Commit:    3c963a22052732b63d22e53d174fb6261af58139
Author:    Ferenc Kovacs <tyr...@gmail.com>         Fri, 14 Oct 2016 23:32:46 
+0200
Parents:   8a1de187eb6912eca15f1d14b04ae4011d15d232
Branches:  master

Link:       
http://git.php.net/?p=web/php.git;a=commitdiff;h=3c963a22052732b63d22e53d174fb6261af58139

Log:
add 5.6.27 release announcement

Changed paths:
  M  ChangeLog-5.php
  M  archive/archive.xml
  A  archive/entries/2016-10-14-1.xml
  M  include/releases.inc
  M  include/version.inc
  A  releases/5_6_27.php

diff --git a/ChangeLog-5.php b/ChangeLog-5.php
index 1ddaa1b..d69c926 100644
--- a/ChangeLog-5.php
+++ b/ChangeLog-5.php
@@ -7,6 +7,107 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", 
"css" => array("change
 ?>
 
 <h1>PHP 5 ChangeLog</h1>
+
+<section class="version" id="5.6.27"><!-- {{{ 5.6.27 -->
+<h3>Version 5.6.27</h3>
+<b><?php release_date('13-Oct-2016'); ?></b>
+<ul><li>Core:
+<ul>
+  <li><?php bugfix(73025); ?> (Heap Buffer Overflow in virtual_popen of 
zend_virtual_cwd.c).</li>
+  <li><?php bugfix(73058); ?> (crypt broken when salt is 'too' long).</li>
+  <li><?php bugfix(72703); ?> (Out of bounds global memory read in BF_crypt 
triggered by 
+password_verify).</li>
+  <li><?php bugfix(73189); ?> (Memcpy negative size parameter 
php_resolve_path).</li>
+  <li><?php bugfix(73147); ?> (Use After Free in unserialize()).</li>
+</ul></li>
+<li>BCmath:
+<ul>
+  <li><?php bugfix(73190); ?> (memcpy negative parameter _bc_new_num_ex).</li>
+</ul></li>
+<li>DOM:
+<ul>
+  <li><?php bugfix(73150); ?> (missing NULL check in 
dom_document_save_html).</li>
+</ul></li>
+<li>Ereg:
+<ul>
+  <li><?php bugfix(73284); ?> (heap overflow in php_ereg_replace 
function).</li>
+</ul></li>
+<li>Filter:
+<ul>
+  <li><?php bugfix(72972); ?> (Bad filter for the flags 
FILTER_FLAG_NO_RES_RANGE and 
+FILTER_FLAG_NO_PRIV_RANGE).</li>
+  <li><?php bugfix(67167); ?> (Wrong return value from 
FILTER_VALIDATE_BOOLEAN, FILTER_NULL_ON_FAILURE).</li>
+  <li><?php bugfix(73054); ?> (default option ignored when object passed to 
int filter).</li>
+</ul></li>
+<li>GD:
+<ul>
+  <li><?php bugfix(67325); ?> (imagetruecolortopalette: white is duplicated in 
palette).</li>
+  <li><?php bugfix(50194); ?> (imagettftext broken on transparent background 
w/o alphablending).</li>
+  <li><?php bugfix(73003); ?> (Integer Overflow in gdImageWebpCtx of 
gd_webp.c).</li>
+  <li><?php bugfix(53504); ?> (imagettfbbox gives incorrect values for 
bounding box).</li>
+  <li><?php bugfix(73157); ?> (imagegd2() ignores 3rd param if 4 are 
given).</li>
+  <li><?php bugfix(73155); ?> (imagegd2() writes wrong chunk sizes on 
boundaries).</li>
+  <li><?php bugfix(73159); ?> (imagegd2(): unrecognized formats may result in 
corrupted files).</li>
+  <li><?php bugfix(73161); ?> (imagecreatefromgd2() may leak memory).</li>
+</ul></li>
+<li>Intl:
+<ul>
+  <li><?php bugfix(73218); ?> (add mitigation for ICU int overflow).</li>
+</ul></li>
+<li>Imap:
+<ul>
+  <li><?php bugfix(73208); ?> (integer overflow in imap_8bit caused heap 
corruption).</li>
+</ul></li>
+<li>Mbstring:
+<ul>
+  <li><?php bugfix(72994); ?> (mbc_to_code() out of bounds read).</li>
+  <li><?php bugfix(66964); ?> (mb_convert_variables() cannot detect 
recursion).</li>
+  <li><?php bugfix(72992); ?> (mbstring.internal_encoding doesn't inherit 
default_charset).</li>
+  <li><?php bugfix(73082); ?> (string length overflow in mb_encode_* 
function).</li>
+</ul></li>
+<li>PCRE:
+<ul>
+  <li><?php bugfix(73174); ?> (heap overflow in php_pcre_replace_impl).</li>
+</ul></li>
+<li>Opcache:
+<ul>
+  <li><?php bugfix(72590); ?> (Opcache restart with kill_all_lockers does not 
work).</li>
+</ul></li>
+<li>OpenSSL:
+<ul>
+  <li><?php bugfix(73072); ?> (Invalid path SNI_server_certs causes 
segfault).</li>
+  <li><?php bugfix(73275); ?> (crash in openssl_encrypt function).</li>
+  <li><?php bugfix(73276); ?> (crash in openssl_random_pseudo_bytes 
function).</li>
+</ul></li>
+<li>Session:
+<ul>
+  <li><?php bugfix(68015); ?> (Session does not report invalid uid for files 
save handler).</li>
+  <li><?php bugfix(73100); ?> (session_destroy null dereference in 
ps_files_path_create).</li>
+</ul></li>
+<li>SimpleXML:
+<ul>
+  <li><?php bugfix(73293); ?> (NULL pointer dereference in 
SimpleXMLElement::asXML()).</li>
+</ul></li>
