/[smeserver]/rpms/php/sme8/php.spec
ViewVC logotype

Diff of /rpms/php/sme8/php.spec

Parent Directory Parent Directory | Revision Log Revision Log | View Revision Graph Revision Graph | View Patch Patch

Revision 1.10 by slords, Thu Aug 23 02:39:15 2012 UTC Revision 1.17 by vip-ire, Sat Nov 1 13:01:52 2014 UTC
# Line 15  Line 15 
15  # heuristic used by bindir/mysql_config.  # heuristic used by bindir/mysql_config.
16  %define mysql_config %{_libdir}/mysql/mysql_config  %define mysql_config %{_libdir}/mysql/mysql_config
17    
18    %define _default_patch_fuzz 2
19    
20  Summary: PHP scripting language for creating dynamic web sites  Summary: PHP scripting language for creating dynamic web sites
21  Name: php  Name: php
22  Version: 5.3.3  Version: 5.3.3
23  Release: 13%{?dist}.1  Release: 17%{?dist}
24  License: PHP and LGPLv2 and LGPLv2+  License: PHP and LGPLv2 and LGPLv2+
25  Group: Development/Languages  Group: Development/Languages
26  URL: http://www.php.net/  URL: http://www.php.net/
# Line 38  Patch8: php-5.3.3-aconf26x.patch Line 40  Patch8: php-5.3.3-aconf26x.patch
40    
41  # Fixes for extensions  # Fixes for extensions
42  Patch20: php-4.3.11-shutdown.patch  Patch20: php-4.3.11-shutdown.patch
43    Patch21: php-5.3.3-zipmemset.patch
44    Patch22: php-5.3.3-pdo-overflow.patch
45    Patch23: php-5.3.3-pdo-53551.patch
46    Patch24: php-5.3.3-fileinfo.patch
47    Patch25: php-5.3.3-imap.patch
48    Patch26: php-5.3.3-odbc.patch
49    
50  # Functional changes  # Functional changes
51  Patch40: php-5.0.4-dlopen.patch  Patch40: php-5.0.4-dlopen.patch
# Line 49  Patch61: php-5.0.4-tests-wddx.patch Line 57  Patch61: php-5.0.4-tests-wddx.patch
57  Patch62: php-5.3.2-testfail.patch  Patch62: php-5.3.2-testfail.patch
58    
59  # Bug fixes  # Bug fixes
60  Patch100: php-5.3.2-r305570.patch  Patch100: php-5.3.3-extrglob.patch
61  Patch101: php-5.3.3-r305043.patch  Patch101: php-5.3.3-varnegidx.patch
62  Patch102: php-5.3.3-varnegidx.patch  Patch102: php-5.3.3-setdate.patch
63    # 103 not needed (no php-fpm)
64    Patch104: php-5.3.3-zendgc.patch
65    Patch105: php-5.3.3-r305043.patch
66    Patch106: php-5.3.3-copy.patch
67    Patch107: php-5.3.3-errorhandler.patch
68    Patch108: php-5.3.3-bug54268.patch
69    
70  # Fixes for security bugs  # Fixes for security bugs
71  Patch207: php-5.3.2-CVE-2010-3709.patch  Patch200: php-5.3.2-CVE-2010-3709.patch
72  Patch208: php-5.3.2-CVE-2010-3870.patch  Patch201: php-5.3.2-CVE-2010-3870.patch
73  Patch209: php-5.3.2-CVE-2010-4645.patch  Patch202: php-5.3.3-CVE-2010-3710.patch
74  Patch210: php-5.3.3-CVE-2010-3710.patch  Patch203: php-5.3.2-CVE-2010-4645.patch
75  Patch211: php-5.3.3-CVE-2010-4156.patch  Patch204: php-5.3.3-CVE-2010-4156.patch
