Commit: 178c4965647188f4a09873b9b91b27cb898df4a5
Author: kovacs.ferenc <[email protected]> Fri, 20 Mar 2015
12:24:00 +0100
Parents: f1d725207b1d765e955e1fbb92ae194101278e6c
Branches: master
Link:
http://git.php.net/?p=web/php.git;a=commitdiff;h=178c4965647188f4a09873b9b91b27cb898df4a5
Log:
5.6.7 announcement
Changed paths:
M ChangeLog-5.php
M archive/archive.xml
A archive/entries/2015-03-20-2.xml
M include/releases.inc
M include/version.inc
A releases/5_6_7.php
diff --git a/ChangeLog-5.php b/ChangeLog-5.php
index db23752..58dd9a4 100644
--- a/ChangeLog-5.php
+++ b/ChangeLog-5.php
@@ -8,6 +8,87 @@ site_header("PHP 5 ChangeLog", array("current" => "docs",
"css" => array("change
<h1>PHP 5 ChangeLog</h1>
+<section class="version" id="5.6.7"><!-- {{{ 5.6.7 -->
+<h3>Version 5.6.7</h3>
+<b>19-Mar-2015</b>
+<ul><li>Core:
+<ul>
+ <li><?php bugfix(69174); ?> (leaks when unused inner class use traits
precedence).</li>
+ <li><?php bugfix(69139); ?> (Crash in gc_zval_possible_root on
unserialize).</li>
+ <li><?php bugfix(69121); ?> (Segfault in get_current_user when script owner
is not in passwd with ZTS build).</li>
+ <li><?php bugfix(65593); ?> (Segfault when calling ob_start from output
buffering callback).</li>
+ <li><?php bugfix(68986); ?> (pointer returned by
php_stream_fopen_temporary_file not validated in memory.c).</li>
+ <li><?php bugfix(68166); ?> (Exception with invalid character causes
segv).</li>
+ <li><?php bugfix(69141); ?> (Missing arguments in reflection info for some
builtin functions).</li>
+ <li><?php bugfix(68976); ?> (Use After Free Vulnerability in
unserialize()).</li>
+ <li><?php bugfix(69134); ?> (Per Directory Values overrides PHP_INI_SYSTEM
configuration options).</li>
+ <li><?php bugfix(69207); ?> (move_uploaded_file allows nulls in path).</li>
+</ul></li>
+<li>CGI:
+<ul>
+ <li><?php bugfix(69015); ?> (php-cgi's getopt does not see $argv).</li>
+</ul></li>
+<li>CLI:
+<ul>
+ <li><?php bugfix(67741); ?> (auto_prepend_file messes up __LINE__).</li>
+</ul></li>
+<li>cURL:
+<ul>
+ <li><?php bugfix(69088); ?> (PHP_MINIT_FUNCTION does not fully initialize
cURL on Win32).</li>
+ <li>Add CURLPROXY_SOCKS4A and CURLPROXY_SOCKS5_HOSTNAME constants if
supported by libcurl.</li>
+</ul></li>
+<li>Ereg:
+<ul>
+ <li><?php bugfix(69248); ?> (heap overflow vulnerability in regcomp.c)
(CVE-2015-2305).</li>
+</ul></li>
+<li>FPM:
+<ul>
+ <li><?php bugfix(68822); ?> (request time is reset too early).</li>
+</ul></li>
+<li>ODBC:
+<ul>
+ <li><?php bugfix(68964); ?> (Allowed memory size exhausted with
odbc_exec).</li>
+</ul></li>
+<li>Opcache:
+<ul>
+ <li><?php bugfix(69159); ?> (Opcache causes problem when passing a variable
variable to a function).</li>
+ <li><?php bugfix(69125); ?> (Array numeric string as key).</li>
+ <li><?php bugfix(69038); ?> (switch(SOMECONSTANT) misbehaves).</li>
+</ul></li>
+<li>OpenSSL:
+<ul>
+ <li><?php bugfix(68912); ?> (Segmentation fault at openssl_spki_new).</li>
+ <li><?php bugfix(61285); ?>, <?php bugl(68329); ?>, <?php bugl(68046); ?>,
<?php bugl(41631); ?> (encrypted streams don't observe socket timeouts).</li>
