Commit: 935c5b843653c7e4a191a451e5991e530351057f
Author: Ferenc Kovacs <[email protected]> Thu, 21 Jul 2016 21:52:23
+0200
Parents: 8d205850b9a759adb86d87d05f3e08ca3d7251a2
Branches: master
Link:
http://git.php.net/?p=web/php.git;a=commitdiff;h=935c5b843653c7e4a191a451e5991e530351057f
Log:
5.6.24
Changed paths:
M ChangeLog-5.php
M archive/archive.xml
A archive/entries/2016-07-21-4.xml
M include/releases.inc
M include/version.inc
A releases/5_6_24.php
diff --git a/ChangeLog-5.php b/ChangeLog-5.php
index c4a4964..44559b3 100644
--- a/ChangeLog-5.php
+++ b/ChangeLog-5.php
@@ -7,6 +7,78 @@ site_header("PHP 5 ChangeLog", array("current" => "docs",
"css" => array("change
?>
<h1>PHP 5 ChangeLog</h1>
+<section class="version" id="5.6.24"><!-- {{{ 5.6.24 -->
+<h3>Version 5.6.24</h3>
+<b><?php release_date('21-Jul-2016'); ?></b>
+<ul><li>Core:
+<ul>
+ <li><?php bugfix(71936); ?> (Segmentation fault destroying
HTTP_RAW_POST_DATA).</li>
+ <li><?php bugfix(72496); ?> (Cannot declare public method with signature
incompatible with parent private method).</li>
+ <li><?php bugfix(72138); ?> (Integer Overflow in Length of String-typed
ZVAL).</li>
+ <li><?php bugfix(72513); ?> (Stack-based buffer overflow vulnerability in
virtual_file_ex).</li>
+ <li><?php bugfix(72562); ?> (Use After Free in unserialize() with Unexpected
Session Deserialization).</li>
+ <li><?php bugfix(72573); ?> (HTTP_PROXY is improperly trusted by some PHP
libraries and applications).</li>
+</ul></li>
+<li>bz2:
+<ul>
+ <li><?php bugfix(72447); ?> (Type Confusion in php_bz2_filter_create()).
(gogil at stealien dot com).</li>
+ <li><?php bugfix(72613); ?> (Inadequate error handling in bzread()).</li>
+</ul></li>
+<li>EXIF:
+<ul>
+ <li><?php bugfix(50845); ?> (exif_read_data() returns corrupted exif
headers).</li>
+ <li><?php bugfix(72603); ?> (Out of bound read in
exif_process_IFD_in_MAKERNOTE).</li>
+ <li><?php bugfix(72618); ?> (NULL Pointer Dereference in
exif_process_user_comment).</li>
+</ul></li>
+<li>GD:
+<ul>
+ <li><?php bugfix(43475); ?> (Thick styled lines have scrambled
patterns).</li>
+ <li><?php bugfix(53640); ?> (XBM images require width to be multiple of
8).</li>
+ <li><?php bugfix(64641); ?> (imagefilledpolygon doesn't draw horizontal
line).</li>
+ <li><?php bugfix(72512); ?> (gdImageTrueColorToPaletteBody allows arbitrary
write/read access).</li>
+ <li><?php bugfix(72519); ?> (imagegif/output out-of-bounds access).</li>
+ <li><?php bugfix(72558); ?> (Integer overflow error within
_gdContributionsAlloc()).</li>
+</ul></li>
+<li>Intl:
+<ul>
+ <li><?php bugfix(72533); ?> (locale_accept_from_http out-of-bounds
access).</li>
+</ul></li>
+<li>ODBC:
+<ul>
+ <li><?php bugfix(69975); ?> (PHP segfaults when accessing nvarchar(max)
defined columns)</li>
+</ul></li>
+<li>OpenSSL:
+<ul>
+ <li><?php bugfix(71915); ?> (openssl_random_pseudo_bytes is not
