Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:89808 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 14379 invoked from network); 14 Dec 2015 23:55:30 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 14 Dec 2015 23:55:30 -0000 Authentication-Results: pb1.pair.com smtp.mail=smalyshev@gmail.com; spf=pass; sender-id=pass Authentication-Results: pb1.pair.com header.from=smalyshev@gmail.com; sender-id=pass Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.192.178 as permitted sender) X-PHP-List-Original-Sender: smalyshev@gmail.com X-Host-Fingerprint: 209.85.192.178 mail-pf0-f178.google.com Received: from [209.85.192.178] ([209.85.192.178:34916] helo=mail-pf0-f178.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id 97/47-51216-2F65F665 for ; Mon, 14 Dec 2015 18:55:30 -0500 Received: by pff63 with SMTP id 63so19621417pff.2 for ; Mon, 14 Dec 2015 15:55:27 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=subject:to:references:cc:from:message-id:date:user-agent :mime-version:in-reply-to:content-type:content-transfer-encoding; bh=wM0zjsdMi+iaK/c37mmfw2lGfUHwB8chsO204Szn0so=; b=NyHAtila4+8izDxnfubX9YSPNEWmAjM1HnRVL722DtWoEpHetodMzE9MjFDcOBhP2u k5ftcnLAvr4QizTQOWQme7sUl7YuVB44M0v0KMufBSkKlMoG2R5Ew+yzvUmw3OwV3D3T GccJYizwJHz7F25gGZq7bZsG0R4OKWymXCWzDhMMOpi8OORCtcsER3E+KReSYhzKogXs BwMXToGozWWCt1p+hZF3phDiTCIgZCo9BRCQ6FCwqnyEJT4r0bbOFNQrCE3G7UflEprR kShQ+MovPFG7R6l3WEXa3xI4UkB3yFK32w+zcukfx3ElinHaGu3egAtsw9zfeXG5IgaM 21Yg== X-Received: by 10.98.66.216 with SMTP id h85mr20682382pfd.118.1450137327583; Mon, 14 Dec 2015 15:55:27 -0800 (PST) Received: from Stas-Air.local ([63.173.125.150]) by smtp.gmail.com with ESMTPSA id 78sm24251122pfr.2.2015.12.14.15.55.25 (version=TLSv1/SSLv3 cipher=OTHER); Mon, 14 Dec 2015 15:55:26 -0800 (PST) To: Ferenc Kovacs , Julien Pauli References: <000c01d12fa0$384b8040$a8e280c0$@belski.net> <082001d131ac$ab522b80$01f68280$@belski.net> <5666C73B.1050407@php.net> Cc: Remi Collet , PHP Internals , Anatol Belsky , Stanislav Malyshev Message-ID: <566F56EB.7070601@gmail.com> Date: Mon, 14 Dec 2015 15:55:23 -0800 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:38.0) Gecko/20100101 Thunderbird/38.4.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit Subject: Re: [PHP-DEV] Re: PHP 7.0.1 scheduling From: smalyshev@gmail.com (Stanislav Malyshev) Hi! > Why not use RC2 as a chance for some security patches to get tested ? > If we have a RC2 (which is not bad IMO, we have a time slice here at > end of 2015 that enables us to release an RC2) , we then could merge > into this one some well-selected security patches, f.e, some that are > *low* classified , aka that can't get trigerred remotely by user > payload. Generally, if we publish security patch we should release ASAP, as having public unpatched security issue is bad. Fortunately, the issue disclosed is not that bad, I'd even doubt it is security issue per se, as I see no real way to trigger it without code access (it may be I miss something though). Accelerating the schedule is OK with me (as is keeping the current one, too) but please do not forget to merge pending patches (or please tell me when you want me to merge them). Thanks, -- Stas Malyshev smalyshev@gmail.com