diff options
author | Remi Collet <fedora@famillecollet.com> | 2016-05-06 08:50:24 +0200 |
---|---|---|
committer | Remi Collet <fedora@famillecollet.com> | 2016-05-06 08:50:24 +0200 |
commit | 47446838b70413bf7cc52f145c523b56a80602b3 (patch) | |
tree | 9ff3664df534eb54c95e8122ed03768d772dece5 | |
parent | 493af60df179835f644a48a4c603c324eaec65da (diff) |
php 5.4: add CVE refs
-rw-r--r-- | php54.spec | 17 |
1 files changed, 9 insertions, 8 deletions
@@ -1807,17 +1807,18 @@ fi %changelog * Tue Apr 26 2016 Remi Collet <remi@fedoraproject.org> 5.4.45-8 -- Fix #64938: libxml_disable_entity_loader setting is shared - between threads CVE-2015-8866 +- Fix #64938: libxml_disable_entity_loader setting is shared between threads + CVE-2015-8866 - Fix #71912: libgd signedness vulnerability CVE-2016-3074 -- Fix #72061: Out-of-bounds reads in zif_grapheme_stripos - with negative offset -- Fix #72093: bcpowmod accepts negative scale and corrupts - _one_ definition -- Fix #72094: Out of bounds heap read access in exif - header processing +- Fix #72061: Out-of-bounds reads in zif_grapheme_stripos with negative offset + CVE-2016-4540 CVE-2016-4541 +- Fix #72093: bcpowmod accepts negative scale and corrupts _one_ definition + CVE-2016-4537 CVE-2016-4538 +- Fix #72094: Out of bounds heap read access in exif header processing + CVE-2016-4542 CVE-2016-4543 CVE-2016-4544 - Fix #72099: xml_parse_into_struct segmentation fault + CVE-2016-4539 * Tue Mar 29 2016 Remi Collet <remi@fedoraproject.org> 5.4.45-7 - Fix #71860: Require valid paths for phar filenames |