diff options
author | Christoph M. Becker <cmbecker69@gmx.de> | 2019-04-30 09:35:12 +0200 |
---|---|---|
committer | Christoph M. Becker <cmbecker69@gmx.de> | 2019-04-30 09:36:09 +0200 |
commit | d91b643c87cb6ff91ee1792ef430bfb92bf00581 (patch) | |
tree | da5176e2f7d05df7b7707789eb2140a9339d5135 | |
parent | 66b32f25d56147bbd8fc4733959389d30f6621af (diff) | |
parent | 1210c3b9608fe3d0534d3abc8d5381c5d67048a3 (diff) | |
download | php-git-d91b643c87cb6ff91ee1792ef430bfb92bf00581.tar.gz |
Merge branch 'PHP-7.2' into PHP-7.3
* PHP-7.2:
Update NEWS wrt. sec fixes
-rw-r--r-- | NEWS | 13 |
1 files changed, 11 insertions, 2 deletions
@@ -38,6 +38,10 @@ PHP NEWS . Fixed bug #77794 (Incorrect Date header format in built-in server). (kelunik) +- EXIF + . Fixed bug #77950 (Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG). + (CVE-2019-11036) (Stas) + - Interbase: . Fixed bug #72175 (Impossibility of creating multiple connections to Interbase with php 7.x). (Nikita) @@ -49,6 +53,9 @@ PHP NEWS - LDAP: . Fixed bug #77869 (Core dump when using server controls) (mcmic) +- Mail + . Fixed bug #77821 (Potential heap corruption in TSendMail()). (cmb) + - mbstring: . Implemented FR #72777 (Implement regex stack limits for mbregex functions). (Yasuo Ohgaki, Stas) @@ -110,8 +117,10 @@ PHP NEWS . Fixed bug #77578 (Crash when php unload). (cmb) - EXIF: - . Fixed bug #77753 (Heap-buffer-overflow in php_ifd_get32s). (Stas) - . Fixed bug #77831 (Heap-buffer-overflow in exif_iif_add_value). (Stas) + . Fixed bug #77753 (Heap-buffer-overflow in php_ifd_get32s). (CVE-2019-11034) + (Stas) + . Fixed bug #77831 (Heap-buffer-overflow in exif_iif_add_value). + (CVE-2019-11035) (Stas) - FPM: . Fixed bug #77677 (FPM fails to build on AIX due to missing WCOREDUMP). |