PHP 7.0.15 available

8 years ago by Anatol Belski — view source — reply

unread

Hi,

The PHP development team announces the immediate availability of PHP 7.0.15.
This is a security release. Several security bugs were fixed in this
release.

All PHP 7.0 users are encouraged to upgrade to this version.

For source downloads of PHP 7.0.15 please visit our downloads page:
http://www.php.net/downloads.php

Windows binaries can be found on http://windows.php.net/download/

The list of changes is recorded in the ChangeLog:
http://www.php.net/ChangeLog-7.php#7.0.15

Regards,
Anatol Belski and Ferenc Kovacs

P.S. Below is the verification information for the downloads

php-7.0.15.tar.bz2
SHA256 hash:
a8c8f947335683fa6dd1b7443ed70f2a42bc33e8b6c215f139138cee89e47dd9
PGP signature:
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAABAgAGBQJYfgbdAAoJELyqMOqcDVdjkW4H/0b9isJklDnxnp+mZ1E22gR4
sLd18cWrVYn8E+PLk9WdGaCIm66z+0J7S2RwYfPpR53XE92DuMDokGXXsb9i3RGu
V3VOZtQiv71zbsjqT77POHI0Swbm6ipL+4ZFhKC9Ko1fIcQMrTjZc9IdSO1bevLq
iW0JeXc89ENnHiV2zs4s36TqxQ2SpJVeLWvu/sZF8MEVCVPKUE04TnIxCbr5utQV
8OFGz1XEfO3ckMNF3FbkdweTBPWRKw1/KIqwRJpq1Md9Ec/N4Rl3sLDEmQH+P5tN
vShDP8HqNSbhVtFOyLGobdRLvC5P+9roYTmwxr4u/dOVzdd3hMYW8tH/ueFnI2k=
=DVTM
-----END PGP SIGNATURE-----

php-7.0.15.tar.gz
SHA256 hash:
c24324c6d4bf27e8bc1d12da0aae4f15a43c8374f681e23e9b1e67f5b719c3a6
PGP signature:
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAABAgAGBQJYfgbgAAoJELyqMOqcDVdjZssIAMTEmZ5bwqyhPBFQUVVgQaz9
987cKC1MPlRUGL8WgKJ1heJvKQlHRDf1Sf7KX3eCbsODqgZR2ogr6N7VUmxoeyo2
wv1GFQlZU5dbrVq3mDLlm+oRUfOIZvbGFFuUCgNV1nCooFH9gF9KgiwDkVV4Alw2
IbHfn5VfT+NE0LBWlXfqogpwu0PtBFy0xvsT4YDNKwFO0NTqXvFfTFGb4kF5mBm9
FqUK4Eft/lEFwDRD++darS+wslGFpmau/WI0Caja+JObVMDm0hJz52Jn0vlRjO1u
ADi+X69PB5MxOPnsk44lGmcA6dh2ecusu/2a+97IOqq+5YieijNIf3Y1nt9h6Pw=
=Optl
-----END PGP SIGNATURE-----

php-7.0.15.tar.xz
SHA256 hash:
300364d57fc4a6176ff7d52d390ee870ab6e30df121026649f8e7e0b9657fe93
PGP signature:
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1

iQEcBAABAgAGBQJYfgbjAAoJELyqMOqcDVdjUKoIAKwxnjKDpS89uHkVhrUj2iMh
pI9FFgcjnQvSugSNCkEThTHtWQ8Q8Y+YhQEsOaDJtQUwAK+Hsy+VwMqLOSyJd4z8
kV+wPOs0D3aJRzlT+Jm+hHuFpDkTW+HY+JWvP1dGuJXf7DnY0dn7NPWv/ZmCfwaD
h0r6Y3yYehj6qiZ3q0Kf2HWTas7PVFqZ4rOmyA5sKZeUbEiGd3rpX8s77M6BiBAA
ttRg08/eAbVAr6nh4/gt5bu7osUJw440abdoASBtzdgNgxm/0b8x5zLj2nYZHUgn
uwjaxnCJJay0XdPeyRLOxoG/l+EHIE3E3Y2T/2rk7T7xFq6pdEYrrBE0+nbzqGk=
=5HFt
-----END PGP SIGNATURE

8 years ago by Niklas Keller — view source — reply

unread

Hey Anatol and others,

Hi,

The PHP development team announces the immediate availability of PHP
7.0.15.
This is a security release. Several security bugs were fixed in this
release.

Could we change our current system and highlight security issues either by
color, an icon or even better, by grouping them separately for each release?

Regards, Niklas

8 years ago by Anatol Belski — view source — reply

unread

Hi Niklas,

-----Original Message-----
From: Niklas Keller [mailto:me@kelunik.com]
Sent: Thursday, January 19, 2017 3:03 PM
To: Anatol Belski ab@php.net
Cc: PHP Internals internals@lists.php.net
Subject: Re: [PHP-DEV] PHP 7.0.15 available

Hey Anatol and others,

Hi,

The PHP development team announces the immediate availability of PHP
7.0.15.
This is a security release. Several security bugs were fixed in this
release.

Could we change our current system and highlight security issues either by color,
an icon or even better, by grouping them separately for each release?

That could be an idea, yes. Currently we have a script to automatically convert the NEWS entries to the HTML chunks. Probably both the format of the NEWS items and some adaptation for the conversion tool and site styles/code would be needed, to make this happen.

Regards

Anatol

8 years ago by Yasuo Ohgaki — view source — reply

unread

Hi,

Could we change our current system and highlight security issues either
by color,
an icon or even better, by grouping them separately for each release?

That could be an idea, yes. Currently we have a script to automatically
convert the NEWS entries to the HTML chunks. Probably both the format of
the NEWS items and some adaptation for the conversion tool and site
styles/code would be needed, to make this happen.

Just a reminder.
Please confirm this classification when this is implemented
https://wiki.php.net/security [1]

Thanks,

[1] https://wiki.php.net/rfc/security-classification

--
Yasuo Ohgaki
yohgaki@ohgaki.net

8 years ago by Anatol Belski — view source — reply

unread

Hi Yasuo,

-----Original Message-----
From: Yasuo Ohgaki [mailto:yohgaki@ohgaki.net]
Sent: Saturday, January 21, 2017 2:49 AM
To: Anatol Belski ab@php.net
Cc: Niklas Keller me@kelunik.com; PHP Internals internals@lists.php.net
Subject: Re: [PHP-DEV] PHP 7.0.15 available

Hi,

Could we change our current system and highlight security issues
either
by color,
an icon or even better, by grouping them separately for each release?

That could be an idea, yes. Currently we have a script to
automatically convert the NEWS entries to the HTML chunks. Probably
both the format of the NEWS items and some adaptation for the
conversion tool and site styles/code would be needed, to make this happen.

Just a reminder.
Please confirm this classification when this is implemented
https://wiki.php.net/security [1]

Thanks,

[1] https://wiki.php.net/rfc/security-classification

Yeah, it's voted and is applied now. The document is also linked from bugs.php.net, so is also promoted. The exact severity could of course be included in NEWS, etc. as well. Only the implementation of the missing parts into the process is not in place. Other RMs would probably good to express the opinions, too. But also, it would be nice if someone could contribute implementations mentioned above. On my side it's out of question ATM, for time reasons.

Regards

Anatol