5_4_39.php

Stanislav Malyshev Thu, 19 Mar 2015 23:03:07 -0700

Commit:    bedd4279bf57e5fc68d7a1cbf31bbca8b7b0f6f7
Author:    Stanislav Malyshev <[email protected]>         Thu, 19 Mar 2015 
23:02:37 -0700
Parents:   7d5309bf8a33d3f3e5974858f739af32e8457663
Branches:  master


Link:       
http://git.php.net/?p=web/php.git;a=commitdiff;h=bedd4279bf57e5fc68d7a1cbf31bbca8b7b0f6f7

Log:
5.4.39

Changed paths:
  M  ChangeLog-5.php
  M  archive/archive.xml
  A  archive/entries/2015-03-19-2.xml
  M  include/releases.inc
  M  include/version.inc
  A  releases/5_4_39.php


Diff:
diff --git a/ChangeLog-5.php b/ChangeLog-5.php
index cf47fa5..41a0df0 100644
--- a/ChangeLog-5.php
+++ b/ChangeLog-5.php
@@ -8,6 +8,30 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", 
"css" => array("change
 
 <h1>PHP 5 ChangeLog</h1>
 
+<section class="version" id="5.4.39"><!-- {{{ 5.4.39 -->
+<h3>Version 5.4.39</h3>
+<b>19-Mar-2015</b>
+<ul><li>Core:
+<ul>
+  <li><?php bugfix(68976); ?> (Use After Free Vulnerability in unserialize()) 
(CVE-2015-0231).</li>
+  <li><?php bugfix(69134); ?> (Per Directory Values overrides PHP_INI_SYSTEM 
configuration options).</li>
+  <li><?php bugfix(69207); ?> (move_uploaded_file allows nulls in path).</li>
+</ul></li>
+<li>Ereg:
+<ul>
+  <li><?php bugfix(69248); ?> (heap overflow vulnerability in regcomp.c) 
(CVE-2015-2305).</li>
+</ul></li>
+<li>SOAP:
+<ul>
+  <li><?php bugfix(69085); ?> (SoapClient's __call() type confusion through 
unserialize()).</li>
+</ul></li>
+<li>ZIP:
+<ul>
+  <li><?php bugfix(69253); ?> (ZIP Integer Overflow leads to writing past heap 
boundary) (CVE-2015-2331).</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
 <section class="version" id="5.6.6"><!-- {{{ 5.6.6 -->
 <h3>Version 5.6.6</h3>
 <?php release_date('19-Feb-2015'); ?>
diff --git a/archive/archive.xml b/archive/archive.xml
index 6d0c42c..7360b6b 100644
--- a/archive/archive.xml
+++ b/archive/archive.xml
@@ -9,6 +9,7 @@
     <uri>http://php.net/contact</uri>
     <email>[email protected]</email>
   </author>
+  <xi:include href="entries/2015-03-19-2.xml"/>
   <xi:include href="entries/2015-03-19-1.xml"/>
   <xi:include href="entries/2015-03-18-1.xml"/>
   <xi:include href="entries/2015-02-25-3.xml"/>
diff --git a/archive/entries/2015-03-19-2.xml b/archive/entries/2015-03-19-2.xml
new file mode 100644
index 0000000..b0169ea
--- /dev/null
+++ b/archive/entries/2015-03-19-2.xml
@@ -0,0 +1,25 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom";>
+  <title>PHP 5.4.39 Released</title>
+  <id>http://php.net/archive/2015.php#id2015-03-19-2</id>
+  <published>2015-03-19T23:01:55-07:00</published>
+  <updated>2015-03-19T23:01:55-07:00</updated>
+  <category term="frontpage" label="PHP.net frontpage news"/>
+  <category term="releases" label="New PHP release"/>
+  <link href="http://php.net/index.php#id2015-03-19-2"; rel="alternate" 
type="text/html"/>
+  <link href="http://php.net/archive/2015.php#id2015-03-19-2"; rel="via" 
type="text/html"/>
+  <content type="xhtml">
+    <div xmlns="http://www.w3.org/1999/xhtml";>
+     <p>The PHP development team announces the immediate availability of PHP
+     5.4.39. Six security-related bugs were fixed in this release, including 
CVE-2015-0231, CVE-2015-2305 and CVE-2015-2331.
+     
+     All PHP 5.4 users are encouraged to upgrade to this version.
+     </p>
+     
+     <p>For source downloads of PHP 5.4.39 please visit our <a 
href="http://www.php.net/downloads.php";>downloads page</a>,
+     Windows binaries can be found on <a 
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+     The list of changes is recorded in the <a 
href="http://www.php.net/ChangeLog-5.php#5.4.39";>ChangeLog</a>.
+     </p>
+    </div>
+  </content>
+</entry>
diff --git a/include/releases.inc b/include/releases.inc
index 4982a26..d8bd639 100644
--- a/include/releases.inc
+++ b/include/releases.inc
@@ -919,6 +919,37 @@ $OLDRELEASES = array (
       'date' => '20 Jun 2013',
       'museum' => true,
     ),
+    '5.4.38' => 
+    array (
+      'announcement' => 
+      array (
+        'English' => '/releases/5_4_38.php',
+      ),
+      'source' => 
+      array (
+        0 => 
+        array (
+          'filename' => 'php-5.4.38tar.bz2',
+          'name' => 'PHP 5.4.38 (tar.bz2)',
+          'md5' => '2bf5007ba4bd012f9895c1b441dd4f50',
+          'date' => '19 Feb 2015',
+        ),
+        1 => 
+        array (
+          'filename' => 'php-5.4.38.tar.gz',
+          'name' => 'PHP 5.4.38 (tar.gz)',
+          'md5' => '53ecd57da7b2243f8461e4fb8ce689a6',
+          'date' => '19 Feb 2015',
+        ),
+        2 => 
+        array (
+          'link' => 'http://windows.php.net/download/#php-5.4',
+          'name' => 'Windows 5.4.38 binaries and source',
+        ),
+      ),
+      'date' => '22 Jan 2015',
+      'museum' => false,
+    ),
     '5.4.37' => 
     array (
       'announcement' => 
diff --git a/include/version.inc b/include/version.inc
index 30f2db5..93eafd3 100644
--- a/include/version.inc
+++ b/include/version.inc
@@ -41,11 +41,11 @@ $PHP_5_5_MD5     = array(
 $PHP_5_4_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
 $PHP_5_4_RC_DATE = '4 Sep 2014';
 
