div xmlns="http://www.w3.org/1999/xhtml";>
+     <h1>PHP 5.4.37 Release Announcement</h1>
+     
+     <p>The PHP development team announces the immediate availability of PHP
+     5.4.37. Six security-related bugs were fixed in this release, including 
CVE-2015-0231, CVE-2014-9427
+     and CVE-2015-0232.
+     
+     All PHP 5.4 users are encouraged to upgrade to this version.
+     </p>
+     
+     <p>For source downloads of PHP 5.4.37 please visit our <a 
href="http://www.php.net/downloads.php";>downloads page</a>,
+     Windows binaries can be found on <a 
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+     The list of changes is recorded in the <a 
href="http://www.php.net/ChangeLog-5.php#5.4.37";>ChangeLog</a>.
+     </p>
+    </div>
+  </content>
+</entry>
diff --git a/include/releases.inc b/include/releases.inc
index 4155fc4..f10e342 100644
--- a/include/releases.inc
+++ b/include/releases.inc
@@ -853,6 +853,37 @@ $OLDRELEASES = array (
       'date' => '20 Jun 2013',
       'museum' => true,
     ),
+    '5.4.36' => 
+    array (
+      'announcement' => 
+      array (
+        'English' => '/releases/5_4_36.php',
+      ),
+      'source' => 
+      array (
+        0 => 
+        array (
+          'filename' => 'php-5.4.36.tar.bz2',
+          'name' => 'PHP 5.4.36 (tar.bz2)',
+          'md5' => '70e223be4bb460e465b7a9d7cb5b9cac',
+          'date' => '18 Dec 2014',
+        ),
+        1 => 
+        array (
+          'filename' => 'php-5.4.36.tar.gz',
+          'name' => 'PHP 5.4.36 (tar.gz)',
+          'md5' => 'd724ec84124ec948a7a493b74546efef',
+          'date' => '18 Dec 2014',
+        ),
+        2 => 
+        array (
+          'link' => 'http://windows.php.net/download/#php-5.4',
+          'name' => 'Windows 5.4.36 binaries and source',
+        ),
+      ),
+      'date' => '18 Dec 2014',
+      'museum' => false,
+    ),
     '5.4.35' => 
     array (
       'announcement' => 
diff --git a/include/version.inc b/include/version.inc
index dc1c315..e0a5d06 100644
--- a/include/version.inc
+++ b/include/version.inc
@@ -41,11 +41,11 @@ $PHP_5_5_MD5     = array(
 $PHP_5_4_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
 $PHP_5_4_RC_DATE = '4 Sep 2014';
 
-$PHP_5_4_VERSION         = "5.4.36";
-$PHP_5_4_DATE            = "18 Dec 2014";
+$PHP_5_4_VERSION         = "5.4.37";
+$PHP_5_4_DATE            = "22 Jan 2015";
 $PHP_5_4_MD5     = array(
-                       "tar.bz2"       => "70e223be4bb460e465b7a9d7cb5b9cac",
-                       "tar.gz"        => "d724ec84124ec948a7a493b74546efef",
+                       "tar.bz2"       => "1962086593e8e39342674be0483db439",
+                       "tar.gz"        => "42494eea588dea228719757deca03d30",
 );
 
 $RELEASES = array(
diff --git a/releases/5_4_37.php b/releases/5_4_37.php
new file mode 100644
index 0000000..3f19384
--- /dev/null
+++ b/releases/5_4_37.php
@@ -0,0 +1,22 @@
+<?php
+// $Id$
+$_SERVER['BASE_PAGE'] = 'releases/5_4_37.php';
+include_once $_SERVER['DOCUMENT_ROOT'] . '/include/prepend.inc';
+site_header("PHP 5.4.36 Release Announcement");
+?>
+
+<h1>PHP 5.4.37 Release Announcement</h1>
+
+<p>The PHP development team announces the immediate availability of PHP
+5.4.37. Six security-related bugs were fixed in this release, including 
CVE-2015-0231, CVE-2014-9427
+and CVE-2015-0232.
+
+All PHP 5.4 users are encouraged to upgrade to this version.
+</p>        
+
+<p>For source downloads of PHP 5.4.37 please visit our <a 
href="http://www.php.net/downloads.php";>downloads page</a>,
+Windows binaries can be found on <a 
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+The list of changes is recorded in the <a 
href="http://www.php.net/ChangeLog-5.php#5.4.37";>ChangeLog</a>.
+</p>
+
+<?php site_footer(); ?>


--
PHP Webmaster List Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-WEBMASTER] com web/php: 5.4.37: ChangeLog-5.php archive/archive.xml archive/entries/2015-01-22-3.xml include/releases.inc include/version.inc releases/5_4_37.php

Reply via email to