fork-safe).</li>
+ <li><?php bugfix(72336); ?> (openssl_pkey_new does not fail for invalid DSA
params).</li>
+</ul></li>
+<li>SNMP:
+<ul>
+ <li><?php bugfix(72479); ?> (Use After Free Vulnerability in SNMP with GC
and unserialize()).</li>
+</ul></li>
+<li>SPL:
+<ul>
+ <li><?php bugfix(55701); ?> (GlobIterator throws LogicException).</li>
+</ul></li>
+<li>SQLite3:
+<ul>
+ <li><?php bugfix(70628); ?> (Clearing bindings on an SQLite3 statement
doesn't work).</li>
+</ul></li>
+<li>Streams:
+<ul>
+ <li><?php bugfix(72439); ?> (Stream socket with remote address leads to a
segmentation fault).</li>
+</ul></li>
+<li>Xmlrpc:
+<ul>
+ <li><?php bugfix(72606); ?> (heap-buffer-overflow (write) simplestring_addn
simplestring.c).</li>
+</ul></li>
+<li>Zip:
+<ul>
+ <li><?php bugfix(72520); ?> (Stack-based buffer overflow vulnerability in
php_stream_zip_opener).</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
<section class="version" id="5.5.38"><!-- {{{ 5.5.38 -->
<h3>Version 5.5.38</h3>
<b><?php release_date('21-Jul-2016'); ?></b>
diff --git a/archive/archive.xml b/archive/archive.xml
index a9ed036..692bb57 100644
--- a/archive/archive.xml
+++ b/archive/archive.xml
@@ -9,6 +9,7 @@
<uri>http://php.net/contact</uri>
<email>[email protected]</email>
</author>
+ <xi:include href="entries/2016-07-21-4.xml"/>
<xi:include href="entries/2016-07-21-2.xml"/>
<xi:include href="entries/2016-07-21-3.xml"/>
<xi:include href="entries/2016-07-21-1.xml"/>
diff --git a/archive/entries/2016-07-21-4.xml b/archive/entries/2016-07-21-4.xml
new file mode 100644
index 0000000..fb974b2
--- /dev/null
+++ b/archive/entries/2016-07-21-4.xml
@@ -0,0 +1,26 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom";>
+ <title>PHP 5.6.24 is released</title>
+ <id>http://php.net/archive/2016.php#id2016-07-21-4</id>
+ <published>2016-07-21T19:49:46+00:00</published>
+ <updated>2016-07-21T19:49:46+00:00</updated>
+ <category term="frontpage" label="PHP.net frontpage news"/>
+ <category term="releases" label="New PHP release"/>
+ <link href="http://php.net/index.php#id2016-07-21-4"; rel="alternate"
type="text/html"/>
+ <link href="http://php.net/archive/2016.php#id2016-07-21-4"; rel="via"
type="text/html"/>
+ <content type="xhtml">
+ <div xmlns="http://www.w3.org/1999/xhtml";>
+ <p>The PHP development team announces the immediate availability of PHP
+ 5.6.24. This is a security release. Several security bugs were fixed in
+ this release.
+
+ All PHP 5.6 users are encouraged to upgrade to this version.
+ </p>
+
+ <p>For source downloads of PHP 5.6.24 please visit our <a
href="http://www.php.net/downloads.php";>downloads page</a>,
+ Windows source and binaries can be found on <a
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+ The list of changes is recorded in the <a
href="http://www.php.net/ChangeLog-5.php#5.6.24";>ChangeLog</a>.