76  Patch212: php-5.3.3-CVE-2011-0708.patch  Patch205: php-5.3.3-CVE-2011-0708.patch
77  Patch213: php-5.3.3-CVE-2011-1148.patch  Patch206: php-5.3.3-CVE-2011-1148.patch
78  Patch214: php-5.3.3-CVE-2011-1466.patch  Patch207: php-5.3.3-CVE-2011-1466.patch
79  Patch215: php-5.3.3-CVE-2011-1468.patch  Patch208: php-5.3.3-CVE-2011-1468.patch
80  Patch216: php-5.3.3-CVE-2011-1469.patch  Patch209: php-5.3.3-CVE-2011-1469.patch
81  Patch218: php-5.3.3-CVE-2011-1471.patch  # 210 not needed (not affected)
82  Patch219: php-5.3.3-CVE-2011-1938.patch  Patch211: php-5.3.3-CVE-2011-1471.patch
83  Patch220: php-5.3.3-CVE-2011-2202.patch  Patch212: php-5.3.3-CVE-2011-1938.patch
84  Patch221: php-5.3.3-CVE-2011-2483.patch  Patch213: php-5.3.3-CVE-2011-2202.patch
85  Patch222: php-5.3.3-CVE-2011-4885.patch  Patch214: php-5.3.3-CVE-2011-2483.patch
86  Patch223: php-5.3.3-CVE-2011-4566.patch  Patch215: php-5.3.3-CVE-2011-4885.patch
87  Patch224: php-5.3.3-CVE-2012-0830.patch  Patch216: php-5.3.3-CVE-2011-4566.patch
88  Patch225: php-5.3.3-CVE-2012-1823.patch  Patch217: php-5.3.3-CVE-2012-0830.patch
89  Patch226: php-5.3.3-CVE-2012-2336.patch  Patch218: php-5.3.3-CVE-2012-1823.patch
90  Patch230: php-5.3.3-CVE-2011-4153.patch  Patch219: php-5.3.3-CVE-2012-2336.patch
91  Patch232: php-5.3.3-CVE-2012-1172.patch  Patch220: php-5.3.3-CVE-2011-4153.patch
92  Patch233: php-5.3.3-CVE-2012-2143.patch  # 221 not needed (no php-tidy)
93  Patch234: php-5.3.3-CVE-2012-2386.patch  Patch222: php-5.3.3-CVE-2012-1172.patch
94  Patch235: php-5.3.3-CVE-2012-0057.patch  Patch223: php-5.3.3-CVE-2012-2143.patch
95  Patch236: php-5.3.3-CVE-2012-0789.patch  Patch224: php-5.3.3-CVE-2012-2386.patch
96  Patch237: php-5.3.3-CVE-2010-2950.patch  Patch225: php-5.3.3-CVE-2012-0057.patch
97    Patch226: php-5.3.3-CVE-2012-0789.patch
98    Patch227: php-5.3.3-CVE-2010-2950.patch
99    Patch228: php-5.3.3-CVE-2012-2688.patch
100    Patch229: php-5.3.3-CVE-2012-0831.patch
101    Patch230: php-5.3.3-CVE-2011-1398.patch
102    Patch231: php-5.3.3-CVE-2013-1643.patch
103    Patch232: php-5.3.3-CVE-2006-7243.patch
104    Patch233: php-5.3.3-CVE-2013-4113.patch
105    Patch234: php-5.3.3-CVE-2013-4248.patch
106    Patch235: php-5.3.3-CVE-2013-6420.patch
107    Patch236: php-5.3.3-CVE-2014-0237.patch
108    Patch237: php-5.3.3-CVE-2014-0238.patch
109    Patch238: php-5.3.3-CVE-2014-2270.patch
110    Patch239: php-5.3.3-CVE-2014-1943.patch
111    Patch240: php-5.3.3-CVE-2014-3479.patch
112    Patch241: php-5.3.3-CVE-2012-1571.patch
113    Patch242: php-5.3.3-CVE-2014-3480.patch
114    Patch243: php-5.3.3-CVE-2014-4721.patch
115    Patch244: php-5.3.3-CVE-2013-6712.patch
116    Patch245: php-5.3.3-CVE-2014-4049.patch
117    Patch246: php-5.3.3-CVE-2014-3515.patch
118    Patch247: php-5.3.3-CVE-2014-2497.patch
