CVSROOT: /cvs
Module name: ports
Changes by: [email protected] 2009/07/18 20:11:36
Modified files:
www/php5 : Tag: OPENBSD_4_5 Makefile.inc distinfo
www/php5/core : Tag: OPENBSD_4_5 Makefile
www/php5/core/pkg: Tag: OPENBSD_4_5 PLIST-main
www/php5/patches: Tag: OPENBSD_4_5 patch-aclocal_m4
Added files:
www/php5/core/patches: Tag: OPENBSD_4_5
patch-sapi_apache_mod_php5_c
patch-sapi_cgi_main_c
patch-sapi_cli_php_cli_c
Removed files:
www/php5/core/patches: Tag: OPENBSD_4_5
patch-ext_date_lib_parse_date_c
patch-ext_date_lib_parse_date_re
patch-ext_date_lib_timelib_h
patch-ext_date_php_date_c
Log message:
MFC:
SECURITY FIX
php5-5.2.10
Resolves:
- bug #48378 (exif_read_data() segfaults on certain corrupted .jpeg files)
- in imagerotate(), background colour isn't validated correctly with a
non-truecolour image (CVE-2008-5498)
- crash on extract in zip when files or directories entry names contain a
relative path
- explode() behavior with empty string to respect negative limit
- segfault when malformed string is passed to json_decode()
- bug in xml_error_string() which resulted in messages being off by one
ok robert@