+ </p>
+ </div>
+ </content>
+</entry>
diff --git a/include/releases.inc b/include/releases.inc
index ba631fb..4d46094 100644
--- a/include/releases.inc
+++ b/include/releases.inc
@@ -329,7 +329,43 @@ $OLDRELEASES = array (
),
5 =>
array (
- '5.5.37' =>
+ '5.6.23' =>
+ array (
+ 'announcement' =>
+ array (
+ 'English' => '/releases/5_6_23.php',
+ ),
+ 'source' =>
+ array (
+ 0 =>
+ array (
+ 'filename' => 'php-5.6.23.tar.bz2',
+ 'name' => 'PHP 5.6.23 (tar.bz2)',
+ 'md5' => '147734b7e0164ebdd2dc18474fcfb309',
+ 'sha256' =>
'facd280896d277e6f7084b60839e693d4db68318bfc92085d3dc0251fd3558c7',
+ 'date' => '23 Jun 2016',
+ ),
+ 1 =>
+ array (
+ 'filename' => 'php-5.6.23.tar.gz',
+ 'name' => 'PHP 5.6.23 (tar.gz)',
+ 'md5' => '5120140b7b3117e50807836a1869e250',
+ 'sha256' =>
'5f2274a13970887e8c81500c2afe292d51c3524d1a06554b0a87c74ce0a24ffe',
+ 'date' => '23 Jun 2016',
+ ),
+ 2 =>
+ array (
+ 'filename' => 'php-5.6.23.tar.xz',
+ 'name' => 'PHP 5.6.23 (tar.xz)',
+ 'md5' => 'c2d2155e50bcbaa0ee7a63845862c894',
+ 'sha256' =>
'39141e9a617af172aedbbacee7a63eb15502850f7cea20d759a9cffa7cfb0a1a',
+ 'date' => '23 Jun 2016',
+ ),
+ ),
+ 'date' => '23 Jun 2016',
+ 'museum' => false,
+ ),
+ '5.5.37' =>
array (
'announcement' =>
array (
diff --git a/include/version.inc b/include/version.inc
index 85f9ec5..8e0a7d5 100644
--- a/include/version.inc
+++ b/include/version.inc
@@ -35,20 +35,20 @@ $PHP_7_0_SHA256 = array(
);
/* PHP 5.6 Release */
-$PHP_5_6_RC = '5.6.24RC1'; // Current RC version (e.g., '5.6.7RC1') or false
+$PHP_5_6_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
$PHP_5_6_RC_DATE = '07 Jul 2016';
-$PHP_5_6_VERSION = "5.6.23";
-$PHP_5_6_DATE = "23 Jun 2016";
+$PHP_5_6_VERSION = "5.6.24";
+$PHP_5_6_DATE = "21 Jul 2016";
$PHP_5_6_MD5 = array(
- "tar.bz2" => "147734b7e0164ebdd2dc18474fcfb309",
- "tar.gz" => "5120140b7b3117e50807836a1869e250",
- "tar.xz" => "c2d2155e50bcbaa0ee7a63845862c894",
+ "tar.bz2" => "2ab124d58b7b763ca453f6a18ec3866b",
+ "tar.gz" => "dfa2e90085516cc817a8a9568e2a374e",
+ "tar.xz" => "3ef6e3573698b9b444be88edd3b23494",
);
$PHP_5_6_SHA256 = array(
- "tar.bz2" =>
"facd280896d277e6f7084b60839e693d4db68318bfc92085d3dc0251fd3558c7",
- "tar.gz" =>
"5f2274a13970887e8c81500c2afe292d51c3524d1a06554b0a87c74ce0a24ffe",
- "tar.xz" =>
"39141e9a617af172aedbbacee7a63eb15502850f7cea20d759a9cffa7cfb0a1a",
+ "tar.bz2" =>
"bf23617ec3ed0a125ec8bde2b7bca9d3804b2ff4df8de192890c84dc9fac38c6",
+ "tar.gz" =>
"5f8b2e4e00360fee6eb1b89447266ae45993265955bd1ea9866270d75cdb6ec1",
+ "tar.xz" =>
"ed7c38c6dac539ade62e08118258f4dac0c49beca04d8603bee4e0ea6ca8250b",
);
/* PHP 5.5 Release */
$PHP_5_5_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
diff --git a/releases/5_6_24.php b/releases/5_6_24.php
new file mode 100644
index 0000000..637e61b
--- /dev/null
+++ b/releases/5_6_24.php
@@ -0,0 +1,21 @@
+<?php
+// $Id$
+$_SERVER['BASE_PAGE'] = 'releases/5_6_24.php';
+include_once $_SERVER['DOCUMENT_ROOT'] . '/include/prepend.inc';
+site_header("PHP 5.6.24 Release Announcement");
+?>
+
+ <h1>PHP 5.6.24 Release Announcement</h1>
+
+ <p>The PHP development team announces the immediate availability of PHP
+ 5.6.24. This is a security release. Several security bugs were fixed in
this release.
+
+ All PHP 5.6 users are encouraged to upgrade to this version.
+ </p>
+
+ <p>For source downloads of PHP 5.6.24 please visit our <a
href="http://www.php.net/downloads.php";>downloads page</a>,
+ Windows binaries can be found on <a
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+ The list of changes is recorded in the <a
href="http://www.php.net/ChangeLog-5.php#5.6.24";>ChangeLog</a>.
+ </p>
+
+<?php site_footer(); ?>--
PHP Webmaster List Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