119    Patch248: php-5.3.3-CVE-2014-3587.patch
120    Patch249: php-5.3.3-CVE-2014-3597.patch
121    Patch250: php-5.3.3-CVE-2014-4698.patch
122    Patch251: php-5.3.3-CVE-2014-4670.patch
123    Patch252: php-5.3.3-CVE-2014-3668.patch
124    Patch253: php-5.3.3-CVE-2014-3669.patch
125    Patch254: php-5.3.3-CVE-2014-3670.patch
126    Patch255: php-5.3.3-CVE-2014-3710.patch
127    
128  BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)  BuildRoot: %{_tmppath}/%{name}-%{version}-%{release}-root-%(%{__id_u} -n)
129    
# Line 124  Group: Development/Languages Line 168  Group: Development/Languages
168  Summary: Common files for PHP  Summary: Common files for PHP
169  Provides: php-api = %{apiver}, php-zend-abi = %{zendver}  Provides: php-api = %{apiver}, php-zend-abi = %{zendver}
170  Provides: php(api) = %{apiver}, php(zend-abi) = %{zendver}  Provides: php(api) = %{apiver}, php(zend-abi) = %{zendver}
171    Provides: php(language) = %{version}
172  # Provides for all builtin modules:  # Provides for all builtin modules:
173  Provides: php-bz2, php-calendar, php-ctype, php-curl, php-date, php-exif  Provides: php-bz2, php-calendar, php-ctype, php-curl, php-date, php-exif
174  Provides: php-ftp, php-gettext, php-gmp, php-hash, php-iconv, php-libxml  Provides: php-ftp, php-gettext, php-gmp, php-hash, php-iconv, php-libxml
175  Provides: php-reflection, php-session, php-shmop, php-simplexml, php-sockets  Provides: php-reflection, php-session, php-shmop, php-simplexml, php-sockets
176  Provides: php-spl, php-tokenizer, php-openssl, php-pcre  Provides: php-spl, php-tokenizer, php-openssl, php-pcre
177  Provides: php-zlib, php-json, php-zip, php-fileinfo  Provides: php-zlib, php-json, php-zip, php-fileinfo
178    Provides: php-core, php-ereg, php-filter, php-phar, php-standard
179  Provides: php53-common = %{version}-%{release}, config(php53-common) = %{version}-%{release}  Provides: php53-common = %{version}-%{release}, config(php53-common) = %{version}-%{release}
180    Obsoletes: php-pecl-json, php-pecl-zip, php-pecl-phar, php-pecl-Fileinfo
181  Obsoletes: php-openssl, php-json  Obsoletes: php-openssl, php-json
182  # For obsoleted pecl extension  # For obsoleted pecl extension
183  Provides: php-pecl-json = %{jsonver}, php-pecl(json) = %{jsonver}  Provides: php-pecl-json = %{jsonver}, php-pecl(json) = %{jsonver}
# Line 377  support for using the ICU library to PHP Line 424  support for using the ICU library to PHP
424  %patch8 -p1 -b .aconf26x  %patch8 -p1 -b .aconf26x
425    
426  %patch20 -p1 -b .shutdown  %patch20 -p1 -b .shutdown
427    %patch21 -p1 -b .zipmemset
428    %patch22 -p1 -b .pdooverflow
429    %patch23 -p1 -b .pdo53551
430    %patch24 -p1 -b .streams
431    %patch25 -p1 -b .imapauth
432    %patch26 -p1 -b .pdoodbc
433    
434  %patch40 -p1 -b .dlopen  %patch40 -p1 -b .dlopen
435  %patch41 -p1 -b .easter  %patch41 -p1 -b .easter
# Line 385  support for using the ICU library to PHP Line 438  support for using the ICU library to PHP
438  %patch61 -p1 -b .tests-wddx  %patch61 -p1 -b .tests-wddx
439  %patch62 -p1 -b .testfail  %patch62 -p1 -b .testfail
440    
441  %patch100 -p1 -b .r305570  %patch100 -p1 -b .extrglob
442  %patch101 -p1 -b .r305043  %patch101 -p1 -b .varnegidx
443  %patch102 -p1 -b .varnegidx  %patch102 -p1 -b .setdate
444    
445  %patch207 -p1 -b .cve3709  %patch104 -p1 -b .zendgc
446  %patch208 -p1 -b .cve3870  %patch105 -p1 -b .r305043
447  %patch209 -p1 -b .cve4645  %patch106 -p1 -b .copy
448  %patch210 -p1 -b .cve3710  %patch107 -p1 -b .errorhandler
449  %patch211 -p1 -b .cve4156  %patch108 -p1 -b .bug54268
450  %patch212 -p1 -b .cve0708  
451  %patch213 -p1 -b .cve1148  %patch200 -p1 -b .cve3709
452  %patch214 -p1 -b .cve1466  %patch201 -p1 -b .cve3870
453  %patch215 -p1 -b .cve1468  %patch202 -p1 -b .cve4645
454  %patch216 -p1 -b .cve1469  %patch203 -p1 -b .cve3710
455  %patch218 -p1 -b .cve1471  %patch204 -p1 -b .cve4156
456  %patch219 -p1 -b .cve1938  %patch205 -p1 -b .cve0708
457  %patch220 -p1 -b .cve2202  %patch206 -p1 -b .cve1148
458  %patch221 -p1 -b .cve2483  %patch207 -p1 -b .cve1466
459  %patch222 -p1 -b .cve4885  %patch208 -p1 -b .cve1468
460  %patch223 -p1 -b .cve4566  %patch209 -p1 -b .cve1469
461  %patch224 -p1 -b .cve0830  %patch211 -p1 -b .cve1471
462  %patch225 -p1 -b .cve1823  %patch212 -p1 -b .cve1938
463  %patch226 -p1 -b .cve2336  %patch213 -p1 -b .cve2202
464    %patch214 -p1 -b .cve2483
465  %patch230 -p1 -b .cve4153  %patch215 -p1 -b .cve4885
466  %patch232 -p1 -b .cve1172  %patch216 -p1 -b .cve4566
467  %patch233 -p1 -b .cve2143  %patch217 -p1 -b .cve0830
468  %patch234 -p1 -b .cve2386  %patch218 -p1 -b .cve1823
469  %patch235 -p1 -b .cve0057  %patch219 -p1 -b .cve2336
470  %patch236 -p1 -b .cve0789  
471  %patch237 -p1 -b .cve2950  %patch220 -p1 -b .cve4153
472    %patch222 -p1 -b .cve1172
473    %patch223 -p1 -b .cve2143
474    %patch224 -p1 -b .cve2386
475    %patch225 -p1 -b .cve0057
476    %patch226 -p1 -b .cve0789
477    %patch227 -p1 -b .cve2950
478    %patch228 -p1 -b .cve2688
479    %patch229 -p1 -b .cve0831
480    %patch230 -p1 -b .cve1398
481    %patch231 -p1 -b .cve1643
482    %patch232 -p1 -b .cve7243
483    %patch233 -p1 -b .cve4113
484    %patch234 -p1 -b .cve4248
485    %patch235 -p1 -b .cve6420
486    %patch236 -p1 -b .cve0237
487    %patch237 -p1 -b .cve0238
488    %patch238 -p1 -b .cve2270
489    %patch239 -p1 -b .cve1943
490    %patch240 -p1 -b .cve3479
491    %patch241 -p1 -b .cve1571
492    %patch242 -p1 -b .cve3480
493    %patch243 -p1 -b .cve4721
494    %patch244 -p1 -b .cve6712
495    %patch245 -p1 -b .cve4049
496    %patch246 -p1 -b .cve3515
497    %patch247 -p1 -b .cve2497
498    %patch248 -p1 -b .cve3587
499    %patch249 -p1 -b .cve3597
500    %patch250 -p1 -b .cve4698
501    %patch251 -p1 -b .cve4670
502    %patch252 -p1 -b .cve3668
503    %patch253 -p1 -b .cve3669
504    %patch254 -p1 -b .cve3670
505    %patch255 -p1 -b .cve3710
506    
507  # Prevent %%doc confusion over LICENSE files  # Prevent %%doc confusion over LICENSE files
508  cp -p Zend/LICENSE Zend/ZEND_LICENSE  cp -p Zend/LICENSE Zend/ZEND_LICENSE
# Line 491  fi Line 578  fi
578    
579  # Fix some bogus permissions  # Fix some bogus permissions
580  find . -name \*.[ch] -exec chmod 644 {} \;  find . -name \*.[ch] -exec chmod 644 {} \;
581    find . -name \*.cpp  -exec chmod 644 {} \;
582  chmod 644 README.*  chmod 644 README.*
583    
584  %build  %build
# Line 712  cat files.json files.zip files.curl file Line 800  cat files.json files.zip files.curl file
800  install -d $RPM_BUILD_ROOT%{_sysconfdir}/rpm  install -d $RPM_BUILD_ROOT%{_sysconfdir}/rpm
801  # %{SOURCE3} used here ->  # %{SOURCE3} used here ->
802  sed -e "s/@PHP_APIVER@/%{apiver}/;s/@PHP_ZENDVER@/%{zendver}/;s/@PHP_PDOVER@/%{pdover}/" \  sed -e "s/@PHP_APIVER@/%{apiver}/;s/@PHP_ZENDVER@/%{zendver}/;s/@PHP_PDOVER@/%{pdover}/" \
803        -e "s/@PHP_VERSION@/%{version}/" \
804      < $RPM_SOURCE_DIR/macros.php > macros.php      < $RPM_SOURCE_DIR/macros.php > macros.php
805  install -m 644 -c macros.php \  install -m 644 -c macros.php \
806             $RPM_BUILD_ROOT%{_sysconfdir}/rpm/macros.php             $RPM_BUILD_ROOT%{_sysconfdir}/rpm/macros.php
# Line 793  rm files.* macros.php Line 882  rm files.* macros.php
882  %files process -f files.process  %files process -f files.process
883    
884  %changelog  %changelog
885  * Wed Aug 22 2012 Shad L. Lords <slords@mail.com> - 5.3.3-13.sme.1  * Sat Nov 1 2014 Daniel Berteaud <daniel@firewall-services.com> - 5.3.3-17.sme
886  - Add php53-* provides to provide compatibility  - Resync with upstream php53, which include (see [SME: 8633])
887    - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710
888    - xmlrpc: fix out-of-bounds read flaw in mkgmtime() CVE-2014-3668
889    - core: fix integer overflow in unserialize() CVE-2014-3669
890    - exif: fix heap corruption issue in exif_thumbnail() CVE-2014-3670
891    
892    * Sat Oct 18 2014 Daniel Berteaud <daniel@firewall-services.com> - 5.3.3-16.sme
893    - Resync with upstream php53, which include (see [SME: 8574])
894    - spl: fix use-after-free in ArrayIterator due to object
895      change during sorting. CVE-2014-4698
896    - spl: fix use-after-free in SPL Iterators. CVE-2014-4670
897    - gd: fix NULL pointer dereference in gdImageCreateFromXpm.