+ <li><?php bugfix(68920); ?> (use strict peer_fingerprint input checks)
(Daniel Lowrey)</li>
+ <li><?php bugfix(68879); ?> (IP Address fields in subjectAltNames not used)
(Daniel Lowrey)</li>
+ <li><?php bugfix(68265); ?> (SAN match fails with trailing DNS dot) (Daniel
Lowrey)</li>
+ <li><?php bugfix(67403); ?> (Add signatureType to openssl_x509_parse)
(Daniel Lowrey)</li>
+ <li><?php bugfix(69195); ?> (Inconsistent stream crypto values across
versions) (Daniel Lowrey)</li>
+</ul></li>
+<li>pgsql:
+<ul>
+ <li><?php bugfix(68638); ?> (pg_update() fails to store infinite
values).</li>
+</ul></li>
+<li>Readline:
+<ul>
+ <li><?php bugfix(69054); ?> (Null dereference in
readline_(read|write)_history() without parameters).</li>
+</ul></li>
+<li>SOAP:
+<ul>
+ <li><?php bugfix(69085); ?> (SoapClient's __call() type confusion through
unserialize()).</li>
+</ul></li>
+<li>SPL:
+<ul>
+ <li><?php bugfix(69108); ?> ("Segmentation fault" when (de)serializing
SplObjectStorage).</li>
+ <li><?php bugfix(68557); ?> (RecursiveDirectoryIterator::seek(0) broken
after calling getChildren()).</li>
+</ul></li>
+<li>ZIP:
+<ul>
+ <li><?php bugfix(69253); ?> (ZIP Integer Overflow leads to writing past heap
boundary) (CVE-2015-2331).</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
<section class="version" id="5.5.23"><!-- {{{ 5.5.23 -->
<h3>Version 5.5.23</h3>
<b>19-Mar-2015</b>
diff --git a/archive/archive.xml b/archive/archive.xml
index f1d0450..4d1d0ee 100644
--- a/archive/archive.xml
+++ b/archive/archive.xml
@@ -9,6 +9,7 @@
<uri>http://php.net/contact</uri>
<email>[email protected]</email>
</author>
+ <xi:include href="entries/2015-03-20-2.xml"/>
<xi:include href="entries/2015-03-20-1.xml"/>
<xi:include href="entries/2015-03-19-2.xml"/>
<xi:include href="entries/2015-03-19-1.xml"/>
diff --git a/archive/entries/2015-03-20-2.xml b/archive/entries/2015-03-20-2.xml
new file mode 100644
index 0000000..050f68b
--- /dev/null
+++ b/archive/entries/2015-03-20-2.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom";>
+ <title>PHP 5.6.7 is available</title>
+ <id>http://php.net/archive/2015.php#id2015-03-20-2</id>
+ <published>2015-03-20T04:21:46-07:00</published>
+ <updated>2015-03-20T04:21:46-07:00</updated>
+ <category term="frontpage" label="PHP.net frontpage news"/>
+ <category term="releases" label="New PHP release"/>
+ <link href="http://php.net/index.php#id2015-03-20-2"; rel="alternate"
type="text/html"/>
+ <link href="http://php.net/archive/2015.php#id2015-03-20-2"; rel="via"
type="text/html"/>
+ <content type="xhtml">
+ <div xmlns="http://www.w3.org/1999/xhtml";>
+
+ <p>The PHP development team announces the immediate availability of PHP
+ 5.6.7. Several bugs have been fixed as well as CVE-2015-0231,
CVE-2015-2305 and CVE-2015-2331.
+
+ All PHP 5.6 users are encouraged to upgrade to this version.
+ </p>
+
+ <p>For source downloads of PHP 5.6.7 please visit our <a
href="http://www.php.net/downloads.php";>downloads page</a>,
+ Windows binaries can be found on <a
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+ The list of changes is recorded in the <a
href="http://www.php.net/ChangeLog-5.php#5.6.7";>ChangeLog</a>.
