FEDORA-2020-96124cc236 created by remi 4 months ago for Fedora 32
stable

PHP version 7.4.9 (06 Aug 2020)

Apache:

  • Fixed bug #79030 (Upgrade apache2handler's php_apache_sapi_get_request_time to return usec). (Herbert256)

Core:

  • Fixed bug #79740 (serialize() and unserialize() methods can not be called statically). (Nikita)
  • Fixed bug #79783 (Segfault in php_str_replace_common). (Nikita)
  • Fixed bug #79778 (Assertion failure if dumping closure with unresolved static variable). (Nikita)
  • Fixed bug #79779 (Assertion failure when assigning property of string offset by reference). (Nikita)
  • Fixed bug #79792 (HT iterators not removed if empty array is destroyed). (Nikita)
  • Fixed bug #78598 (Changing array during undef index RW error segfaults). (Nikita)
  • Fixed bug #79784 (Use after free if changing array during undef var during array write fetch). (Nikita)
  • Fixed bug #79793 (Use after free if string used in undefined index warning is changed). (Nikita)
  • Fixed bug #79862 (Public non-static property in child should take priority over private static). (Nikita)
  • Fixed bug #79877 (getimagesize function silently truncates after a null byte) (cmb)

Fileinfo:

  • Fixed bug #79756 (finfo_file crash (FILEINFO_MIME)). (cmb)

FTP:

  • Fixed bug #55857 (ftp_size on large files). (cmb)

Mbstring:

  • Fixed bug #79787 (mb_strimwidth does not trim string). (XXiang)

Phar:

  • Fixed bug #79797 (Use of freed hash key in the phar_parse_zipfile function). (CVE-2020-7068) (cmb)

Reflection:

  • Fixed bug #79487 (::getStaticProperties() ignores property modifications). (cmb, Nikita)
  • Fixed bug #69804 (::getStaticPropertyValue() throws on protected props). (cmb, Nikita)
  • Fixed bug #79820 (Use after free when type duplicated into ReflectionProperty gets resolved). (Christopher Broadbent)

Standard:

  • Fixed bug #70362 (Can't copy() large 'data://' with open_basedir). (cmb)
  • Fixed bug #78008 (dns_check_record() always return true on Alpine). (Andy Postnikov)
  • Fixed bug #79839 (array_walk() does not respect property types). (Nikita)

How to install

sudo dnf upgrade --advisory=FEDORA-2020-96124cc236

This update has been submitted for testing by remi.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update's test gating status has been changed to 'waiting'.

4 months ago

remi edited this update.

4 months ago

This update's test gating status has been changed to 'ignored'.

4 months ago

This update has been pushed to testing.

4 months ago

remi edited this update.

4 months ago

This update can be pushed to stable now if the maintainer wishes

4 months ago

This update has been submitted for stable by bodhi.

4 months ago

This update has been pushed to stable.

4 months ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
4 months ago
in testing
4 months ago
in stable
4 months ago
modified
4 months ago
BZ#1868109 CVE-2020-7068 php: Use of freed hash key in the phar_parse_zipfile function
0
0
BZ#1868110 CVE-2020-7068 php: Use of freed hash key in the phar_parse_zipfile function [fedora-all]
0
0

Automated Test Results