* [Buildroot] [PATCH] php: security bump to version 5.5.16
@ 2014-08-22 13:49 Gustavo Zacarias
2014-08-25 17:50 ` Thomas Petazzoni
0 siblings, 1 reply; 2+ messages in thread
From: Gustavo Zacarias @ 2014-08-22 13:49 UTC (permalink / raw)
To: buildroot
Fixes:
CVE-2014-3538 - Extensive backtracking in rule regular expression
CVE-2014-3587 - Segfault in cdf.c
CVE-2014-2497 - php-gd 'c_color' NULL pointer dereference
CVE-2014-5120 - Null byte injection possible with imagexxx functions
CVE-2014-3597 - segfault in dns_get_record
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
---
package/php/php.mk | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/package/php/php.mk b/package/php/php.mk
index de7d668..d174533 100644
--- a/package/php/php.mk
+++ b/package/php/php.mk
@@ -4,7 +4,7 @@
#
################################################################################
-PHP_VERSION = 5.5.15
+PHP_VERSION = 5.5.16
PHP_SITE = http://www.php.net/distributions
PHP_INSTALL_STAGING = YES
PHP_INSTALL_STAGING_OPT = INSTALL_ROOT=$(STAGING_DIR) install
--
1.8.5.5
^ permalink raw reply related [flat|nested] 2+ messages in thread
* [Buildroot] [PATCH] php: security bump to version 5.5.16
2014-08-22 13:49 [Buildroot] [PATCH] php: security bump to version 5.5.16 Gustavo Zacarias
@ 2014-08-25 17:50 ` Thomas Petazzoni
0 siblings, 0 replies; 2+ messages in thread
From: Thomas Petazzoni @ 2014-08-25 17:50 UTC (permalink / raw)
To: buildroot
Dear Gustavo Zacarias,
On Fri, 22 Aug 2014 10:49:03 -0300, Gustavo Zacarias wrote:
> Fixes:
> CVE-2014-3538 - Extensive backtracking in rule regular expression
> CVE-2014-3587 - Segfault in cdf.c
> CVE-2014-2497 - php-gd 'c_color' NULL pointer dereference
> CVE-2014-5120 - Null byte injection possible with imagexxx functions
> CVE-2014-3597 - segfault in dns_get_record
>
> Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
> ---
> package/php/php.mk | 2 +-
> 1 file changed, 1 insertion(+), 1 deletion(-)
Applied to the master branch, thanks.
Thomas
--
Thomas Petazzoni, CTO, Free Electrons
Embedded Linux, Kernel and Android engineering
http://free-electrons.com
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2014-08-25 17:50 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2014-08-22 13:49 [Buildroot] [PATCH] php: security bump to version 5.5.16 Gustavo Zacarias
2014-08-25 17:50 ` Thomas Petazzoni
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.