stable

php-7.2.13-2.fc28

FEDORA-2018-dfe1f0bac6 created by remi 6 years ago for Fedora 28

PHP version 7.2.13 (06 Dec 2018)

ftp:

  • Fixed bug #77151 (ftp_close(): SSL_read on shutdown). (Remi)

CLI:

  • Fixed bug #77111 (php-win.exe corrupts unicode symbols from cli parameters). (Anatol)

Fileinfo:

  • Fixed bug #77095 (slowness regression in 7.2/7.3 (compared to 7.1)). (Anatol)

iconv:

  • Fixed bug #77147 (Fixing 60494 ignored ICONV_MIME_DECODE_CONTINUE_ON_ERROR). (cmb)

Core:

  • Fixed bug #77231 (Segfault when using convert.quoted-printable-encode filter). (Stas)

IMAP:

  • Fixed bug #77153 (imap_open allows to run arbitrary shell commands via mailbox parameter). (Stas)

ODBC:

  • Fixed bug #77079 (odbc_fetch_object has incorrect type signature). (Jon Allen)

Opcache:

  • Fixed bug #77058 (Type inference in opcache causes side effects). (Nikita)
  • Fixed bug #77092 (array_diff_key() - segmentation fault). (Nikita)

Phar:

  • Fixed bug #77022 (PharData always creates new files with mode 0666). (Stas)
  • Fixed bug #77143 (Heap Buffer Overflow (READ: 4) in phar_parse_pharfile). (Stas)

PGSQL:

  • Fixed bug #77047 (pg_convert has a broken regex for the 'TIME WITHOUT TIMEZONE' data type). (Andy Gajetzki)

SOAP:

  • Fixed bug #50675 (SoapClient can't handle object references correctly). (Cameron Porter)
  • Fixed bug #76348 (WSDL_CACHE_MEMORY causes Segmentation fault). (cmb)
  • Fixed bug #77141 (Signedness issue in SOAP when precision=-1). (cmb)

Sockets:

  • Fixed bug #67619 (Validate length on socket_write). (thiagooak)

From upstream

IMAP

  • Fix #77020 null pointer dereference in imap_mail CVE-2018-19935

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2018-dfe1f0bac6

This update has been submitted for testing by remi.

6 years ago

This update has been pushed to testing.

6 years ago
User Icon carlwgeorge provided feedback 6 years ago
karma

remi edited this update.

New build(s):

  • php-7.2.13-2.fc28

Removed build(s):

  • php-7.2.13-1.fc28

Karma has been reset.

6 years ago

This update has been submitted for testing by remi.

6 years ago

This update has been pushed to testing.

6 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

6 years ago

This update has been submitted for batched by remi.

6 years ago

This update has been submitted for stable by remi.

6 years ago

This update has been pushed to stable.

6 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
6 years ago
in testing
6 years ago
in stable
6 years ago
modified
6 years ago
Builds
1
php-7.2.13-2.fc28
BZ#1654228 CVE-2018-19518 php: imap_open() allows running arbitrary shell commands via mailbox parameter
0
0
BZ#1654230 CVE-2018-19518 php: imap_open allows running arbitrary shell commands via mailbox parameter [fedora-all]
0
0
php-7.2.13-2.fc28

Automated Test Results

Copyright © 2007-2025 Red Hat, Inc. and others.

Running bodhi-server 8.3.0 on bodhi-web-177-ngwjn.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy