php8-test-8.0.30-150400.4.49.1<>,gO;p9|8ae0}(g#čtc ㅖ:FmJWNi4~w%N+G:o$Sv/Q)ŋ= ,Eκ Ng[Fc:@R-vⴕZd[=aIUz;GODRX{hži )WNTTQQvrQA橘Q5z>W =< 1 <87GIovHA,燸Ej>;ۜ?یd  ! Vtx  ( , 0 8 z |c(89l:FGHIXY\(]0^Jbنc/dڳeڸfڻlڽuvz*<@FۈCphp8-test8.0.30150400.4.49.1Interpreter for the PHP scripting language version 8Run php upstream testsuite.gO;h01-ch3c4SUSE Linux Enterprise 15SUSE LLC PHP-3.01https://www.suse.com/Development/Libraries/PHPhttps://secure.php.netlinuxx86_644A큤gO;gO'ba07db4c642a24bbef2f7b590abe56130152e8eca956a8009a0458947b2c6659rootrootrootrootphp8-test-8.0.30-150400.4.49.1.src.rpmphp8-testphp8-test(x86-64)    php-clirpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)8.0.303.0.4-14.6.0-14.0-15.2-14.14.3gDfg @fh<@f"\dd@dadcccc_c:c)@b@ba@blb2@bu b@a'@a @a@`ݮ@``@``u`Gc@`@`@``@` `x@``__=_I@_I@__@_T__@_k__ܙ_@_$_Í@_@_G@_@_ _@_}_u_V _P_+____@^^2^@^^^>@^^^t@^p^j$@^M#@^AE^)]]]@]߶]@]ʞ]]4@]@]]ja@]Ew@]@\\t@\\\O\\\Y@\~d\w@\w@\s\d\\\R@\Q\Q\P@@\G\G\G\replaceChild on doctype causes double free). FPM: Fixed bug GH-8885 (FPM access.log with stderr begins to write logs to error_log after daemon reload). Fixed bug #77780 ("Headers already sent..." when previous connection was aborted). GMP: Fixed bug GH-9308 (GMP throws the wrong error when a GMP object is passed to gmp_init()). Intl: Fixed bug GH-9421 (Incorrect argument number for ValueError in NumberFormatter). PCRE: Fixed pcre.jit on Apple Silicon. PDO_PGSQL: Fixed bug GH-9411 (PgSQL large object resource is incorrectly closed). Reflection: Fixed bug GH-8932 (ReflectionFunction provides no way to get the called class of a Closure). Streams: Fixed bug GH-9316 ($http_response_header is wrong for long status line). - fixes [bsc#1203867] and [bsc#1203870]- version update to 8.0.23 [jsc#SLE-23639] Version 8.0.23 01 Sep 2022 Core: Fixed incorrect double to long casting in latest clang. DBA: Fixed LMDB driver memory leak on DB creation failure. Fixed bug GH-9155 (dba_open("non-existing", "c-", "flatfile") segfaults). Intl: Fixed IntlDateFormatter::formatObject() parameter type. OPcache: Fixed bug GH-9033 (Loading blacklist file can fail due to negative length). PDO_SQLite: Fixed bug GH-9032 (SQLite3 authorizer crashes on NULL values). SQLite3: Fixed bug GH-9032 (SQLite3 authorizer crashes on NULL values). Standard: Fixed bug GH-9017 (php_stream_sock_open_from_socket could return NULL). Streams: Fixed bug GH-8472 (The resource returned by stream_socket_accept may have incorrect metadata). Fixed bug GH-8409 (SSL handshake timeout leaves persistent connections hanging). Version 8.0.22 04 Aug 2022 CLI: Fixed potential overflow for the builtin server via the PHP_CLI_SERVER_WORKERS environment variable. Core: Fixed bug GH-8923 (error_log on Windows can hold the file write lock). Fixed bug GH-8995 (WeakMap object reference offset causing TypeError). Date: Fixed bug #80047 (DatePeriod doesn't warn with custom DateTimeImmutable). DBA: Fixed LMDB driver hanging when attempting to delete a non-existing key. FPM: Fixed zlog message prepend, free on incorrect address. Fixed possible double free on configuration loading failure. GD: Fixed bug GH-8848 (imagecopyresized() error refers to the wrong argument). Intl: Fixed build for ICU 69.x and onwards. OPcache: Fixed bug GH-8847 (PHP hanging infinitly at 100% cpu when check php syntaxe of a valid file). Standard: Fixed the crypt_sha256/512 api build with clang > 12. Uses CCRandomGenerateBytes instead of arc4random_buf on macOs. Version 8.0.21 07 Jul 2022 Core: Fixed potential use after free in php_binary_init(). CLI: Fixed GH-8827 (Intentionally closing std handles no longer possible). COM: Fixed bug GH-8778 (Integer arithmethic with large number variants fails). Curl: Fixed CURLOPT_TLSAUTH_TYPE is not treated as a string option. Date: Fixed bug #74671 (DST timezone abbreviation has incorrect offset). Fixed bug #77243 (Weekdays are calculated incorrectly for negative years). Fixed bug #78139 (timezone_open accepts invalid timezone string argument). FPM: Fixed bug #67764 (fpm: syslog.ident don't work). MBString: Fixed bug GH-8685 (pcre not ready at mbstring startup). ODBC: Fixed handling of single-key connection strings. OpenSSL: Fixed bug #50293 (Several openssl functions ignore the VCWD). Fixed bug #81713 (NULL byte injection in several OpenSSL functions working with certificates). PDO_ODBC: Fixed errorInfo() result on successful PDOStatement->execute(). Fixed handling of single-key connection strings. Zip: Fixed bug GH-8781 (ZipArchive::close deletes zip file without updating stat cache). Version 8.0.20 09 Jun 2022 CLI: Fixed bug GH-8575 (CLI closes standard streams too early). Core: Fixed Haiku ZTS builds. Date: Fixed bug GH-8471 (Segmentation fault when converting immutable and mutable DateTime instances created using reflection). FPM: Fixed ACL build check on MacOS. Fixed bug #72185: php-fpm writes empty fcgi record causing nginx 502. Mysqlnd: Fixed bug #81719: mysqlnd/pdo password buffer overflow. (CVE-2022-31626) OPcache: Fixed bug GH-8466 (ini_get() is optimized out when the option does not exist). Pcntl: Fixed Haiku build. Pgsql: Fixed bug #81720: Uninitialized array in pg_query_params(). (CVE-2022-31625) Soap: Fixed bug GH-8578 (Error on wrong parameter on SoapHeader constructor). Fixed bug GH-8538 (SoapClient may strip parts of nmtokens). SPL: Fixed bug GH-8235 (iterator_count() may run indefinitely). Zip: Fixed type for index in ZipArchive::replaceFile. Version 8.0.19 12 May 2022 Core: Fixed bug GH-8289 (Exceptions thrown within a yielded from iterator are not rethrown into the generator). Date: Fixed bug GH-7979 (DatePeriod iterator advances when checking if valid). FFI: Fixed bug GH-8433 (Assigning function pointers to structs in FFI leaks). FPM: Fixed bug #76003 (FPM /status reports wrong number of active processe). Fixed bug #77023 (FPM cannot shutdown processes). Fixed comment in kqueue remove callback log message. Iconv: Fixed bug GH-8218 (ob_end_clean does not reset Content-Encoding header). Intl: Fixed bug GH-8364 (msgfmt_format $values may not support references). MySQLi: Fixed bug GH-8267 (MySQLi uses unsupported format specifier on Windows). SPL: Fixed bug GH-8366 (ArrayIterator may leak when calling __construct()). Fixed bug GH-8273 (SplFileObject: key() returns wrong value). Streams: Fixed php://temp does not preserve file-position when switched to temporary file. zlib: Fixed bug GH-8218 (ob_end_clean does not reset Content-Encoding header). Version 8.0.18 14 Apr 2022 Core: Fixed freeing of internal attribute arguments. Fixed bug GH-8070 (memory leak of internal function attribute hash). Fixed bug GH-8160 (ZTS support on Alpine is broken). Filter: Fixed signedness confusion in php_filter_validate_domain(). Intl: Fixed bug GH-8142 (Compilation error on cygwin). MBString: Fixed bug GH-8208 (mb_encode_mimeheader: $indent functionality broken). MySQLi: Fixed bug GH-8068 (mysqli_fetch_object creates inaccessible properties). Pcntl: Fixed bug GH-8142 (Compilation error on cygwin). PgSQL: Fixed result_type related stack corruption on LLP64 architectures. Fixed bug GH-8253 (pg_insert() fails for references). Sockets: Fixed Solaris builds. SPL: Fixed bug GH-8121 (SplFileObject - seek and key with csv file inconsistent). Standard: Fixed bug GH-8048 (Force macOS to use statfs). Version 8.0.17 17 Mar 2022 Core: Fixed Haiku ZTS build. GD: Fixed libpng warning when loading interlaced images. FPM: Fixed bug #76109 (Unsafe access to fpm scoreboard). Iconv: Fixed bug GH-7953 (ob_clean() only does not set Content-Encoding). Fixed bug GH-7980 (Unexpected result for iconv_mime_decode). MySQLnd: Fixed bug GH-8058 (NULL pointer dereference in mysqlnd package). OPcache: Fixed bug GH-8074 (Wrong type inference of range() result). Reflection: Fixed bug GH-8080 (ReflectionClass::getConstants() depends on def. order). Zlib: Fixed bug GH-7953 (ob_clean() only does not set Content-Encoding). Version 8.0.16 17 Feb 2022 Core: Fixed bug #81430 (Attribute instantiation leaves dangling pointer). Fixed bug GH-7896 (Environment vars may be mangled on Windows). FFI: Fixed bug GH-7867 (FFI::cast() from pointer to array is broken). Filter: Fix #81708: UAF due to php_filter_float() failing for ints. (CVE-2021-21708) FPM: Fixed memory leak on invalid port. MBString: Fixed bug GH-7902 (mb_send_mail may delimit headers with LF only). MySQLnd: Fixed bug GH-7972 (MariaDB version prefix 5.5.5- is not stripped). Sockets: Fixed ext/sockets build on Haiku. Fixed bug GH-7978 (sockets extension compilation errors). Standard: Fixed bug GH-7875 (mails are sent even if failure to log throws exception). Version 8.0.15 20 Jan 2022 Core: Fixed bug #81656 (GCC-11 silently ignores -R). Fixed bug #81585 (cached_chunks are not counted to real_size on shutdown). Filter: Fixed FILTER_FLAG_NO_RES_RANGE flag. Hash: Fixed bug GH-7759 (Incorrect return types for hash() and hash_hmac()). Fixed bug GH-7826 (Inconsistent argument name in hash_hmac_file and hash_file). MySQLnd: Fixed bug where large bigints may be truncated. OCI8: Fixed bug GH-7765 (php_oci_cleanup_global_handles segfaults at second call). OPcache: Fixed bug #81679 (Tracing JIT crashes on reattaching). PDO_PGSQL: Fixed error message allocation of PDO PgSQL. Sockets: Avoid void* arithmetic in sockets/multicast.c on NetBSD. Spl: Fixed bug #75917 (SplFileObject::seek broken with CSV flags). Version 8.0.14 16 Dec 2021 Core: Fixed bug #81582 (Stringable not implicitly declared if __toString() came from a trait). Fixed bug #81591 (Fatal Error not properly logged in particular cases). Fixed bug #81626 (Error on use static:: in __сallStatic() wrapped to Closure::fromCallable()). Fixed bug #81631 (::class with dynamic class name may yield wrong line number). FPM: Fixed bug #81513 (Future possibility for heap overflow in FPM zlog). GD: Fixed bug #71316 (libpng warning from imagecreatefromstring). IMAP: Fixed bug #81649 (imap_(un)delete accept sequences, not single numbers). OpenSSL: Fixed bug #75725 (./configure: detecting RAND_egd). PCRE: Fixed bug #74604 (Out of bounds in php_pcre_replace_impl). SPL: Fixed bug #81587 (MultipleIterator Segmentation fault w/ SimpleXMLElement attached). Standard: Fixed bug #81618 (dns_get_record fails on FreeBSD for missing type). Fixed bug #81659 (stream_get_contents() may unnecessarily overallocate). Version 8.0.13 18 Nov 2021 Core: Fixed bug #81518 (Header injection via default_mimetype / default_charset). Date: Fixed bug #81500 (Interval serialization regression since 7.3.14 / 7.4.2). DBA: Fixed bug #81588 (TokyoCabinet driver leaks memory). MBString: Fixed bug #76167 (mbstring may use pointer from some previous request). Opcache: Fixed bug #81512 (Unexpected behavior with arrays and JIT). PCRE: Fixed bug #81424 (PCRE2 10.35 JIT performance regression). XML: Fixed bug #79971 (special character is breaking the path in xml function). (CVE-2021-21707) XMLReader: Fixed bug #81521 (XMLReader::getParserProperty may throw with a valid property). Version 8.0.12 21 Oct 2021 CLI: Fixed bug #81496 (Server logs incorrect request method). Core: Fixed bug #81435 (Observer current_observed_frame may point to an old (overwritten) frame). Fixed bug #81380 (Observer may not be initialized properly). DOM: Fixed bug #81433 (DOMElement::setIdAttribute() called twice may remove ID). FFI: Fixed bug #79576 ("TYPE *" shows unhelpful message when type is not defined). FPM: Fixed bug #81026 (PHP-FPM oob R/W in root process leading to privilege escalation) (CVE-2021-21703, bsc#1192050). Fileinfo: Fixed bug #78987 (High memory usage during encoding detection). Filter: Fixed bug #61700 (FILTER_FLAG_IPV6/FILTER_FLAG_NO_PRIV|RES_RANGE failing). Opcache: Fixed bug #81472 (Cannot support large linux major/minor device number when read /proc/self/maps). Reflection: ReflectionAttribute is no longer final. SPL: Fixed bug #80663 (Recursive SplFixedArray::setSize() may cause double-free). Fixed bug #81477 (LimitIterator + SplFileObject regression in 8.0.1). Standard: Fixed bug #69751 (Change Error message of sprintf/printf for missing/typo position specifier). Streams: Fixed bug #81475 (stream_isatty emits warning with attached stream wrapper). XML: Fixed bug #70962 (XML_OPTION_SKIP_WHITE strips embedded whitespace). Zip: Fixed bug #81490 (ZipArchive::extractTo() may leak memory). Fixed bug #77978 (Dirname ending in colon unzips to wrong dir). Version 8.0.11 23 Sep 2021 Core: Fixed bug #81302 (Stream position after stream filter removed). Fixed bug #81346 (Non-seekable streams don't update position after write). Fixed bug #73122 (Integer Overflow when concatenating strings). GD: Fixed bug #53580 (During resize gdImageCopyResampled cause colors change). Opcache: Fixed bug #81353 (segfault with preloading and statically bound closure). Shmop: Fixed bug #81407 (shmop_open won't attach and causes php to crash). Standard: Fixed bug #71542 (disk_total_space does not work with relative paths). Fixed bug #81400 (Unterminated string in dns_get_record() results). SysVMsg: Fixed bug #78819 (Heap Overflow in msg_send). XML: Fixed bug #81351 (xml_parse may fail, but has no error code). Zip: Fixed bug #80833 (ZipArchive::getStream doesn't use setPassword). Fixed bug #81420 (ZipArchive::extractTo extracts outside of destination). - deleted patches - php8-CVE-2021-21707.patch (upstreamed) - php8-CVE-2021-21708.patch (upstreamed) - php8-CVE-2022-31625.patch (upstreamed) - php8-CVE-2022-31626.patch (upstreamed)- devel package requires pear and pecl extensions [jsc#SLE-24723] [bsc#1200772]- security update - added patches fix CVE-2022-31625 [bsc#1200645], uninitialized pointers free in Postgres extension + php8-CVE-2022-31625.patch- security update - added patches fix CVE-2022-31626 [bsc#1200628], buffer overflow via user-supplied password when using pdo_mysql extension with mysqlnd driver + php8-CVE-2022-31626.patch- security update - added patches fix CVE-2021-21707 [bsc#1193041], special character breaks path in xml parsing + php8-CVE-2021-21707.patch- security update [bsc#1197644] - added patches fix https://github.com/php/php-src/commit/771dbdb319fa7f90584f6b2cc2c54ccff570492d + php8-signedness-php_filter_validate_domain.patch- security update - added patches fix CVE-2021-21708 [bsc#1196252], Use after free due to php_filter_float() failing for ints + php8-CVE-2021-21708.patch- updated to 8.0.10: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-8.php#8.0.10 - deleted patch - php-systzdata-v19.patch - added patch + php-systzdata-v20.patch- fix apparmor support: seems it requires a configure flag now.- updated to 8.0.9: This is a bug fix release. See https://www.php.net/ChangeLog-8.php#8.0.9- updated to 8.0.8: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-8.php#8.0.8- updated to 8.0.7: This is a bug fix release. See https://www.php.net/ChangeLog-8.php#8.0.7- updated to 8.0.6: This release reverts a bug related to PDO_pgsql that was introduced in PHP 8.0.5.- updated to 8.0.5: This is a bug fix release. See https://www.php.net/ChangeLog-8.php#8.0.5- Do not hard-depend on systemd: use systemd_ordering instead of systemd_requires.- instead of [bsc#1183180] - modified sources % mod_php8.conf- updated to 8.0.3: This is a bug fix release. See https://www.php.net/ChangeLog-8.php#8.0.3- updated to 8.0.2: This is a bug fix release. See https://www.php.net/ChangeLog-8.php#8.0.2 - suppress warning for all flavors not equal to "" in multibuild and obsoletes for php7 % php8.rpmlintrc- add conflicts with earlier versions of php (boo#1181292)- update contents of configuration file (still referenced php7) % mod_php8.conf- require this PHP version of subpackages in Recommends/Suggests - run apache-rex tests in php8:test as packages need to be build first (otherwise tests run with previous version)- add conflicts with earlier version of php-devel and php-phar - add obsoletes for all subtargets that don't have conflicts yet - add php_cfgdir and php_extdir macros- replace php8.keyring with signatures for PHP-8 release managers- deleted patch (redundant cast, both sides are already signed int) - php-odbc-cmp-int-cast.patch- install php8-cli if no sapi is selected upon php8 installation - add conflicts with earlier version of php-cli, php-fastcgi and php-fpm- put CLI binary in -cli subpackage so that other moduldes can depend on the php base package that remains (and provides files and maps common for all) - remove Obsoletes: php5-*- updated to 8.0.1: This is a bug fix release. See https://www.php.net/ChangeLog-8.php#8.0.1 - use pkgconfig() to resolve BuildRequires where upstream uses it too - since php-7.4.0 when using --with-external-gd the configure options - -with-xpm, --with-freetype and --with-jpeg are not needed anymore (and neither are the respective BuildRequires) - build the MySQL Native Driver as a shared module (rather than builtin) to prevent a hard requirement for OpenSSL in the CLI - add Recommends: php-openssl as many modules can optionally use it - use new %ldconfig macros in Tumbleweed - change PEAR dir to /usr/share/php/PEAR- install mod_php8 directly - note it provides php_module instead of php8_module per upstream change- install embed's libphp8.so directly - deleted patches - php-embed.patch (not needed)- deleted patches - php-openssl.patch (undocumented and not upstreamed patch for a long time) - php7-arm-build-fixes.patch (do not build for SLE12 anymore) - php-pts.patch (undocumented and not upstreamed patch for a long time) - imporved patch documentation- use cli sapi php-config --libs- php-phar requires the php-zlib extension - trim specfile lint- install macros.php in %{_rpmconfigdir}/macros.d- build devel subpackage in embed subpackage (where it previously was built)- don't build with CPU specific instructions as it can't be guaranteed these are available at runtime + php-no-check-cpu.patch - remove obsolete patch (replaced by SOURCE_DATE_EPOCH) - php-no-build-date.patch- add D(eterministic) flag to AR_FLAGS to (php-ar-flags.patch) - modified sources % _multibuild- restart php-fpm.service in %posttrans fpm (extensions may need to be updated too, so restart must be delayed to after all RPM transactions have completed)- do not add mod_php to httpd.conf during %install (better fix for new apache2 from Apache development repo) + php-install-mod_php.patch - do not build php-cgi when not needed - only build extensions in cli- fix building with new apache2 from Apache development repo- do not build firebird extension in any case- update to 8.0.0 See https://www.php.net/ChangeLog-8.php#8.0.0 - modified patches % php-date-regenerate-lexers.patch- update to 8.0.0 RC 4 - modified patches % php-crypt-tests.patch (refreshed) % php-fix_net-snmp_disable_MD5.patch (refreshed) % php-no-build-date.patch (refreshed) % php-odbc-cmp-int-cast.patch (refreshed) % php-openssl.patch (refreshed)- update to 8.0.0 RC 3- update to 8.0.0 RC 2 - modified patches % php-ini.patch (refreshed) % php-phpize.patch (refreshed) % php-php-config.patch- update to 8.0.0 RC 1 https://www.php.net/manual/en/migration80.php - modified patches % php-no-build-date.patch (refreshed) - deleted patches - php-pts.patch (upstreamed)- updated to 7.4.11: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.11- do not rely on apr-devel to pull db-devel- updated to 7.4.10: This is a bug fix release. See https://www.php.net/ChangeLog-7.php#7.4.10- updated to 7.4.9: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.9- updated to 7.4.8: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.8- Use /run/php-fpm instead of /run/php - modified sources % php-fpm.tmpfiles.d- do not install %{_tmpfilesdir}, %{_tmpfilesdir}/php-fpm.conf in test favour- added tmpfiles.d for php-fpm to provide a base base for a socket (boo#1173786)- updated to 7.4.7: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.7- updated to 7.4.6: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.6- added patches build fixes in SLE12 + php7-arm-build-fixes.patch- added to SLE-12 [jsc#SLE-12474]- spec file usable under SLE12 again and better prepared for phpM -> phpMN transition- added to SLE-15-SP2 [jsc#SLE-12482], including fixes for: CVE-2020-7063 [bsc#1165289] CVE-2020-7062 [bsc#1165280] CVE-2019-11046, CVE-2019-11050, CVE-2019-11047, CVE-2019-11045- updated to 7.4.5: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.5- remove Berkeley DB Database support [jsc#SLE-12210]- build firebird extension in any case- updated to 7.4.4: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.4- Enable LTO as it works now (boo#1133275).