898      CVE-2014-2497
899    - fileinfo: fix incomplete fix for CVE-2012-1571 in
900      cdf_read_property_info. CVE-2014-3587
901    - core: fix incomplete fix for CVE-2014-4049 DNS TXT
902      record parsing. CVE-2014-3597
903    
904    * Thu Aug 7 2014 Daniel Berteaud <daniel@firewall-services.com> - 5.3.3-15.sme
905    - Resync with upstream php53, which include (see [SME: 8515])
906    - core: type confusion issue in phpinfo(). CVE-2014-4721
907    - date: fix heap-based buffer over-read in DateInterval. CVE-2013-6712
908    - core: fix heap-based buffer overflow in DNS TXT record parsing.
909      CVE-2014-4049
910    - core: unserialize() SPL ArrayObject / SPLObjectStorage type
911      confusion flaw. CVE-2014-3515
912    - fileinfo: out-of-bounds memory access in fileinfo. CVE-2014-2270
913    - fileinfo: unrestricted recursion in handling of indirect type
914      rules. CVE-2014-1943
915    - fileinfo: out of bounds read in CDF parser. CVE-2012-1571
916    - fileinfo: cdf_check_stream_offset boundary check. CVE-2014-3479
917    - fileinfo: cdf_count_chain insufficient boundary check. CVE-2014-3480
918    - fileinfo: cdf_unpack_summary_info() excessive looping
919      DoS. CVE-2014-0237
920    - fileinfo: CDF property info parsing nelements infinite
921      loop. CVE-2014-0238
922    
923    * Mon Dec 16 2013 Daniel Berteaud <daniel@firewall-services.com> - 5.3.3-14.sme
924    - Resync with upstream php53, which include (see [SME: 8064])
925    - add security fix for CVE-2013-6420
926    - add security fix for CVE-2013-4248
927    - add upstream reproducer for error_handler (#951075)
928    - add security fixes for CVE-2006-7243
929    - add security fixes for CVE-2012-2688, CVE-2012-0831,
930      CVE-2011-1398, CVE-2013-1643
931    - fix segfault in error_handler with
932      allow_call_time_pass_reference = Off (#951075)
933    - fix double free when destroy_zend_class fails (#951076)
934    - fix possible buffer overflow in pdo_odbc (#869694)
935    - php script hangs when it exceeds max_execution_time
936      when inside an ODBC call (#864954)
937    - fix zend garbage collector (#892695)
938    - fix transposed memset arguments in libzip (#953818)
939    - fix possible segfault in pdo_mysql (#869693)
940    - fix imap_open DISABLE_AUTHENTICATOR param ignores array (#859369)
941    - fix stream support in fileinfo (#869697)
942    - fix setDate when DateTime created from timestamp (#869691)
943    - fix permission on source files (#869688)
944    - add php(language) and missing provides (#837044)
945    - fix copy doesn't report failure on partial copy (#951413)
946    
947  * Fri Jun 29 2012 Shad L. Lords <slords@mail.com> - 5.3.3-13.sme  * Mon Jul 15 2013 Shad L. Lords <slords@mail.com> - 5.3.3-13.sme.2
948    - Add php53-* provides to provide compatibility
949  - Obsolete php-domxml and php-dom [SME: 6733]  - Obsolete php-domxml and php-dom [SME: 6733]
950  - Update Obsoletes and Conflicts [SME: 6436]  - Update Obsoletes and Conflicts [SME: 6436]
951    
952    * Fri Jul 12 2013 Remi Collet <rcollet@redhat.com> - 5.3.3-13.1
953    - add security fix for CVE-2013-4113
954    
955  * Mon Jun 25 2012 Joe Orton <jorton@redhat.com> - 5.3.3-13  * Mon Jun 25 2012 Joe Orton <jorton@redhat.com> - 5.3.3-13
956  - add security fix for CVE-2010-2950  - add security fix for CVE-2010-2950
957    


Legend:
Removed lines/characters  
Changed lines/characters
  Added lines/characters

admin@koozali.org
ViewVC Help
Powered by ViewVC 1.2.1 RSS 2.0 feed