Commit: f1dfe65bb2b902a6ecdbcdeba6eb550df64d14ec
Author: kovacs.ferenc <[email protected]> Fri, 4 Sep 2015
17:44:33 +0200
Parents: 60148773d27cd99dd56f0bcde976c9ffefe4d75b
Branches: master
Link:
http://git.php.net/?p=web/php.git;a=commitdiff;h=f1dfe65bb2b902a6ecdbcdeba6eb550df64d14ec
Log:
5.6.13 announcement
Changed paths:
M ChangeLog-5.php
M archive/archive.xml
A archive/entries/2015-09-04-2.xml
M include/releases.inc
M include/version.inc
A releases/5_6_13.php
diff --git a/ChangeLog-5.php b/ChangeLog-5.php
index b1944e2..f56e307 100644
--- a/ChangeLog-5.php
+++ b/ChangeLog-5.php
@@ -8,6 +8,75 @@ site_header("PHP 5 ChangeLog", array("current" => "docs",
"css" => array("change
<h1>PHP 5 ChangeLog</h1>
+<section class="version" id="5.6.13"><!-- {{{ 5.6.13 -->
+<h3>Version 5.6.13</h3>
+<?php release_date('03-Sep-2015'); ?>
+<ul><li>Core:
+<ul>
+ <li><?php bugfix(69900); ?> (Too long timeout on pipes).</li>
+ <li><?php bugfix(69487); ?> (SAPI may truncate POST data).</li>
+ <li><?php bugfix(70198); ?> (Checking liveness does not work as
expected).</li>
+ <li><?php bugfix(70172); ?> (Use After Free Vulnerability in
unserialize()).</li>
+ <li><?php bugfix(70219); ?> (Use after free vulnerability in session
deserializer).</li>
+</ul></li>
+<li>CLI server:
+<ul>
+ <li><?php bugfix(66606); ?> (Sets HTTP_CONTENT_TYPE but not
CONTENT_TYPE).</li>
+ <li><?php bugfix(70264); ?> (CLI server directory traversal).</li>
+</ul></li>
+<li>Date:
+<ul>
+ <li><?php bugfix(70266); ?> (DateInterval::__construct.interval_spec is not
supposed to be optional).</li>
+ <li><?php bugfix(70277); ?> (new DateTimeZone($foo) is ignoring text after
null byte).</li>
+</ul></li>
+<li>EXIF:
+<ul>
+ <li><?php bugfix(70385); ?> (Buffer over-read in exif_read_data with TIFF
IFD tag byte value of 32 bytes).</li>
+</ul></li>
+<li>hash:
+<ul>
+ <li><?php bugfix(70312); ?> (HAVAL gives wrong hashes in specific
cases).</li>
+</ul></li>
+<li>MCrypt:
+<ul>
+ <li><?php bugfix(69833); ?> (mcrypt fd caching not working).</li>
+</ul></li>
+<li>Opcache:
+<ul>
+ <li><?php bugfix(70237); ?> (Empty while and do-while segmentation fault
with opcode on CLI enabled).</li>
+</ul></li>
+<li>PCRE:
+<ul>
+ <li><?php bugfix(70232); ?> (Incorrect bump-along behavior with \K and empty
string match).</li>
+ <li><?php bugfix(70345); ?> (Multiple vulnerabilities related to PCRE
functions).</li>
+</ul></li>
+<li>SOAP:
+<ul>
+ <li><?php bugfix(70388); ?> (SOAP serialize_function_call() type confusion /
RCE).</li>
+</ul></li>
+<li>SPL:
+<ul>
+ <li><?php bugfix(70290); ?> (Null pointer deref (segfault) in spl_autoload
via ob_start).</li>
+ <li><?php bugfix(70303); ?> (Incorrect constructor reflection for
ArrayObject).</li>
+ <li><?php bugfix(70365); ?> (Use-after-free vulnerability in unserialize()
with SplObjectStorage).</li>
+ <li><?php bugfix(70366); ?> (Use-after-free vulnerability in unserialize()
with SplDoublyLinkedList).</li>
+</ul></li>
+<li>Standard:
+<ul>
+ <li><?php bugfix(70052); ?> (getimagesize() fails for very large and very