+<li>SPL:
+<ul>
+  <li><?php bugfix(73073); ?> (CachingIterator null dereference when convert 
to string).</li>
+</ul></li>
+<li>Standard:
+<ul>
+  <li><?php bugfix(73240); ?> (Write out of bounds at number_format).</li>
+  <li><?php bugfix(73017); ?> (memory corruption in wordwrap function).</li>
+</ul></li>
+<li>Stream:
+<ul>
+  <li><?php bugfix(73069); ?> (readfile() mangles files larger than 2G).</li>
+</ul></li>
+<li>Zip:
+<ul>
+  <li><?php bugfix(70752); ?> (Depacking with wrong password leaves 0 length 
files).</li>
+</ul></li>
+</ul>
+<!-- }}} --></section>
+
 <section class="version" id="5.6.26"><!-- {{{ 5.6.26 -->
 <h3>Version 5.6.26</h3>
 <b><?php release_date('15-Sep-2016'); ?></b>
diff --git a/archive/archive.xml b/archive/archive.xml
index 8e61dab..ac1240b 100644
--- a/archive/archive.xml
+++ b/archive/archive.xml
@@ -9,6 +9,7 @@
     <uri>http://php.net/contact</uri>
     <email>php-webmaster@lists.php.net</email>
   </author>
+  <xi:include href="entries/2016-10-14-1.xml"/>
   <xi:include href="entries/2016-10-13-1.xml"/>
   <xi:include href="entries/2016-09-29-1.xml"/>
   <xi:include href="entries/2016-09-22-1.xml"/>
diff --git a/archive/entries/2016-10-14-1.xml b/archive/entries/2016-10-14-1.xml
new file mode 100644
index 0000000..7916c36
--- /dev/null
+++ b/archive/entries/2016-10-14-1.xml
@@ -0,0 +1,25 @@
+<?xml version="1.0" encoding="utf-8"?>
+<entry xmlns="http://www.w3.org/2005/Atom";>
+  <title>PHP 5.6.27 Released</title>
+  <id>http://php.net/archive/2016.php#id2016-10-14-1</id>
+  <published>2016-10-14T21:29:35+00:00</published>
+  <updated>2016-10-14T21:29:35+00:00</updated>
+  <category term="frontpage" label="PHP.net frontpage news"/>
+  <category term="releases" label="New PHP release"/>
+  <link href="http://php.net/index.php#id2016-10-14-1"; rel="alternate" 
type="text/html"/>
+  <link href="http://php.net/archive/2016.php#id2016-10-14-1"; rel="via" 
type="text/html"/>
+  <content type="xhtml">
+    <div xmlns="http://www.w3.org/1999/xhtml";>
+     <p>The PHP development team announces the immediate availability of PHP
+     5.6.27. This is a security release. Several security bugs were fixed in
+     this release.
+
+     All PHP 5.6 users are encouraged to upgrade to this version.</p>
+
+     <p>For source downloads of PHP 5.6.27 please visit our <a 
href="http://www.php.net/downloads.php";>downloads pag$
+     Windows source and binaries can be found on <a 
href="http://windows.php.net/download/";>windows.php.net/download$
+     The list of changes is recorded in the <a 
href="http://www.php.net/ChangeLog-5.php#5.6.27";>ChangeLog</a>.
+     </p>
+    </div>
+  </content>
+</entry>
diff --git a/include/releases.inc b/include/releases.inc
index c717da9..32f1fc3 100644
--- a/include/releases.inc
+++ b/include/releases.inc
@@ -437,6 +437,42 @@ $OLDRELEASES = array (
   ),
   5 => 
   array (
+    '5.6.26' => 
+    array (
+      'announcement' => 
+      array (
+        'English' => '/releases/5_6_26.php',
+      ),
+      'source' => 
+      array (
+        0 => 
+        array (
+          'filename' => 'php-5.6.26.tar.bz2',
+          'name' => 'PHP 5.6.26 (tar.bz2)',
+          'md5' => 'cb424b705cfb715fc04f499f8a8cf52e',
+          'sha256' => 
'd47aab8083a4284b905777e1b45dd7735adc53be827b29f896684750ac8b6236',
+          'date' => '15 Sep 2016',
+        ),
+        1 => 
+        array (
+          'filename' => 'php-5.6.26.tar.gz',
+          'name' => 'PHP 5.6.26 (tar.gz)',
+          'md5' => '6aa387761ee6afa1e3be7ee94a1e8c03',
+          'sha256' => 
'f76b6cc23739d9dabf875aee57d91ae73f15e88ddf78803369b8b4728b19b924',
+          'date' => '15 Sep 2016',
+        ),
+        2 => 
+        array (
+          'filename' => 'php-5.6.26.tar.xz',
+          'name' => 'PHP 5.6.26 (tar.xz)',
+          'md5' => 'c51e9115263b4d63ef8f68935cefd7d4',
+          'sha256' => 
'203a854f0f243cb2810d1c832bc871ff133eccdf1ff69d32846f93bc1bef58a8',
+          'date' => '15 Sep 2016',
+        ),
+      ),
+      'date' => '15 Sep 2016',
+      'museum' => false,
+    ),
     '5.6.25' => 
     array (
       'announcement' => 
diff --git a/include/version.inc b/include/version.inc
index 39e84f2..d1e0a1f 100644
--- a/include/version.inc
+++ b/include/version.inc
@@ -35,20 +35,20 @@ $PHP_7_0_SHA256     = array(
 );
 
