aboutsummaryrefslogtreecommitdiffstats
path: root/meta-oe/recipes-devtools/php/php_7.4.9.bb
AgeCommit message (Collapse)Author
2021-04-23php: Upgrade to 7.4.16Mingli Yu
License-Update: License updated (year updated) Fix some security issues such as CVE-2021-21702 and remove two cve patches which already included in the new version. Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>
2021-03-11php: allow php as emptyChangqing Li
Since commit c4ffcaa2[php: split out phpdbg into a separate package], package php is empty, we might met error: nothing provides php needed by php-cli-7.4.9-r0.corei7_64 Signed-off-by: Changqing Li <changqing.li@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
2021-02-25php: split out phpdbg into a separate packageDiego Santa Cruz
Since PHP 7.0 the phpdbg debugger is built by default and gets shipped in the main php package, increasing its size by several MB; split it out into a php-phpdbg package, following Debian naming. Signed-off-by: Diego Santa Cruz <Diego.SantaCruz@spinetix.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
2020-12-15php: CVE-2020-7069Zheng Ruoqin
Security Advisory References https://nvd.nist.gov/vuln/detail/CVE-2020-7069 https://bugs.php.net/patch-display.php?bug_id=79601&patch=openssl_aes_ccm_iv_fix&revision=latest Signed-off-by: Zheng Ruoqin <zhengrq.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
2020-12-15php: CVE-2020-7070Zheng Ruoqin
Security Advisory References https://nvd.nist.gov/vuln/detail/CVE-2020-7070 https://bugs.php.net/patch-display.php?bug=79699&patch=fix-urldecode&revision=1600650364 https://github.com/php/php-src/blob/master/main/php_variables.c Signed-off-by: Zheng Ruoqin <zhengrq.fnst@cn.fujitsu.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
2020-11-23php: remove the failing ${D}/${TMPDIR} codeMax Kellermann
Appending ${TMPDIR} to ${D} doesn't make any sense, because both are absolute paths. And additionally, the code fails: rmdir: failed to remove '/usr/src/oe/tmp-musl/work/core2-64-oe-linux-musl/php/7.1.9-r0/image//usr': Directory not empty Signed-off-by: Max Kellermann <max.kellermann@gmail.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
2020-08-31php: Upgrade 7.4.4 -> 7.4.9Leon Anavi
Upgrade to release 7.4.9: - Fixed: Upgrade apache2handler's php_apache_sapi_get_request_time to return usec - Fixed: BSTR to PHP string conversion not binary safe - Fixed: DCOM does not work with Username, Password parameter - Fixed: serialize() and unserialize() methods can not be called statically - Fixed: Segfault in php_str_replace_common - Fixed: Assertion failure if dumping closure with unresolved static variable - Fixed: Assertion failure when assigning property of string offset by reference - Fixed: HT iterators not removed if empty array is destroyed - Fixed: Changing array during undef index RW error segfaults - Fixed: Use after free if changing array during undef var during array write fetch - Fixed: Use after free if string used in undefined index warning is changed - Fixed: Public non-static property in child should take priority over private static - Fixed: getimagesize function silently truncates after a null byte - Fixed: finfo_file crash (FILEINFO_MIME) - Fixed: ftp_size on large files - Fixed: mb_strimwidth does not trim string - Fixed: Use of freed hash key in the phar_parse_zipfile function - Fixed: ::getStaticProperties() ignores property modifications - Fixed: ::getStaticPropertyValue() throws on protected props - Fixed: Use after free when type duplicated into ReflectionProperty gets resolved - Fixed: Can't copy() large 'data://' with open_basedir - Fixed: dns_check_record() always return true on Alpine - Fixed: array_walk() does not respect property types Signed-off-by: Leon Anavi <leon.anavi@konsulko.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>
generated by cgit 1.2.3-korg (git 2.39.0) at 2024-09-21 13:12:38 +0000