From b7dc0096c61deb8d3f7fb61d636b874ce1452197 Mon Sep 17 00:00:00 2001
From: Remi Collet <fedora@famillecollet.com>
Date: Sat, 18 Feb 2017 08:58:42 +0100
Subject: PHP 5.6.38-7 (security fix from 5.6.30)

---
 php55.spec | 21 ++++++++++++++++++++-
 1 file changed, 20 insertions(+), 1 deletion(-)

(limited to 'php55.spec')

diff --git a/php55.spec b/php55.spec
index e84b8b7..98b7669 100644
--- a/php55.spec
+++ b/php55.spec
@@ -141,7 +141,7 @@
 Summary: PHP scripting language for creating dynamic web sites
 Name: php
 Version: 5.5.38
-Release: 6%{?dist}
+Release: 7%{?dist}
 # All files licensed under PHP version 3.01, except
 # Zend is licensed under Zend
 # TSRM is licensed under BSD
@@ -252,6 +252,11 @@ Patch146: bug73144.patch
 Patch147: bug73418.patch
 Patch148: bug73356.patch
 Patch149: bug73631.patch
+Patch150: bug73737.patch
+Patch151: bug73764.patch
+Patch152: bug73768.patch
+Patch153: bug73773.patch
+Patch154: bug69090.patch
 
 # Security fixes (200+)
 
@@ -1067,6 +1072,11 @@ rm -rf ext/json
 %patch147 -p1 -b .bug73418
 %patch148 -p1 -b .bug73356
 %patch149 -p1 -b .bug73631
+%patch150 -p1 -b .bug73737
+%patch151 -p1 -b .bug73767
+%patch152 -p1 -b .bug73768
+%patch153 -p1 -b .bug73773
+%patch154 -p1 -b .bug69090
 
 # Fixes for tests
 %patch300 -p1 -b .datetests
@@ -2089,6 +2099,15 @@ EOF
 
 
 %changelog
+* Sat Feb 18 2017 Remi Collet <remi@remirepo.net> - 5.5.38-7
+- fix #73737: FPE when parsing a tag format
+  CVE-2016-10158
+- fix #73764: int overflows in phar
+  CVE-2016-10159
+- fix #73768: Memory corruption when loading hostile phar
+  CVE-2016-10160
+- fix #69090: check cached files permissions
+
 * Sat Dec 10 2016 Remi Collet <remi@remirepo.net> - 5.5.38-6
 - fix #73631: Invalid read when wddx decodes empty boolean element
   CVE-2016-9935
-- 
cgit