- updated to 7.4.3: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.3- add %apache_rex_deps- updated to 7.4.2: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.2- updated to 7.4.1: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.4.1 - deleted patches - php-fix-mysqlnd-compression-library.patch - php-fpm-service-fails-to-start.patch- php7-devel requires glibc-devel, libxml2-devel, pcre2-devel again- relax systemd restrictions for FPM as they were too strict in some applications - change leftover Requires php7- to php- - remove external libraries from -devel subpackage - added patches + php-fpm-service-fails-to-start.patch- update to 7.4.0: * Typed Properties * Arrow Functions * Limited Return Type Covariance and Argument Type Contravariance * Unpacking Inside Arrays * Numeric Literal Separator * Weak References * Allow Exceptions from __toString() * Opcache Preloading * The interbase and wddx extensions are removed and now available through PECL * PEAR is now packaged separately in php7-pear source package (https://externals.io/message/103977) * See https://www.php.net/ChangeLog-7.php#7.4.0 for a complete list of changes - deleted patches - php-suse-addons.tar.bz - php-systzdata-v18.patch - added patches + php-fix-mysqlnd-compression-library.patch + php-systzdata-v19.patch + mod_php7.conf - modified files/patches % php-no-build-date.patch % php-systemd-unit.patch % php7.keyring (use keys of the PHP-7.4 release managers) % php7.rpmlintrc- added to SLE-15-SP2 [SLE-10860], fixes CVE-2019-11043 [bsc#1154999] CVE-2019-11041 [bsc#1146360] CVE-2019-11042 [bsc#1145095] CVE-2019-11039 [bsc#1138173] CVE-2019-11040 [bsc#1138172] CVE-2019-11036 [bsc#1134322] CVE-2019-11034 [bsc#1132838] CVE-2019-11035 [bsc#1132837] CVE-2019-9637 [bsc#1128892] CVE-2019-9675 [bsc#1128886] CVE-2019-9638 [bsc#1128889], CVE-2019-9639 [bsc#1128887] CVE-2019-9640 [bsc#1128883] CVE-2019-9024 [bsc#1126821] CVE-2019-9020 [bsc#1126711] CVE-2018-20783 [bsc#1127122] CVE-2019-9021 [bsc#1126713] CVE-2019-9022 [bsc#1126827] CVE-2019-9023 [bsc#1126823] CVE-2019-9641 [bsc#1128722] CVE-2018-19935 [bsc#1118832] CVE-2018-17082 [bsc#1108753] CVE-2018-1000222 [bsc#1105434] CVE-2018-14851 [bsc#1103659] CVE-2017-9120 [bsc#1103661] CVE-2018-12882 [bsc#1099098] [bsc#1151793]- Do not add the generic provides to the php7-test package.- version update to 7.3.11: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.3.11- provide test results via multibuild :test - added sources + _multibuild- remove pcre.jit=0 setting default as https://bugs.php.net/bug.php?id=77260 is solved on pcre2 side [bsc#1124446] - modified patches % php-ini.patch (amended)- updated to 7.3.10: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.3.10- updated to 7.3.9: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.3.9- updated to 7.3.8: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.3.8- updated to 7.3.7: This is a bug fix release. See https://www.php.net/ChangeLog-7.php#7.3.7- updated to 7.3.6: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.3.6- check via apache-rex- build for 42.3- updated to 7.3.5: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.3.5- Disable LTO (boo#1133275).- updated to 7.3.4: This is a security release which also contains several bug fixes. See https://www.php.net/ChangeLog-7.php#7.3.4- upstream bug #41631 is already fixed [bsc#1129032] - deleted sources - README.default_socket_timeout (not needed)- updated to 7.3.3: This is a security release which also contains several bug fixes. See http://www.php.net/ChangeLog-7.php#7.3.3 - deleted patches - php-systzdata-v17.patch (upstreamed) - added patches + php-systzdata-v18.patch (thanks to remirepo)- asan_build: build ASAN included - debug_build: build more suitable for debugging- Disable tests that do deadlock now with curl update, this is fixed in next release 7.3.3 thus reenable here when released- rename php7-*.patch to more general php-#1.patch why: this aligns with maintenance patch names, which are in changelogs comfortably copied over php72, php7, php5, php53; moreover, php$N prefix causes issues when package is renamed, e. g. php7 to php72 - deleted patches - php7-crypt-tests.patch - php7-date-regenerate-lexers.patch - php7-embed.patch - php7-fix_net-snmp_disable_MD5.patch - php7-ini.patch - php7-no-build-date.patch - php7-odbc-cmp-int-cast.patch - php7-openssl.patch - php7-php-config.patch - php7-phpize.patch - php7-pts.patch - php7-systemd-unit.patch - php7-systzdata-v17.patch - added patches + php-crypt-tests.patch + php-date-regenerate-lexers.patch + php-embed.patch + php-fix_net-snmp_disable_MD5.patch + php-ini.patch + php-no-build-date.patch + php-odbc-cmp-int-cast.patch + php-openssl.patch + php-php-config.patch + php-phpize.patch + php-pts.patch + php-systemd-unit.patch + php-systzdata-v17.patch- fix wrongly ported patch, using the one from remirepo (Thanks!) [bsc#1126449] - modified patches % php7-systzdata-v17.patch- updated to version 7.3.2: This is a bugfix release, with several bug fixes included. See http://php.net/ChangeLog-7.php#7.3.2 - php7-systzdata-v16.patch modified and renamed to php7-systzdata-v17.patch- set pcre.jit=0 until https://bugs.php.net/bug.php?id=77260 is solved [bsc#1124446]- spec file cleanup * add BuildRequires gpg2 * remove outdated README.SUSE-pear - Squirrelmail uses PDO instead of DB now by default * remove outdated php7-depdb-path.patch - Horde packages no longer build so need to be fixed anyway - update php7.rpmlintrc to suppress warnings that aren't fixable and drown out other warnings- provide the version of PEAR, rather than the PHP version in php-pear- configure cache_dir, metadata_dir and sig_bin through PHP_PEAR_* exports- remove install-pear-nozlib.phar (the bundled and tested version from the PHP sources is fresh enough for our purposes) - merge back php7-pear-Archive_Tar in php7-pear - rename cache_dir to pear and create it- fix php7.spec typos- verify install-pear-nozlib.phar- update install-pear-nozlib.phar to version 1.10.10 * switch source to GitHub * provides Archive_Tar 1.4.4 (fixes CVE-2018-1000888)- update to 7.3.1: This is a security release which also contains several bug fixes. See http://php.net/ChangeLog-7.php - remove suhosin stuff- Support LMDB in php7-dba, it is advisable to use it instead of bdb.- Update php7-pts.patch: open slave_pty using TIOCGPTPEER if available instead of the name returned by ptsname() so it is safe to use when interacting with namespaces.- update install-pear-nozlib.phar to its latest version, otherwise pecl stops working due to protocol switch http -> https- Mark testresults package as noarch- Enable testsuite during build time and save log to subpackage testresults (boo#1119396)- update to pcre2 broke building third party modules, php7-devel needs pcre-devel --> pcre2-devel change.- update to 7.3.0: * Improved PHP GC * Add net_get_interfaces() * Implemented flexible heredoc and nowdoc syntax * Added support for references in list() and array destructuring * Added syslog.facility and syslog.ident INI entries for customizing syslog logging * The declaration and use of case-insensitive constants has been deprecated * Added syslog.filter INI entry for syslog filtering * Added the 'add_slashes' sanitization mode * Added support for WebP in imagecreatefromstring() * Export internal structures and accessor helpers for GMP object. * Added gmp_binomial(n, k) * Added gmp_lcm(a, b) * Added gmp_perfect_power(a) * Added gmp_kronecker(a, b) * Added JSON_THROW_ON_ERROR flag * Added ldap_exop_refresh helper for EXOP REFRESH operation with dds overlay * Added full support for sending and parsing ldap controls * Removed support for ODBCRouter * Removed support for Birdstep * Added openssl_pkey_derive function * Add min_proto_version and max_proto_version ssl stream options as well as related constants for possible TLS protocol values * Migrated to PCRE2 * Expose TDS version as \PDO::DBLIB_ATTR_TDS_VERSION attribute on \PDO instance * Treat DATETIME2 columns like DATETIME * Added is_countable() function * Added support for the SameSite cookie directive, including an alternative signature for setcookie(), setrawcookie() and session_set_cookie_params() * Many bugfixes and other changes, see http://php.net/ChangeLog-7.php#7.3.0 - patch changes % php7-ini.patch % php7-no-build-date.patch % php7-odbc-cmp-int-cast.patch - php7-honor-re2c-flags.patch (upstreamed)- update to 7.2.13: This is a security release. http://php.net/ChangeLog-7.php- core package recommends instead of requires smtp_daemon [bsc#1115213]- update to 7.2.12: This is a bugfix release. http://php.net/ChangeLog-7.php - forward ported: % php7-crypt-tests.patch % php7-honor-re2c-flags.patch % php7-odbc-cmp-int-cast.patch- update to 7.2.11: This is a bugfix release. http://php.net/ChangeLog-7.php- updated to 7.2.10: This is a security release which also contains several minor bug fixes. http://php.net/ChangeLog-7.php- reenable php7-dba support of Berkeley DB [bsc#1108554]- remove Supplements: packageand(%{apache_mmn}:%{name}) from Apache httpd module as I do not see the reason why system that have php7 and apache2 installed should get the module automatically as well. This had a drawback of selecting apache2-prefork while [#] zypper in apache2-worker The following 5 NEW packages are going to be installed: apache2 apache2-mod_php7 apache2-prefork apache2-utils apache2-worker [#] because apache2-mod_php7 Requires: apache2-prefork.- updated to 7.2.9: This is a bugfix release. http://php.net/ChangeLog-7.php- updated to 7.2.8: This is a security release which also contains several minor bug fixes. http://php.net/ChangeLog-7.php#7.2.8- updated to 7.2.7: A Bugfix release which includes a segfault fix for opcache. http://php.net/ChangeLog-7.php#7.2.7- actually build against system gd for 42.3, made a bold comment [bsc#1074025c#5]- fix build for SLE12, where %license does not exist- updated to 7.2.6: Bugfix release which includes a memory corruption fix for EXIF. http://php.net/ChangeLog-7.php#7.2.6- Remove php7-freetype-pkgconfig.patch as it seems to break Freetype detection on some systems bsc#1094534- main package requires wwwrun:www user [bsc#1093025]- better workaround for [bsc#1089487]: build mod_phpN.so instead of libphpN.so- rename freetype-pkgconfig.patch to php7-freetype-pkgconfig.patch to align with the rest of patch names- Add freetype-pkgconfig.patch to fix build with new Freetype: use pkg-config to find Freetype libraries- updated to 7.2.5: This is a security release which also contains several minor bug fixes. http://php.net/ChangeLog-7.php#7.2.5- build-test.sh: generic spec file name- apache2-mod_php7 does not provide libphp7.so [bsc#1089487]- updated to 7.2.4: This is a security release with also contains several minor bug fixes. http://php.net/ChangeLog-7.php#7.2.4 - php7-no-build-date.patch refreshed- build firebird extension only for openSUSE (sle15 requirement)- Fix build for %arm and aarch64- drop imap extension [bsc#1084461]- BuildRequire pkgconfig(enchant) instead of enchant-devel: enchant is moving to version 2.2, with an enchant-1 as compatibility package. By using the pkgconfig symbol, we don't have to care for the actual package name.