From 6c885ac54b66d463e70b667123dae573f849a3b5 Mon Sep 17 00:00:00 2001
From: Remi Collet <fedora@famillecollet.com>
Date: Mon, 19 Sep 2016 15:47:58 +0200
Subject: PHP 5.4.45 with "some" backports from 5.6.26

---
 php54.spec | 38 +++++++++++++++++++++++++++-----------
 1 file changed, 27 insertions(+), 11 deletions(-)

(limited to 'php54.spec')

diff --git a/php54.spec b/php54.spec
index 582c8fb..6c5844b 100644
--- a/php54.spec
+++ b/php54.spec
@@ -98,7 +98,7 @@
 Summary: PHP scripting language for creating dynamic web sites
 Name: php
 Version: 5.4.45
-Release: 11%{?dist}.1
+Release: 12%{?dist}
 # All files licensed under PHP version 3.01, except
 # Zend is licensed under Zend
 # TSRM is licensed under BSD
@@ -214,6 +214,10 @@ Patch253: bug72613.patch
 Patch254: bug72618.patch
 Patch255: bug72519.patch
 Patch256: bug72735.patch
+Patch257: bug72627.patch
+Patch258: bug72926.patch
+Patch259: bug73035.patch
+Patch260: bug72928.patch
 
 # Fixes for tests
 # no_NO issue
@@ -978,6 +982,10 @@ rm -f ext/json/utf8_to_utf16.*
 %patch254 -p1 -b .bug72618
 %patch255 -p1 -b .bug72519
 %patch256 -p1 -b .bug72735
+%patch257 -p1 -b .bug72627
+%patch258 -p1 -b .bug72926
+%patch259 -p1 -b .bug73035
+%patch260 -p1 -b .bug72928
 
 # Fixes for tests
 %patch301 -p1 -b .datetests2
@@ -1638,17 +1646,18 @@ rm -f README.{Zeus,QNX,CVS-RULES}
 cat << EOF
 ==========================================================================
 
-WARNING : PHP 5.4 have reached its "End of Life".
-Even, if this package includes some security fix, backported from 5.5,
-The upgrade to a maintained version is very strongly recommended.
+ WARNING : PHP 5.4 have reached its "End of Life" in September 2015.
+ Even, if this package includes some of the important security fix,
+ backported from 5.5 or 5.6,
+ The UPGRADE to a maintained version is very strongly RECOMMENDED.
 
-WARNING : These php-* RPMs are not official Fedora / Red Hat build and
-overrides the official ones. Don't file bugs on Fedora Project nor Red Hat.
+ WARNING : These php-* RPMs are not official Fedora / Red Hat build and
+ overrides the official ones. Don't file bugs on Fedora Project nor Red Hat.
 
-Use dedicated forum at http://forum.remirepo.net/
-%if %{?fedora}%{!?fedora:99} < 21
-WARNING : Fedora %{fedora} is now EOL :
-You should consider upgrading to a supported release
+ Use dedicated forum at http://forum.remirepo.net/
+%if %{?fedora}%{!?fedora:99} < 23
+ WARNING : Fedora %{fedora} is now EOL :
+ You should consider upgrading to a supported release
 %endif
 ==========================================================================
 EOF
@@ -1867,7 +1876,14 @@ fi
 
 
 %changelog
-* Fri Aug  5 2016 Remi Collet <remi@fedoraproject.org> 5.4.45-11.1
+* Mon Sep 19 2016 Remi Collet <remi@fedoraproject.org> 5.4.45-12
+- fix #72627: Memory Leakage In exif_process_IFD_in_TIFF
+  CVE-2016-7128
+- fix #72926: Uninitialized Thumbail Data Leads To Memory Leakage
+  in exif_process_IFD_in_TIFF
+- fix #73035: Out of bound when verify signature of tar phar
+- fix #72928: Out of bound when verify signature of zip phar
+  CVE-2016-7414
 - fix #72735 regression in exif maker note parser
 
 * Fri Jul 22 2016 Remi Collet <remi@fedoraproject.org> 5.4.45-11
-- 
cgit