Merge branch 'PHP-5.5' into PHP-5.6

* PHP-5.5:
  Fix bug #68942 (Use after free vulnerability in unserialize() with DateTimeZone)
  Port for for bug #68552
  Fix bug #68942 (Use after free vulnerability in unserialize() with DateTimeZone)
  - BFN

diff --cc NEWS
index 86ebfd3f59707284176fd16ee8ff2da1213b3753,c4c30e6e220f63a8e6fd65cacd8fb14139afa104..279439d8615af14913a436b74409aa5109d04985
--- 1/NEWS
--- 2/NEWS
+++ b/NEWS
@@@ -32,22 -39,17 +32,28 @@@
      (Danack at basereality dot com)
    . Fixed bug #68925 (Mitigation for CVE-2015-0235 – GHOST: glibc gethostbyname
      buffer overflow). (Stas)
 -
 -- Date:
 -  . Fixed bug #45081 (strtotime incorrectly interprets SGT time zone). (Derick)
+   . Fixed bug #68942 (Use after free vulnerability in unserialize() with
+     DateTimeZone). (Stas)
 +  . Fixed Bug #67988 (htmlspecialchars() does not respect default_charset
 +    specified by ini_set) (Yasuo)
  
  - Dba:
    . Fixed bug #68711 (useless comparisons). (bugreports at internot dot info)
  
++- Enchant:
++  . Fixed bug #6855 (heap buffer overflow in enchant_broker_request_dict()).
++    (Antony)
++
 +- JSON:
 +  . Fixed bug #50224 (json_encode() does not always encode a float as a float)
 +    by adding JSON_PRESERVE_ZERO_FRACTION. (Juan Basso)
 +
  - Fileinfo:
    . Fixed bug #68827 (Double free with disabled ZMM). (Joshua Rogers)
 +  . Fixed bug #67647 (Bundled libmagic 5.17 does not detect quicktime files
 +    correctly). (Anatol)
 +  . Fixed bug #68731 (finfo_buffer doesn't extract the correct mime with some
 +    gifs). (Anatol)
  
  - FPM:
    . Fixed bug #66479 (Wrong response to FCGI_GET_VALUES). (Frank Stolle)

diff --cc ext/date/php_date.c
Simple merge