- updated to 7.2.3: This is a security release with also contains several minor bug fixes. http://php.net/ChangeLog-7.php#7.2.3 - removed upstreamed php7-pgsql-memory-leak.patch - php7-systzdata-v15.patch refreshed and renamed to php7-systzdata-v16.patch- php7-honor-re2c-flags.patch: honor RE2C_FLAGS everywhere. - remove generated lexers so they are recreated at build time- php7-date-regenerate-lexers.patch: honor RE2C_FLAGS- Support password_hash("...", PASSWORD_ARGON2I), buildrequire libargon2 in supported products.- Remove buildRequires on: * libevent-devel: php7-fpm does not use it. * pam-devel: not used - Add buildrequire on zlib-devel explicitly. - libvpx is not needed but libwebp is, only when not building against system gd. xft likewise.- fixed memory leak in pgsql extension, php function pg_escape_bytea https://bugs.php.net/bug.php?id=75838 [bsc#1076970] (internal) + php7-pgsql-memory-leak.patch- updated to 7.2.2: This is a bugfix release, with several bug fixes included. http://php.net/ChangeLog-7.php#7.2.2- do not build against system gd when suse_version < 1500- fix build for SLE12*- updated to 7.2.1: Several security bugs were fixed in this release. http://php.net/ChangeLog-7.php#7.2.1- build against newer webp [bsc#1074121]- build with SLE12*- updated to 7.2.0: features and improvements: * Convert numeric keys in object/array casts * Counting of non-countable objects * Object typehint * HashContext as Object * Argon2 in password hash * Improve TLS constants to sane values * Mcrypt extension removed * New sodium extension - patches: . php7-systzdata-v14.patch transformed to php7-systzdata-v15.patch . removed upstreamed php7-aarch64-mult.patch- updated to 7.1.12: This is a bugfix release, with several bug fixes included.- Add php-cli as provides to php7- updated to 7.1.11: This is a bugfix release, with several bug fixes included.- fixed installation of wrong cli [bsc#1061555]- Update not-so-useful repeated package summaries. Update the descriptions to have a bit more explanation. Replace old tar syntax.- build and ship embed SAPI + php7-embed.patch- updated to 7.1.10: Several bugs have been fixed, see https://secure.php.net/ChangeLog-7.php for details- aarch64-mult.patch renamed to php7-aarch64-mult.patch- php7-devel requires php7-pear [bsc#1057104]- Changes related to boo#1056822 - New packaging macros in macros.php: %php_pearxmldir, %pear_phpdir, %pear_phpdir, %pear_testdir, %pear_datadir, %pear_cfgdir, %pear_wwwdir, %pear_metadir, %pecl_phpdir, %pecl_docdir, %pecl_testdir, %pecl_datadir - Updated packaging documentation in README.macros- Updated to 7.1.9: Several bugs have been fixed. * ChangeLog https://secure.php.net/ChangeLog-7.php#7.1.9- added /usr/bin/php7 [bsc#734176]- php7-pear should explicitly require php7-pear-Archive_Tar otherwise this dependency must be declared in every php7-pear-* package explicitly. [bnc#1052389]- Updated to 7.1.8: Several bugs have been fixed. * ChangeLog https://secure.php.net/ChangeLog-7.php#7.1.8- Replace %__-type macro indirections.- date extension: regenerate lexers when needed + php7-date-regenerate-lexers.patch- dropped mcrypt extension [fate#323673]- updated to 7.1.7: This is a security release with several bug fixes included.- Drop sle11 support as we are not building against it anymore - Remove php7-BNC-457056.patch that was applied on sle11 only - Remove dependency on imap-devel, it is not used - Switch spell from aspell to enchant, dropping pspell subpackage - Remove unknown switch options from php cli build - Drop support for berkleydb format, by default there are more supported solutions built in php - Use %configure macro in the build phases- updated to 7.1.6: Several bugs have been fixed.- Updated to 7.1.5: Several bugs have been fixed. * ChangeLog https://secure.php.net/ChangeLog-7.php#7.1.5- Updated to 7.1.4: Several bugs have been fixed. * ChangeLog https://secure.php.net/ChangeLog-7.php#7.1.4- Updated to 7.1.3: Several bugs have been fixed. * ChangeLog https://secure.php.net/ChangeLog-7.php#7.1.3- Don't install the init script if we use systemd- updated to 7.1.2: Several bugs have been fixed. - deleted php7-getrandom-test.patch, upstreamed- updated to 7.1.1: This release is the first point release in the 7.x series. PHP 7.1 comes with numerous improvements and new features such as * Nullable types * Void return type * Iterable pseudo-type * Class constant visiblity modifiers * Square bracket syntax for list() and the ability to specify keys in list() * Catching multiple exceptions types * Many more features and changes… - migration: http://php.net/manual/en/migration71.php - php7-systzdata-v13.patch replaced by php7-systzdata-v14.patch- suggest php7-* instead of php-* [bsc#1022158c#4] - do not suggest php-suhosin at all as we do not build it (not ported to php7 yet)- updated to 7.0.15: Several security bugs were fixed in this release.- Replace pkgconfig(libsystemd-*) with pkgconfig(libsystemd) Nowadays pkgconfig(libsystemd) replaces all libsystemd-* libs, which are obsolete.- updated to 7.0.14: Several security bugs were fixed in this release.- updated to 7.0.13: This is a security release. Several security bugs were fixed in this release.- adjust firebird dependency- updated to 7.0.12: This is a security release. Several security bugs were fixed in this release.