small WBMP).</li>
+ <li><?php bugfix(70157); ?> (parse_ini_string() segmentation fault with
INI_SCANNER_TYPED).</li>
+</ul></li>
+<li>XSLT:
+<ul>
+ <li><?php bugfix(69782); ?> (NULL pointer dereference).</li>
+</ul></li>
+<li>ZIP:
+<ul>
+ <li><?php bugfix(70350); ?> (ZipArchive::extractTo allows for directory
traversal when creating directories).</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
<section class="version" id="5.6.12"><!-- {{{ 5.6.12 -->
<h3>Version 5.6.12</h3>
<?php release_date('06-Aug-2015'); ?>
diff --git a/archive/archive.xml b/archive/archive.xml
index ee2d9a9..a4dab9b 100644
--- a/archive/archive.xml
+++ b/archive/archive.xml
@@ -9,6 +9,7 @@
<uri>http://php.net/contact</uri>
<email>[email protected]</email>
</author>
+ <xi:include href="entries/2015-09-04-2.xml"/>
<xi:include href="entries/2015-09-04-1.xml"/>
<xi:include href="entries/2015-08-31-1.xml"/>
<xi:include href="entries/2015-08-21-1.xml"/>
diff --git a/archive/entries/2015-09-04-2.xml b/archive/entries/2015-09-04-2.xml
new file mode 100644
index 0000000..d747d3d
--- /dev/null
+++ b/archive/entries/2015-09-04-2.xml
@@ -0,0 +1,27 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom";>
+ <title>PHP 5.6.13 is available</title>
+ <id>http://php.net/archive/2015.php#id2015-09-04-2</id>
+ <published>2015-09-04T08:40:46-07:00</published>
+ <updated>2015-09-04T08:40:46-07:00</updated>
+ <category term="frontpage" label="PHP.net frontpage news"/>
+ <category term="releases" label="New PHP release"/>
+ <link href="http://php.net/index.php#id2015-09-04-2"; rel="alternate"
type="text/html"/>
+ <link href="http://php.net/archive/2015.php#id2015-09-04-2"; rel="via"
type="text/html"/>
+ <content type="xhtml">
+ <div xmlns="http://www.w3.org/1999/xhtml";>
+
+ <p>The PHP development team announces the immediate availability of PHP
+ 5.6.13. 11 security-related issues were fixed in this release.
+
+ All PHP 5.6 users are encouraged to upgrade to this version.
+ </p>
+
+ <p>For source downloads of PHP 5.6.13 please visit our <a
href="http://www.php.net/downloads.php";>downloads page</a>,
+ Windows binaries can be found on <a
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+ The list of changes is recorded in the <a
href="http://www.php.net/ChangeLog-5.php#5.6.13";>ChangeLog</a>.
+ </p>
+
+ </div>
+ </content>
+</entry>
diff --git a/include/releases.inc b/include/releases.inc
index 9590c8a..4f2488b 100644
--- a/include/releases.inc
+++ b/include/releases.inc
@@ -2,6 +2,42 @@
$OLDRELEASES = array (
5 =>
array (
+ '5.6.12' =>
+ array (
+ 'announcement' =>
+ array (
+ 'English' => '/releases/5_6_12.php',
+ ),
+ 'source' =>
+ array (
+ 0 =>
+ array (
+ 'filename' => 'php-5.6.12.tar.bz2',
+ 'name' => 'PHP 5.6.12 (tar.bz2)',
+ 'md5' => '4578dee9d979114610a444bee263ed9b',
+ 'sha256' =>
'6f27104272af7b2a996f85e4100fac627630fbdaf39d7bd263f16cf529c8853a',
+ 'date' => '06 Aug 2015',
+ ),
+ 1 =>
+ array (
+ 'filename' => 'php-5.6.12.tar.gz',
