FEDORA-2017-5ade380ab2 created by remi 2 years ago for Fedora 24
stable

PHP version 5.6.31 (06 Jul 2017)

Core:

  • Fixed bug #73807 (Performance problem with processing post request over 2000000 chars). (Nikita)
  • Fixed bug #74111 (Heap buffer overread (READ: 1) finish_nested_data from unserialize). (Nikita)
  • Fixed bug #74603 (PHP INI Parsing Stack Buffer Overflow Vulnerability). (Stas)
  • Fixed bug #74819 (wddx_deserialize() heap out-of-bound read via php_parse_date()). (Derick)

mbstring:

  • Add oniguruma upstream fix (CVE-2017-9224, CVE-2017-9226, CVE-2017-9227, CVE-2017-9228, CVE-2017-9229) (Remi, Mamoru TASAKA)

OpenSSL:

  • Fixed bug #74651 (negative-size-param (-1) in memcpy in zif_openssl_seal()). (Stas)

WDDX:

  • Fixed bug #74145 (wddx parsing empty boolean tag leads to SIGSEGV). (Stas)

How to install

sudo dnf upgrade --advisory=FEDORA-2017-5ade380ab2

This update has been submitted for testing by remi.

2 years ago

This update has been pushed to testing.

2 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

2 years ago

This update has been submitted for stable by remi.

2 years ago

This update has been pushed to stable.

2 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
2 years ago
in testing
2 years ago
in stable
2 years ago

Automated Test Results