[packages/php/PHP_5_5] 5.5.37 - http://php.net/releases/5_5_37.php

glen glen at pld-linux.org
Mon Jun 27 00:29:22 CEST 2016 

commit 26f7324b87b1faada623077a1710069c7189ed72
Author: Elan Ruusamäe <glen at delfi.ee>
Date:   Mon Jun 27 01:26:22 2016 +0300

    5.5.37 - http://php.net/releases/5_5_37.php
    
    - Fixed bug #66387 (Stack overflow with imagefilltoborder). (CVE-2015-8874)
    - Fixed bug #72339 (Integer Overflow in _gd2GetHeader() resulting in heap overflow). (CVE-2016-5766)
    - Fixed bug #72446 (Integer Overflow in gdImagePaletteToTrueColor() resulting in heap overflow). (CVE-2016-5767)
    - Fixed bug #72402 (_php_mb_regex_ereg_replace_exec - double free). (CVE-2016-5768)
    - Fixed bug #72455 (Heap Overflow due to integer overflows). (CVE-2016-5769)
    - Fixed bug #72262 (int/size_t confusion in SplFileObject::fread). (CVE-2016-5770)
    - Fixed bug #72433 (Use After Free Vulnerability in PHP's GC algorithm and unserialize). (CVE-2016-5771)
    - Fixed bug #72340 (Double Free Courruption in wddx_deserialize). (CVE-2016-5772)
    - Fixed bug #72434 (ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize). (CVE-2016-5773)

 php.spec | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
---
diff --git a/php.spec b/php.spec
index 0ba9feb..ad0b3b6 100644
--- a/php.spec
+++ b/php.spec
@@ -137,7 +137,7 @@ Summary(pt_BR.UTF-8):	A linguagem de script PHP
 Summary(ru.UTF-8):	PHP Версии 5 - язык препроцессирования HTML-файлов, выполняемый на сервере
 Summary(uk.UTF-8):	PHP Версії 5 - мова препроцесування HTML-файлів, виконувана на сервері
 Name:		%{orgname}%{php_suffix}
-Version:	5.5.36
+Version:	5.5.37
 Release:	%{rel}%{?with_type_hints:.th}
 Epoch:		4
 # All files licensed under PHP version 3.01, except
@@ -146,7 +146,7 @@ Epoch:		4
 License:	PHP 3.01 and Zend and BSD
 Group:		Libraries
 Source0:	http://www.php.net/distributions/%{orgname}-%{version}.tar.xz
-# Source0-md5:	1db93aa3a3cfd7cfe0f41f3697db35a4
+# Source0-md5:	707a528176283b8eecba1fa3c7123dd2
 Source2:	%{orgname}-mod_%{orgname}.conf
 Source3:	%{orgname}-cgi-fcgi.ini
 Source4:	%{orgname}-apache.ini
================================================================

---- gitweb:

http://git.pld-linux.org/gitweb.cgi/packages/php.git/commitdiff/26f7324b87b1faada623077a1710069c7189ed72

More information about the pld-cvs-commit mailing list