-$PHP_5_4_VERSION         = "5.4.38";
-$PHP_5_4_DATE            = "19 Feb 2015";
+$PHP_5_4_VERSION         = "5.4.39";
+$PHP_5_4_DATE            = "19 Mar 2015";
 $PHP_5_4_MD5     = array(
-                       "tar.bz2"       => "2bf5007ba4bd012f9895c1b441dd4f50",
-                       "tar.gz"        => "53ecd57da7b2243f8461e4fb8ce689a6",
+                       "tar.bz2"       => "017f7ba7484e738c88bf19eec4369d78",
+                       "tar.gz"        => "9a9376bd302020b5b89b2ce42b147e3f",
 );
 
 $RELEASES = array(
diff --git a/releases/5_4_39.php b/releases/5_4_39.php
new file mode 100644
index 0000000..447e36e
--- /dev/null
+++ b/releases/5_4_39.php
@@ -0,0 +1,21 @@
+<?php
+// $Id$
+$_SERVER['BASE_PAGE'] = 'releases/5_4_39.php';
+include_once $_SERVER['DOCUMENT_ROOT'] . '/include/prepend.inc';
+site_header("PHP 5.4.39 Release Announcement");
+?>
+
+<h1>PHP 5.4.39 Release Announcement</h1>
+
+<p>The PHP development team announces the immediate availability of PHP
+5.4.39. Six security-related bugs were fixed in this release, including 
CVE-2015-0231, CVE-2015-2305 and CVE-2015-2331. 
+
+All PHP 5.4 users are encouraged to upgrade to this version.
+</p>
+
+<p>For source downloads of PHP 5.4.39 please visit our <a 
href="http://www.php.net/downloads.php";>downloads page</a>,
+Windows binaries can be found on <a 
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+The list of changes is recorded in the <a 
href="http://www.php.net/ChangeLog-5.php#5.4.39";>ChangeLog</a>.
+</p>
+
+<?php site_footer(); ?>


--
PHP Webmaster List Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-WEBMASTER] com web/php: 5.4.39: ChangeLog-5.php archive/archive.xml archive/entries/2015-03-19-2.xml include/releases.inc include/version.inc releases/5_4_39.php

Reply via email to