Bug 213589 - lang/php56 lang/php70: Update to latest versions (5.6.27, 7.0.12) - Fixes Security Vulnerabilities
Summary: lang/php56 lang/php70: Update to latest versions (5.6.27, 7.0.12) - Fixes Sec...
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Many People
Assignee: Torsten Zuehlsdorff
URL:
Keywords: needs-patch, needs-qa, security
: 213664 (view as bug list)
Depends on:
Blocks:
 
Reported: 2016-10-18 09:46 UTC by Fabiano Sidler
Modified: 2016-10-21 14:38 UTC (History)
6 users (show)

See Also:
bugzilla: maintainer-feedback? (ale)
koobs: maintainer-feedback? (ports-secteam)
koobs: merge-quarterly?

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Fabiano Sidler 2016-10-18 09:46:23 UTC 
There have been security fixes:
http://php.net/ChangeLog-5.php#5.6.27
http://php.net/ChangeLog-7.php#7.0.12

Pleas also MFH (MT2016Q4). Thank you in advance.
Comment 1 Torsten Zuehlsdorff freebsd_committer freebsd_triage 2016-10-18 09:54:18 UTC 
I'm currently testing the php7 update.
Comment 2 Torsten Zuehlsdorff freebsd_committer freebsd_triage 2016-10-19 13:38:30 UTC 
The PHP 7 update was committed in r424244.

MFH was also requested, but is not granted yet.
Comment 3 Mark Felder freebsd_committer freebsd_triage 2016-10-20 17:27:31 UTC 
MFH was committed in https://svnweb.freebsd.org/changeset/ports/424256
Comment 4 Fabiano Sidler 2016-10-21 08:15:15 UTC 
And 5.6.27?
Comment 5 Kubilay Kocak freebsd_committer freebsd_triage 2016-10-21 08:41:35 UTC 
This is where two separate issues (would have been) useful, thank you for re-opening Fabiano.

Pending commit/merge of php56 (5.6.27) update.
Comment 6 Kubilay Kocak freebsd_committer freebsd_triage 2016-10-21 08:42:20 UTC 
Please don't forget to include PR: references in the commit log messages so they can be referenced here
Comment 7 Kubilay Kocak freebsd_committer freebsd_triage 2016-10-21 08:48:57 UTC 
*** Bug 213664 has been marked as a duplicate of this bug. ***
Comment 8 Kubilay Kocak freebsd_committer freebsd_triage 2016-10-21 09:11:39 UTC 
ale@ committed the 5.6.27 update in r424397 [1]

Pending merge to quarterly

[1] https://svnweb.freebsd.org/changeset/ports/424397
Comment 9 commit-hook freebsd_committer freebsd_triage 2016-10-21 14:37:55 UTC 
A commit references this bug:

Author: feld
Date: Fri Oct 21 14:37:51 UTC 2016
New revision: 424421
URL: https://svnweb.freebsd.org/changeset/ports/424421

Log:
  MFH: r424397

  Update to 5.6.27 release.

  PR:		213589
  Security:	8d5180a6-86fe-11e6-8d93-00248c0c745d
  Approved by:	ports-secteam (with hat)

Changes:
_U  branches/2016Q4/
  branches/2016Q4/graphics/php56-gd/Makefile
  branches/2016Q4/graphics/php56-gd/files/patch-libgd_gd_webp.c
  branches/2016Q4/lang/php56/Makefile
  branches/2016Q4/lang/php56/distinfo