Commit: 3e42d816a8a6b3f7b7adf447ebc03fa49f755781
Author: Julien Pauli <[email protected]> Thu, 21 Jul 2016 18:11:09 +0200
Parents: b62019cbbc6ab55e4379a315803fc83b604ebb4c
Branches: master
Link:
http://git.php.net/?p=web/php.git;a=commitdiff;h=3e42d816a8a6b3f7b7adf447ebc03fa49f755781
Log:
5.5.38 release
Changed paths:
M ChangeLog-5.php
M archive/archive.xml
A archive/entries/2016-07-21-2.xml
M include/releases.inc
M include/version.inc
A releases/5_5_38.php
diff --git a/ChangeLog-5.php b/ChangeLog-5.php
index 31cf1b5..c4a4964 100644
--- a/ChangeLog-5.php
+++ b/ChangeLog-5.php
@@ -7,6 +7,54 @@ site_header("PHP 5 ChangeLog", array("current" => "docs",
"css" => array("change
?>
<h1>PHP 5 ChangeLog</h1>
+<section class="version" id="5.5.38"><!-- {{{ 5.5.38 -->
+<h3>Version 5.5.38</h3>
+<b><?php release_date('21-Jul-2016'); ?></b>
+<ul><li>BZip2:
+<ul>
+ <li><?php bugfix(72613); ?> (Inadequate error handling in bzread()).</li>
+</ul></li>
+<li>Core:
+<ul>
+ <li><?php bugfix(70480); ?> (php_url_parse_ex() buffer overflow read).</li>
+ <li><?php bugfix(72513); ?> (Stack-based buffer overflow vulnerability in
virtual_file_ex).</li>
+ <li><?php bugfix(72562); ?> (Use After Free in unserialize() with Unexpected
Session Deserialization).</li>
+ <li><?php bugfix(72573); ?> (HTTP_PROXY is improperly trusted by some PHP
libraries and applications).</li>
+</ul></li>
+<li>EXIF:
+<ul>
+ <li><?php bugfix(72603); ?> (Out of bound read in
exif_process_IFD_in_MAKERNOTE).</li>
+ <li><?php bugfix(72618); ?> (NULL Pointer Dereference in
exif_process_user_comment).</li>
+</ul></li>
+<li>GD:
+<ul>
+ <li><?php bugfix(72512); ?> (gdImageTrueColorToPaletteBody allows arbitrary
write/read access).</li>
+ <li><?php bugfix(72519); ?> (imagegif/output out-of-bounds access).</li>
+ <li><?php bugfix(72558); ?> (Integer overflow error within
_gdContributionsAlloc()).</li>
+</ul></li>
+<li>Intl:
+<ul>
+ <li><?php bugfix(72533); ?> (locale_accept_from_http out-of-bounds
access).</li>
+</ul></li>
+<li>ODBC:
+<ul>
+ <li><?php bugfix(69975); ?> (PHP segfaults when accessing nvarchar(max)
defined columns)</li>
+</ul></li>
+<li>SNMP:
+<ul>
+ <li><?php bugfix(72479); ?> (Use After Free Vulnerability in SNMP with GC
and unserialize()).</li>
+</ul></li>
+<li>Xmlrpc:
+<ul>
+ <li><?php bugfix(72606); ?> (heap-buffer-overflow (write) simplestring_addn
simplestring.c).</li>
+</ul></li>
+<li>Zip:
+<ul>
+ <li><?php bugfix(72520); ?> (Stack-based buffer overflow vulnerability in
php_stream_zip_opener).</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
<section class="version" id="5.6.23"><!-- {{{ 5.6.23 -->
<h3>Version 5.6.23</h3>
<b><?php release_date('23-Jun-2016'); ?></b>
diff --git a/archive/archive.xml b/archive/archive.xml
index 124054f..a9ed036 100644
--- a/archive/archive.xml
+++ b/archive/archive.xml
@@ -9,6 +9,7 @@
<uri>http://php.net/contact</uri>
<email>[email protected]</email>
