diff options
author | Lior Kaplan <kaplanlior@gmail.com> | 2015-05-22 11:15:36 +0300 |
---|---|---|
committer | Lior Kaplan <kaplanlior@gmail.com> | 2015-05-22 11:15:36 +0300 |
commit | f736934af08d8cef65860bd1a0bdf12f3630ae39 (patch) | |
tree | 630d3b7f421a3efcbd3fda3e4ff5697f0321b28e | |
parent | 68e368ed347a4e11804dad5a87f088e844b8dde3 (diff) | |
download | php-git-f736934af08d8cef65860bd1a0bdf12f3630ae39.tar.gz |
Add CVE for bugs in 5.6.9
-rw-r--r-- | NEWS | 15 |
1 files changed, 9 insertions, 6 deletions
@@ -39,15 +39,17 @@ PHP NEWS (Nikita) . Fixed bug #69472 (php_sys_readlink ignores misc errors from GetFinalPathNameByHandleA). (Jan Starke) - . Fixed bug #69364 (PHP Multipart/form-data remote dos Vulnerability). (Stas) + . Fixed bug #69364 (PHP Multipart/form-data remote dos Vulnerability). + (CVE-2015-4024) (Stas) . Fixed bug #69403 (str_repeat() sign mismatch based memory corruption). (Stas) - . Fixed bug #69418 (CVE-2006-7243 fix regressions in 5.4+). (Stas) + . Fixed bug #69418 (CVE-2006-7243 fix regressions in 5.4+). (CVE-2015-4025) + (Stas) . Fixed bug #69522 (heap buffer overflow in unpack()). (Stas) - FTP: . Fixed bug #69545 (Integer overflow in ftp_genlist() resulting in heap - overflow). (Stas) + overflow). (CVE-2015-4022) (Stas) - ODBC: . Fixed bug #69354 (Incorrect use of SQLColAttributes with ODBC 3.0). @@ -62,14 +64,15 @@ PHP NEWS (Daniel Lowrey) - PCNTL: - . Fixed bug #68598 (pcntl_exec() should not allow null char). (Stas) + . Fixed bug #68598 (pcntl_exec() should not allow null char). (CVE-2015-4026) + (Stas) - PCRE - . Upgraded pcrelib to 8.37. + . Upgraded pcrelib to 8.37. (CVE-2015-2325, CVE-2015-2326) - Phar: . Fixed bug #69453 (Memory Corruption in phar_parse_tarfile when entry - filename starts with null). (Stas) + filename starts with null). (CVE-2015-4021) (Stas) 16 Apr 2015, PHP 5.6.8 |