--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-16445
2012-10-18 22:03:17
--------------------------------------------------------------------------------
Name : php
Product : Fedora 17
Version : 5.4.8
Release : 1.fc17
URL :
http://www.php.net/
Summary : PHP scripting language for creating dynamic web sites
Description :
PHP is an HTML-embedded scripting language. PHP attempts to make it
easy for developers to write dynamically generated web pages. PHP also
offers built-in database integration for several commercial and
non-commercial database management systems, so writing a
database-enabled webpage with PHP is fairly simple. The most common
use of PHP coding is probably as a replacement for CGI scripts.
The php package contains the module which adds support for the PHP
language to Apache HTTP Server.
--------------------------------------------------------------------------------
Update Information:
RPM changelog:
* update to 5.4.8
* define both session.save_handler and session.save_path (
www.conf)
* fix possible segfault in libxml (#828526)
* php-fpm: create apache user if needed
* use SKIP_ONLINE_TEST during make test
* php-devel requires pcre-devel and php-cli (instead of php)
Upstream Changelog:
CLI server:
* Changed response to unknown HTTP method to 501 according to RFC. (Niklas Lindgren).
* Support HTTP PATCH method. Patch by Niklas Lindgren, GitHub PR #190. (Lars)
Core:
* Added optional second argument for assert() to specify custom message. Patch by Lonny
Kapelushnik (lonny(a)lonnylot.com). (Lars)
* Support building PHP with the native client toolchain. (Stuart Langley)
* Added --offline option for tests. (Remi)
* Fixed bug #63162 (parse_url does not match password component). (husman)
* Fixed bug #63111 (is_callable() lies for abstract static method). (Dmitry)
* Fixed bug #63093 (Segfault while load extension failed in zts-build). (Laruence)
* Fixed bug #62976 (Notice: could not be converted to int when comparing some builtin
classes). (Laruence)
* Fixed bug #62955 (Only one directive is loaded from "Per Directory Values"
Windows registry). (aserbulov at parallels dot com)
* Fixed bug #62907 (Double free when use traits). (Dmitry)
* Fixed bug #61767 (Shutdown functions not called in certain error situation). (Dmitry)
* Fixed bug #60909 (custom error handler throwing Exception + fatal error = no shutdown
function). (Dmitry)
* Fixed bug #60723 (error_log error time has changed to UTC ignoring default timezone).
(Laruence)
cURL:
* Fixed bug #62085 (file_get_contents a remote file by Curl wrapper will cause cpu
Soaring). (Pierrick)
Date:
* Fixed bug #62896 ("DateTime->modify('+0 days')" modifies DateTime
object) (Lonny Kapelushnik)
* Fixed bug #62561 (DateTime add 'P1D' adds 25 hours). (Lonny Kapelushnik)
DOM:
* Fixed bug #63015 (Incorrect arginfo for DOMErrorHandler). (Rob)
FPM:
* Fixed bug #62954 (startup problems fpm / php-fpm). (fat)
* Fixed bug #62886 (PHP-FPM may segfault/hang on startup). (fat)
* Fixed bug #63085 (Systemd integration and daemonize). (remi, fat)
* Fixed bug #62947 (Unneccesary warnings on FPM). (fat)
* Fixed bug #62887 (Only /status?plain&full gives "last request cpu").
(fat)
* Fixed bug #62216 (Add PID to php-fpm init.d script). (fat)
OpenSSL:
* Implemented FR #61421 (OpenSSL signature verification missing RMD160, SHA224, SHA256,
SHA384, SHA512). (Mark Jones)
SOAP
* Fixed bug #50997 (SOAP Error when trying to submit 2nd Element of a choice). (Dmitry)
SPL:
* Bug #62987 (Assigning to ArrayObject[null][something] overrides all undefined
variables). (Laruence)
mbstring:
* Allow passing null as a default value to mb_substr() and mb_strcut(). Patch by Alexander
Moskaliov via GitHub PR #133. (Lars)
Filter extension:
* Bug #49510: Boolean validation fails with FILTER_NULL_ON_FAILURE with empty string or
false. (Lars)
Sockets
* Fixed bug #63000 (MCAST_JOIN_GROUP on OSX is broken, merge of PR 185 by Igor Wiedler).
(Lars)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 18 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.8-1
- update to 5.4.8
- define both session.save_handler and session.save_path
- fix possible segfault in libxml (#828526)
- php-fpm: create apache user if needed
- use SKIP_ONLINE_TEST during make test
- php-devel requires pcre-devel and php-cli (instead of php)
* Fri Oct 5 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.7-11
- provides php-phar
- update systzdata patch to v10, timezone are case insensitive
* Mon Oct 1 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.7-10
- fix typo in systemd macro
* Mon Oct 1 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.7-9
- php-fpm: new systemd macros (#850268)
- php-fpm: add upstream patch for startup issue (#846858)
* Fri Sep 28 2012 Remi Collet <rcollet(a)redhat.com> 5.4.7-8
- systemd integration,
https://bugs.php.net/63085
- no odbc call during timeout,
https://bugs.php.net/63171
- check sqlite3_column_table_name,
https://bugs.php.net/63149
* Mon Sep 24 2012 Remi Collet <rcollet(a)redhat.com> 5.4.7-7
- most failed tests explained (i386, x86_64)
* Wed Sep 19 2012 Remi Collet <rcollet(a)redhat.com> 5.4.7-6
- fix for
http://bugs.php.net/63126 (#783967)
* Wed Sep 19 2012 Remi Collet <rcollet(a)redhat.com> 5.4.7-5
- patch to ensure we use latest libdb (not libdb4)
* Wed Sep 19 2012 Remi Collet <rcollet(a)redhat.com> 5.4.7-4
- really fix rhel tests (use libzip and libdb)
* Tue Sep 18 2012 Remi Collet <rcollet(a)redhat.com> 5.4.7-3
- fix test to enable zip extension on RHEL-7
* Fri Sep 14 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.7-1
- update to 5.4.7
http://www.php.net/releases/5_4_7.php
* Mon Aug 20 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.6-2
- enable php-fpm on secondary arch (#849490)
* Fri Aug 17 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.6-1
- update to 5.4.6
- update to v9 of systzdata patch
- backport fix for new libxml
* Fri Jul 20 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.5-1
- update to 5.4.5
* Mon Jul 2 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.4-4
- also provide php(language)%{_isa}
- define %{php_version}
* Mon Jul 2 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.4-3
- drop BR for libevent (#835671)
- provide php(language) to allow version check
* Thu Jun 21 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.4-2
- add missing provides (core, ereg, filter, standard)
* Thu Jun 14 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.4-1
- update to 5.4.4 (CVE-2012-2143, CVE-2012-2386)
- use /usr/lib/tmpfiles.d instead of /etc/tmpfiles.d
- use /run/php-fpm instead of /var/run/php-fpm
* Wed May 9 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.3-1
- update to 5.4.3 (CVE-2012-2311, CVE-2012-2329)
* Thu May 3 2012 Remi Collet <remi(a)fedoraproject.org> 5.4.2-1
- update to 5.4.2 (CVE-2012-1823)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #828526 - php-cli: php-fcgi segfault running tt-rss backend.php
https://bugzilla.redhat.com/show_bug.cgi?id=828526
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update php' at the command line.
For more information, refer to "Managing Software with yum",
available at
http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------