+ 'name' => 'PHP 5.6.12 (tar.gz)',
+ 'md5' => '0bd6e2ff625ab8c20b5ed8dae1e88594',
+ 'sha256' =>
'7799b42606c1770d1ad90bfc7521d2b6c294c4c27dcf1a206dee562533b4f984',
+ 'date' => '06 Aug 2015',
+ ),
+ 2 =>
+ array (
+ 'filename' => 'php-5.6.12.tar.xz',
+ 'name' => 'PHP 5.6.12 (tar.xz)',
+ 'md5' => 'f2cc602602eb2b121779f2c4b8bacaba',
+ 'sha256' =>
'f8a8446866c0dc3f33319aa196ce87b64d71cab3dd96e39c8816adccc7e8ef33',
+ 'date' => '06 Aug 2015',
+ ),
+ ),
+ 'date' => '06 Aug 2015',
+ 'museum' => false,
+ ),
'5.6.11' =>
array (
'announcement' =>
diff --git a/include/version.inc b/include/version.inc
index 1592196..f0ddf9c 100644
--- a/include/version.inc
+++ b/include/version.inc
@@ -17,20 +17,20 @@
* ),
* );
/* PHP 5.6 Release */
-$PHP_5_6_RC = '5.6.13RC1'; // Current RC version (e.g., '5.6.7RC1') or false
+$PHP_5_6_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
$PHP_5_6_RC_DATE = '20 Aug 2015';
-$PHP_5_6_VERSION = "5.6.12";
-$PHP_5_6_DATE = "06 Aug 2015";
+$PHP_5_6_VERSION = "5.6.13";
+$PHP_5_6_DATE = "03 Sep 2015";
$PHP_5_6_MD5 = array(
- "tar.bz2" => "4578dee9d979114610a444bee263ed9b",
- "tar.gz" => "0bd6e2ff625ab8c20b5ed8dae1e88594",
- "tar.xz" => "f2cc602602eb2b121779f2c4b8bacaba",
+ "tar.bz2" => "64d9a82068e3b0bbb16c261261391172",
+ "tar.gz" => "349f183c0f8e2567772e2eb3dee84504",
+ "tar.xz" => "de4a8ff544986d9e0da90522fa66f195",
);
$PHP_5_6_SHA256 = array(
- "tar.bz2" =>
"6f27104272af7b2a996f85e4100fac627630fbdaf39d7bd263f16cf529c8853a",
- "tar.gz" =>
"7799b42606c1770d1ad90bfc7521d2b6c294c4c27dcf1a206dee562533b4f984",
- "tar.xz" =>
"f8a8446866c0dc3f33319aa196ce87b64d71cab3dd96e39c8816adccc7e8ef33",
+ "tar.bz2" =>
"6358837c9cbab41b91ede59dbf0670ae0fb925a1369ecbc1a44a27212420f893",
+ "tar.gz" =>
"92acc6c067f5e015a6881b4119eafec10eca11722e810f2c2083f72e17119bcf",
+ "tar.xz" =>
"c1f0837df20cd3bed149033924770deca3e7e2d18e2e7e81395096576f153fdc",
);
/* PHP 5.5 Release */
$PHP_5_5_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
diff --git a/releases/5_6_13.php b/releases/5_6_13.php
new file mode 100644
index 0000000..d015d1c
--- /dev/null
+++ b/releases/5_6_13.php
@@ -0,0 +1,20 @@
+<?php
+// $Id$
+$_SERVER['BASE_PAGE'] = 'releases/5_6_13.php';
+include_once $_SERVER['DOCUMENT_ROOT'] . '/include/prepend.inc';
+site_header("PHP 5.6.13 Release Announcement");
+?>
+ <h1>PHP 5.6.13 Release Announcement</h1>
+
+ <p>The PHP development team announces the immediate availability of PHP
+ 5.6.13. 11 security-related issues were fixed in this release.
+
+ All PHP 5.6 users are encouraged to upgrade to this version.
+ </p>
+
+ <p>For source downloads of PHP 5.6.13 please visit our <a
href="http://www.php.net/downloads.php";>downloads page</a>,
+ Windows binaries can be found on <a
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+ The list of changes is recorded in the <a
href="http://www.php.net/ChangeLog-5.php#5.6.13";>ChangeLog</a>.
+ </p>
+
+<?php site_footer(); ?>--
PHP Webmaster List Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
