MFH: r520628
lang/php72: Upgrade from 7.2.25 to 7.2.26
Changelog:
Bcmath:
Fixed bug #78878 (Buffer underflow in bc_shift_addsub). (CVE-2019-11046)
Core:
Fixed bug #78862 (link() silently truncates after a null byte on Windows). (CVE-2019-11044)
Fixed bug #78863 (DirectoryIterator class silently truncates after a null byte). (CVE-2019-11045)
EXIF:
Fixed bug #78793 (Use-after-free in exif parsing under memory sanitizer). (CVE-2019-11050)
Fixed bug #78910 (Heap-buffer-overflow READ in exif). (CVE-2019-11047)
GD:
Fixed bug #78849 (GD build broken with -D SIGNED_COMPARE_SLOW).
Intl:
Fixed bug #78804 (Segmentation fault in Locale::filterMatches).
OPcache:
Fixed $x = (bool)$x; with opcache (should emit undeclared variable notice).
Standard:
Fixed bug #78759 (array_search in $GLOBALS).
Fixed bug #78833 (Integer overflow in pack causes out-of-bound access).
Fixed bug #78814 (strip_tags allows / in tag name => whitelist bypass).Changelog taken from: https://www.php.net/ChangeLog-7.php#7.2.26
Approved by: ports-secteam (joneum)