+ </p>
+ </div>
+ </content>
+</entry>
diff --git a/include/releases.inc b/include/releases.inc
index dad0925..2ed1331 100644
--- a/include/releases.inc
+++ b/include/releases.inc
@@ -2,7 +2,40 @@
$OLDRELEASES = array (
5 =>
array (
- '5.5.22' =>
+ '5.6.6' =>
+ array (
+ 'announcement' =>
+ array (
+ 'English' => '/releases/5_6_6.php',
+ ),
+ 'source' =>
+ array (
+ 0 =>
+ array (
+ 'filename' => 'php-5.6.6.tar.bz2',
+ 'name' => 'PHP 5.6.6 (tar.bz2)',
+ 'md5' => 'b198117ee1d44c8143e030cee15f1b52',
+ 'date' => '19 Feb 2015',
+ ),
+ 1 =>
+ array (
+ 'filename' => 'php-5.6.6.tar.gz',
+ 'name' => 'PHP 5.6.6 (tar.gz)',
+ 'md5' => '2baddcf979a0d4eb65434c4da3bd9cd3',
+ 'date' => '19 Feb 2015',
+ ),
+ 2 =>
+ array (
+ 'filename' => 'php-5.6.6.tar.xz',
+ 'name' => 'PHP 5.6.6 (tar.xz)',
+ 'md5' => 'ed0c9ad2419fffde1d8c03a2d8164179',
+ 'date' => '19 Feb 2015',
+ ),
+ ),
+ 'date' => '19 Feb 2015',
+ 'museum' => false,
+ ),
+ '5.5.22' =>
array (
'announcement' =>
array (
diff --git a/include/version.inc b/include/version.inc
index 9eadb8a..e3b5e1b 100644
--- a/include/version.inc
+++ b/include/version.inc
@@ -16,15 +16,15 @@
* ),
* );
/* PHP 5.6 Release */
-$PHP_5_6_RC = '5.6.7RC1'; // Current RC version (e.g., '5.6.7RC1') or false
+$PHP_5_6_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
$PHP_5_6_RC_DATE = '5 Mar 2015';
-$PHP_5_6_VERSION = "5.6.6";
-$PHP_5_6_DATE = "19 Feb 2015";
+$PHP_5_6_VERSION = "5.6.7";
+$PHP_5_6_DATE = "19 Mar 2015";
$PHP_5_6_MD5 = array(
- "tar.bz2" => "b198117ee1d44c8143e030cee15f1b52",
- "tar.gz" => "2baddcf979a0d4eb65434c4da3bd9cd3",
- "tar.xz" => "ed0c9ad2419fffde1d8c03a2d8164179",
+ "tar.bz2" => "2e4b0534d4b8aa9aabedeef12e7c0aa8",
+ "tar.gz" => "92a7d40a5d42a24506f1cea2709f3633",
+ "tar.xz" => "4e04eb021de009981ed963f993a171c1",
);
/* PHP 5.5 Release */
$PHP_5_5_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
diff --git a/releases/5_6_7.php b/releases/5_6_7.php
new file mode 100644
index 0000000..544eed7
--- /dev/null
+++ b/releases/5_6_7.php
@@ -0,0 +1,19 @@
+<?php
+// $Id$
+$_SERVER['BASE_PAGE'] = 'releases/5_6_7.php';
+include_once $_SERVER['DOCUMENT_ROOT'] . '/include/prepend.inc';
+site_header("PHP 5.6.7 Release Announcement");
+?>
+
+ <p>The PHP development team announces the immediate availability of PHP
+ 5.6.7. Several bugs have been fixed as well as CVE-2015-0231,
CVE-2015-2305 and CVE-2015-2331.
+
+ All PHP 5.6 users are encouraged to upgrade to this version.
+ </p>
+
+ <p>For source downloads of PHP 5.6.7 please visit our <a
href="http://www.php.net/downloads.php";>downloads page</a>,
+ Windows binaries can be found on <a
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+ The list of changes is recorded in the <a
href="http://www.php.net/ChangeLog-5.php#5.6.7";>ChangeLog</a>.
+ </p>
+
+<?php site_footer(); ?>--
PHP Webmaster List Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
