SPECS (AC-branch): php4.spec - fix for two security issues: XSS in...

adamg adamg at pld-linux.org
Thu Apr 20 19:14:57 CEST 2006


Author: adamg                        Date: Thu Apr 20 17:14:57 2006 GMT
Module: SPECS                         Tag: AC-branch
---- Log message:
- fix for two security issues: XSS in phpinfo() and binary safeness in
  html_decode
- release 10; STBR

---- Files affected:
SPECS:
   php4.spec (1.528 -> 1.528.2.1) 

---- Diffs:

================================================================
Index: SPECS/php4.spec
diff -u SPECS/php4.spec:1.528 SPECS/php4.spec:1.528.2.1
--- SPECS/php4.spec:1.528	Thu Mar 23 20:10:04 2006
+++ SPECS/php4.spec	Thu Apr 20 19:14:51 2006
@@ -77,7 +77,7 @@
 Summary(uk):	PHP ÷ĹŇÓŚ§ 4 - ÍĎ×Á ĐŇĹĐŇĎĂĹÓŐ×ÁÎÎŃ HTML-ĆÁĘĚŚ×, ×ÉËĎÎŐ×ÁÎÁ ÎÁ ÓĹŇ×ĹŇŚ
 Name:		php4
 Version:	4.4.2
-%define	_rel 9
+%define	_rel 10
 Release:	%{_rel}%{?with_hardening:hardened}
 Epoch:		3
 License:	PHP
@@ -135,6 +135,8 @@
 Patch38:	%{name}-ini-search-path.patch
 Patch39:	%{name}-bug-36017-and-session-chars.patch
 Patch40:	%{name}-openssl-huge-hack.patch
+Patch41:	%{name}-CVE-2006-0996.patch
+Patch42:	%{name}-CVE-2006-1490.patch
 URL:		http://www.php.net/
 %{?with_interbase:%{!?with_interbase_inst:BuildRequires:	Firebird-devel >= 1.0.2.908-2}}
 %{?with_pspell:BuildRequires:	aspell-devel >= 2:0.50.0}
@@ -1677,6 +1679,8 @@
 %patch38 -p1
 %patch39 -p1
 %patch40 -p1
+%patch41 -p1
+%patch42 -p1
 
 %if %{with hardening}
 zcat %{SOURCE9} | patch -p1
@@ -3246,6 +3250,11 @@
 All persons listed below can be reached at <cvs_login>@pld-linux.org
 
 $Log$
+Revision 1.528.2.1  2006/04/20 17:14:51  adamg
+- fix for two security issues: XSS in phpinfo() and binary safeness in
+  html_decode
+- release 10; STBR
+
 Revision 1.528  2006/03/23 19:10:04  glen
 - common dirs moved to php-dirs package, rel 9
 
================================================================

---- CVS-web:
    http://cvs.pld-linux.org/SPECS/php4.spec?r1=1.528&r2=1.528.2.1&f=u



More information about the pld-cvs-commit mailing list