 /* PHP 5.6 Release */
-$PHP_5_6_RC = '5.6.27RC1'; // Current RC version (e.g., '5.6.7RC1') or false
+$PHP_5_6_RC = false; // Current RC version (e.g., '5.6.7RC1') or false
 $PHP_5_6_RC_DATE = '29 Sep 2016';
 
-$PHP_5_6_VERSION         = "5.6.26";
-$PHP_5_6_DATE            = "15 Sep 2016";
+$PHP_5_6_VERSION         = "5.6.27";
+$PHP_5_6_DATE            = "13 Oct 2016";
 $PHP_5_6_MD5     = array(
-                       "tar.bz2"       => "cb424b705cfb715fc04f499f8a8cf52e",
-                       "tar.gz"        => "6aa387761ee6afa1e3be7ee94a1e8c03",
-                       "tar.xz"        => "c51e9115263b4d63ef8f68935cefd7d4",
+                       "tar.bz2"       => "b5a66d238c27cfdc6cdf5e83062e50d9",
+                       "tar.gz"        => "a1ca69f4d44fe83d3bb6f7c459ce512f",
+                       "tar.xz"        => "9ce6efc96d5ab81ef808f8ed6b1f242d",
 );
 $PHP_5_6_SHA256     = array(
-                       "tar.bz2"       => 
"d47aab8083a4284b905777e1b45dd7735adc53be827b29f896684750ac8b6236",
-                       "tar.gz"        => 
"f76b6cc23739d9dabf875aee57d91ae73f15e88ddf78803369b8b4728b19b924",
-                       "tar.xz"        => 
"203a854f0f243cb2810d1c832bc871ff133eccdf1ff69d32846f93bc1bef58a8",
+                       "tar.bz2"       => 
"3b77d3a067b6e9cc7bb282d4d5b0e6eeb0623a828bb0479241e3b030446f2a3c",
+                       "tar.gz"        => 
"3e6cecec615907587a2b35fa8e7f915f038034dc57530734c2b94d381e664a1a",
+                       "tar.xz"        => 
"16eb544498339d1d855292826e2e547ab01a31600141094959073e5e10e93ab5",
 );
 /* PHP 5.5 Release */
 $PHP_5_5_RC =  false; // Current RC version (e.g., '5.6.7RC1') or false
diff --git a/releases/5_6_27.php b/releases/5_6_27.php
new file mode 100644
index 0000000..c70ff4f
--- /dev/null
+++ b/releases/5_6_27.php
@@ -0,0 +1,22 @@
+<?php
+// $Id$
+$_SERVER['BASE_PAGE'] = 'releases/5_6_27.php';
+include_once $_SERVER['DOCUMENT_ROOT'] . '/include/prepend.inc';
+site_header("PHP 5.6.27 Release Announcement");
+?>
+
+     <h1>PHP 5.6.27 Release Announcement</h1>
+
+     <p>The PHP development team announces the immediate availability of PHP
+     5.6.27. This is a security release. Several security bugs were fixed in
+     this release.
+
+     All PHP 5.6 users are encouraged to upgrade to this version.
+     </p>
+
+     <p>For source downloads of PHP 5.6.27 please visit our <a 
href="http://www.php.net/downloads.php";>downloads page</a>,
+     Windows source and binaries can be found on <a 
href="http://windows.php.net/download/";>windows.php.net/download/</a>.
+     The list of changes is recorded in the <a 
href="http://www.php.net/ChangeLog-5.php#5.6.27";>ChangeLog</a>.
+     </p>
+
+<?php site_footer(); ?>
-- 
PHP Webmaster List Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to