From 0a0c58dff2291870b56cec15fabf27119179c997 Mon Sep 17 00:00:00 2001
From: Remi Collet <remi@remirepo.net>
Date: Thu, 1 Mar 2018 11:00:36 +0100
Subject: fix #73549: Use after free when stream is passed to imagepng fix
 #75981: stack-buffer-overflow while parsing HTTP response

---
 php55.spec | 18 ++++++++++++++----
 1 file changed, 14 insertions(+), 4 deletions(-)

(limited to 'php55.spec')

diff --git a/php55.spec b/php55.spec
index 98b7669..9477b1c 100644
--- a/php55.spec
+++ b/php55.spec
@@ -141,7 +141,7 @@
 Summary: PHP scripting language for creating dynamic web sites
 Name: php
 Version: 5.5.38
-Release: 7%{?dist}
+Release: 8%{?dist}
 # All files licensed under PHP version 3.01, except
 # Zend is licensed under Zend
 # TSRM is licensed under BSD
@@ -257,6 +257,8 @@ Patch151: bug73764.patch
 Patch152: bug73768.patch
 Patch153: bug73773.patch
 Patch154: bug69090.patch
+Patch155: bug73549.patch
+Patch156: bug75981.patch
 
 # Security fixes (200+)
 
@@ -1077,6 +1079,8 @@ rm -rf ext/json
 %patch152 -p1 -b .bug73768
 %patch153 -p1 -b .bug73773
 %patch154 -p1 -b .bug69090
+%patch155 -p1 -b .bug73549
+%patch156 -p1 -b .bug75981
 
 # Fixes for tests
 %patch300 -p1 -b .datetests
@@ -1940,11 +1944,13 @@ fi
 
 %posttrans common
 cat << EOF
+==========================================================================
 
-WARNING : PHP 5.5 have reached its "End of Life" in July 2016.
-Even, if this package includes some security fix, backported from 5.6,
-The upgrade to a maintained version is very strongly recommended.
+ WARNING : PHP 5.5 have reached its "End of Life" in July 2016.
+ Even, if this package includes some security fix, backported from 5.6,
+ The UPGRADE to a maintained version is very strongly RECOMMENDED.
 
+==========================================================================
 EOF
 
 
@@ -2099,6 +2105,10 @@ EOF
 
 
 %changelog
+* Thu Mar  1 2018 Remi Collet <remi@remirepo.net> - 5.5.38-8
+- fix #73549: Use after free when stream is passed to imagepng
+- fix #75981: stack-buffer-overflow while parsing HTTP response
+
 * Sat Feb 18 2017 Remi Collet <remi@remirepo.net> - 5.5.38-7
 - fix #73737: FPE when parsing a tag format
   CVE-2016-10158
-- 
cgit