</author>
+ <xi:include href="entries/2016-07-21-2.xml"/>
<xi:include href="entries/2016-07-21-3.xml"/>
<xi:include href="entries/2016-07-21-1.xml"/>
<xi:include href="entries/2016-07-07-1.xml"/>
diff --git a/archive/entries/2016-07-21-2.xml b/archive/entries/2016-07-21-2.xml
new file mode 100644
index 0000000..f983481
--- /dev/null
+++ b/archive/entries/2016-07-21-2.xml
@@ -0,0 +1,28 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom";>
+ <title>PHP 5.5.38 is released</title>
+ <id>http://php.net/archive/2016.php#id2016-07-21-2</id>
+ <published>2016-07-21T16:01:29+00:00</published>
+ <updated>2016-07-21T16:01:29+00:00</updated>
+ <category term="frontpage" label="PHP.net frontpage news"/>
+ <category term="releases" label="New PHP release"/>
+ <link href="http://php.net/index.php#id2016-07-21-2"; rel="alternate"
type="text/html"/>
+ <link href="http://php.net/archive/2016.php#id2016-07-21-2"; rel="via"
type="text/html"/>
+ <content type="xhtml">
+ <div xmlns="http://www.w3.org/1999/xhtml";>
+ <p>
+ The PHP development team announces the immediate availability of PHP
5.5.38. This is a security release that fixes
+ some security related bugs.
+ </p>
+ <p>All PHP 5.5 users are encouraged to upgrade to this version.</p>
+
+ <p>For source downloads of PHP 5.5.37 please visit our downloads page,
Windows source and binaries can be found on windows.php.net/download/. The list
of changes is recorded in the ChangeLog.</p>
+
+ <p>
+ Note that according to <a
href="http://www.php.net/supported-versions.php";>our release schedule</a>, PHP
5.5.38 is the last release of the PHP 5.5 branch.
+ There may be additional release if we discover important security
issues that warrant it, otherwise this release will be the final one in the PHP
5.5 branch. If your PHP installation is based on PHP 5.5, it may be a good time
to start making the plans for the upgrade to PHP 5.6 or PHP 7.0.
+ </p>
+
+ </div>
+ </content>
+</entry>
diff --git a/include/releases.inc b/include/releases.inc
index 0d59a2b..ba631fb 100644
--- a/include/releases.inc
+++ b/include/releases.inc
@@ -329,6 +329,42 @@ $OLDRELEASES = array (
),
5 =>
array (
+ '5.5.37' =>
+ array (
+ 'announcement' =>
+ array (
+ 'English' => '/releases/5_5_37.php',
+ ),
+ 'source' =>
+ array (
+ 0 =>
+ array (
+ 'filename' => 'php-5.5.37.tar.bz2',
+ 'name' => 'PHP 5.5.37 (tar.bz2)',
+ 'md5' => '3a4b249bee5451a0982263a94a8a8c9d',
+ 'sha256' =>
'd2380ebe46caf17f2c4cd055867d00a82e6702dc5f62dc29ce864a5742905d88',
+ 'date' => '23 Jun 2016',
+ ),
+ 1 =>
+ array (
+ 'filename' => 'php-5.5.37.tar.gz',
+ 'name' => 'PHP 5.5.37 (tar.gz)',
+ 'md5' => '6431716479805df74df27377ce485bd1',
+ 'sha256' =>
'7cef04b549fdbe00c26dc785b6ba10439672a1596db518fc46632ecba45f44b9',
+ 'date' => '23 Jun 2016',
+ ),
+ 2 =>
+ array (
+ 'filename' => 'php-5.5.36.tar.xz',
+ 'name' => 'PHP 5.5.36 (tar.xz)',