- updated to 7.0.11: Several security bugs were fixed in this release.- php7-getrandom-test.patch: Fix incorrect test for the getrandom syscall.- updated to 7.0.10: Several security bugs were fixed in this release.- updated to 7.0.9: Several security bugs were fixed in this release, including the HTTP_PROXY issue.- updated to 7.0.8: This is a security release. Several security bugs were fixed in this release. - removed: php7-mbstring-missing-return.patch (upstreamed)- systemd unit: remove syslog.target from After [bsc#983938]- updated to 7.0.7: This is a security release. Several security bugs were fixed in this release.- updated to 7.0.6: This is a security release. Several security bugs were fixed in this release. * removed upstreamed php7-no-reentrant-crypt.patch- aarch64-mult.patch: fix asm constraints in aarch64 multiply macro- build for sle12- correct public key- updated to 7.0.5- firebird builds now- update to 7.0.4- updated to 7.0.3- require postgresql-devel < 9.4 for sle12 to fix build- more versioned provides- update to 7.0.2: 31 reported bugs has been fixed, including 6 security related issues.- update to 7.0.1- php5-pear-Archive_Tar provides 1.4.0 - install .depdb and .depdblock files along metadata * php5-depdb-path.patch - versioned provides in subpackages- Provide obsoletes for sub-packages to improve upgrade process.- Obsolete php5 since php7 conflicts and should replace.- marcello at ceschia.de: fix path php-fpm.conf- set pear's metadata dir to %{peardir}- Spec cleanup * Split Archive_Tar from -pear sub packge to allow updating this part via rpm * Added "Provides: php-firebird" to -firebird sub package * Added "Provides: mod_php_any" to server api module packages - fastcgi and -fpm- test mod_php with %apache_test_module_curl - restart apache during mod_php upgrade- add php5-fix_net-snmp_disable_MD5.patch [bnc#944302]- fixed segfault in odbc extension when result set is containing NULL (php bugs #52554, #53007) [bnc#935074] (internal) + php7-odbc-cmp-int-cast.patch- updated to 7.0.0 * see NEWS for changes * see UPGRADING for 5.6.x -> 7.0.x transition - removed unneded or not upstreamed patches for long time: * php5-cloexec.patch * php5-missing-extdeps.patch * php5-format-string-issues.patch * php5-per-mod-log.patch * php5-apache24-updates.patch * php5-crypto-checks.patch * php5-systzdata-r12.patch (new: php7-systzdata-v13.patch)- updated to 5.6.11: Five security-related issues in PHP were fixed in this release, including CVE-2015-3152.- php5-systemd-unit.patch: set Killmode=mixed in order to ensure fpm and children forked by script can terminate cleanly.- mod_php5.so executable- use apache-rpm-macros- updated to 5.6.10: Several bugs have been fixed as well as several security issues into some bundled libraries (CVE-2015-3414, CVE-2015-3415, CVE-2015-3416, CVE-2015-2325 and CVE-2015-2326).- enable apparmor support: new BR libapparmor-devel- update to 5.6.9: Several bugs have been fixed. - systzdata patch updated to r12 - php5-systzdata-r10.patch + php5-systzdata-r12.patch- update to 5.6.8: Several bugs have been fixed some of them beeing security related, like CVE-2015-1351 and CVE-2015-1352. - refreshed php5-crypto-checks.patch- configure php-fpm with --localstatedir=/var [bnc#927147]- systzdata patch updated to r10 - php5-systzdata-v7.patch + php5-systzdata-r10.patch- build against system gd and libzip only for 13.2 and above- update to 5.6.7: Several bugs have been fixed as well as CVE-2015-0231, CVE-2015-2305 and CVE-2015-2331.- build against system gd [bnc#923946]- build against system libzip [bnc#922894]- update to 5.6.6: fixes several bugs and addresses CVE-2015-0235 and CVE-2015-0273.- added README.default_socket_timeout [bnc#907519]- fix sle_11_sp3 build- update to 5.6.5: This release fixes several bugs as well as CVE-2015-0231, CVE-2014-9427 and CVE-2015-0232. - removed patches: * php-CVE-2014-9426.patch * php-CVE-2014-9427.patch * php-CVE-2015-0231.patch- added php-CVE-2015-0231.patch [bnc#910659]- added php-CVE-2014-9426.patch [bnc#911663] - added php-CVE-2014-9427.patch [bnc#911664]- update to 5.6.4: This release fixes several bugs and one CVE related to unserialization.- update to 5.6.3: This release fixes several bugs and one CVE in the fileinfo extension.- update to 5.6.2: Four security-related bugs were fixed in this release, including fixes for CVE-2014-3668, CVE-2014-3669 and CVE-2014-3670.- upgraded to 5.6.1: * Several bugs were fixed in this release (including CVE-2014-3622).h01-ch3c 17332344918.0.30-150400.4.49.18.0.30-150400.4.49.1php8-testtestresults.txt/usr/share/doc/packages//usr/share/doc/packages/php8-test/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:36663/SUSE_SLE-15-SP4_Update/96d7b261431e597bbf42b736a7359da3-php8.SUSE_SLE-15-SP4_Update:testdrpmxz5x86_64-suse-linuxdirectoryUTF-8 Unicode text, with CR, LF line terminators, with escape sequences9hw.6utf-86874d7892094f67bddecc48e6b009a42c76d1d7a64112c7e90f135275904b187?P7zXZ !t/?]"k%:yarNoRmbYIc'G6EKVp 28k 3dFJJ(kQ@>lx{X^YE8DDc:Hi@)ox0 .? A7H)'py; ?0u9xTd w 'uwi&|\[P Z7i[܃~ϷjJwmIB?1wt酝QpI1S}1> k%ݢ 畎g:ODyTEQtȒ@Ʀ9܋^q(462Nwr/lXc[rܜxL$H=2b:tQjq{DYj`!O@ϸ 9~m~xr $}fK KBs~bե,uqX/mWkH=C(I/}2:U5+V#;gHQ}K㻟 2kGb,b +ڤZ ې#̅EpP;}M}UMhým0UuF:AmtflFhša,.VevfՑ|+ÄVI{njP(rzoV;`8qz ڹDj4[C% ¶ YZ