Topic: PHP 5.5 security only, PHP 5.4 dies

[Jan-E]

Fron the PHP internals mailing list:

Hi internals.

As you may know/remember , PHP 5.5 has been released two years ago. We've released 26 versions so far (24 would be the "normal" computing, but we always got some bad releases, mainly from human failure factor).

The actual stable 5.5 is PHP 5.5.26.
This week, I'm going to tag the last 5.5 RC : 5.5.27RC. Then will follow the *last* "normal process" 5.5 release : 5.5.27.

***
The PHP 5.5 branch is going to enter in security only, and in the same time, PHP 5.4 will finally die
***

As a contributor, you are still allowed to commit to the 5.5 branch until the next RC, that is until tomorrow tuesday or wednesday 24th of June.

After this date, I ask every contributor to consider 5.5 as being in sec only, and to commit their code to the 5.6 branch (and merge up) thus **to not commit anything to the 5.5 branch anymore**. 5.6 will become the lowest
branch to commit in.
For security related commits, please talk to the RM (mainly myself) to know what to do. Also remember about our security@ mailing list.

To prevent leaks, we are going to restrict the commit access to the 5.5 branch in few days, so that if you forget about it, you'll be denied by git if trying to push to 5.5 => push to 5.6 instead
Only RM will keep their commit access to the 5.5 branch.

Our usual security process does not change however, after 5.5.27 is released, 5.5 will have no more release until enough security bugs are found. That may still happen every month, or not.

Thank you for your understanding, and happy PHP Hacking.

Julien Pauli