+ 'md5' => '707a528176283b8eecba1fa3c7123dd2',
+ 'sha256' =>
'c322444fdf6d3ba26aa67d67ee32d1e815a877f35831351c83763431a80e3612',
+ 'date' => '23 Jun 2016',
+ ),
+ ),
+ 'date' => '23 Jun 2016',
+ 'museum' => false,
+ ),
'5.5.36' =>
array (
'announcement' =>
diff --git a/include/version.inc b/include/version.inc
index 3641e76..85f9ec5 100644
--- a/include/version.inc
+++ b/include/version.inc
@@ -54,17 +54,17 @@ $PHP_5_6_SHA256 = array(
$PHP_5_5_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
$PHP_5_5_RC_DATE = '25 Jun 2015';
-$PHP_5_5_VERSION = "5.5.37";
-$PHP_5_5_DATE = "23 Jun 2016";
+$PHP_5_5_VERSION = "5.5.38";
+$PHP_5_5_DATE = "21 Jul 2016";
$PHP_5_5_MD5 = array(
- "tar.bz2" => "3a4b249bee5451a0982263a94a8a8c9d",
- "tar.gz" => "6431716479805df74df27377ce485bd1",
- "tar.xz" => "707a528176283b8eecba1fa3c7123dd2",
+ "tar.bz2" => "312244a0eecad602a1555ed2434e223f",
+ "tar.gz" => "c2545f7164f8f8b2187fb404f11ceb35",
+ "tar.xz" => "72302e26f153687e2ca922909f927443",
);
$PHP_5_5_SHA256 = array(
- "tar.bz2" =>
"d2380ebe46caf17f2c4cd055867d00a82e6702dc5f62dc29ce864a5742905d88",
- "tar.gz" =>
"7cef04b549fdbe00c26dc785b6ba10439672a1596db518fc46632ecba45f44b9",
- "tar.xz" =>
"c322444fdf6d3ba26aa67d67ee32d1e815a877f35831351c83763431a80e3612",
+ "tar.bz2" =>
"473c81ebb2e48ca468caee031762266651843d7227c18a824add9b07b9393e38",
+ "tar.gz" =>
"4f458c9b504269615715a62f182b7c2f89bb8284f484befc221b56a1571b506e",
+ "tar.xz" =>
"cb527c44b48343c8557fe2446464ff1d4695155a95601083e5d1f175df95580f",
);
$RELEASES = array(
diff --git a/releases/5_5_38.php b/releases/5_5_38.php
new file mode 100644
index 0000000..8b55e77
--- /dev/null
+++ b/releases/5_5_38.php
@@ -0,0 +1,23 @@
+<?php
+// $Id$
+$_SERVER['BASE_PAGE'] = 'releases/5_5_38.php';
+include_once $_SERVER['DOCUMENT_ROOT'] . '/include/prepend.inc';
+site_header("PHP 5.5.38 Release Announcement");
+?>
+ <h1>PHP 5.5.38 Release Announcement</h1>
+
+ <p>
+ The PHP development team announces the immediate availability of PHP
5.5.38. This is a security release that fixes
+ some security related bugs.
+ </p>
+
+ <p>All PHP 5.5 users are encouraged to upgrade to this version.</p>
+
+ <p>For source downloads of PHP 5.5.37 please visit our downloads page,
Windows source and binaries can be found on windows.php.net/download/. The list
of changes is recorded in the ChangeLog.</p>
+
+ <p>
+ Note that according to <a
href="http://www.php.net/supported-versions.php";>our release schedule</a>, PHP
5.5.38 is the last release of the PHP 5.5 branch.
+ There may be additional release if we discover important security
issues that warrant it, otherwise this release will be the final one in the PHP
5.5 branch. If your PHP installation is based on PHP 5.5, it may be a good time
to start making the plans for the upgrade to PHP 5.6 or PHP 7.0.
+ </p>
+
+<?php site_footer(); ?>--
PHP Webmaster List Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
