summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorRemi Collet <fedora@famillecollet.com>2016-05-06 08:50:24 +0200
committerRemi Collet <fedora@famillecollet.com>2016-05-06 08:50:24 +0200
commit513a4869326566f785a234bf584848af46e663c8 (patch)
tree78c37538b396e87eb7aff7bfe155876ff25d11b3
parentefe21f2e9d689a2a50c0bb917fa8a67cc091af31 (diff)
php 5.4: add CVE refs
Diffstat
-rw-r--r--php.spec17
1 files changed, 9 insertions, 8 deletions
diff --git a/php.spec b/php.spec
index cbff2dd..9ab782e 100644
--- a/php.spec
+++ b/php.spec
@@ -1694,17 +1694,18 @@ EOF
%changelog
* Tue Apr 26 2016 Remi Collet <remi@fedoraproject.org> 5.4.45-8
-- Fix #64938: libxml_disable_entity_loader setting is shared
- between threads CVE-2015-8866
+- Fix #64938: libxml_disable_entity_loader setting is shared between threads
+ CVE-2015-8866
- Fix #71912: libgd signedness vulnerability
CVE-2016-3074
-- Fix #72061: Out-of-bounds reads in zif_grapheme_stripos
- with negative offset
-- Fix #72093: bcpowmod accepts negative scale and corrupts
- _one_ definition
-- Fix #72094: Out of bounds heap read access in exif
- header processing
+- Fix #72061: Out-of-bounds reads in zif_grapheme_stripos with negative offset
+ CVE-2016-4540 CVE-2016-4541
+- Fix #72093: bcpowmod accepts negative scale and corrupts _one_ definition
+ CVE-2016-4537 CVE-2016-4538
+- Fix #72094: Out of bounds heap read access in exif header processing
+ CVE-2016-4542 CVE-2016-4543 CVE-2016-4544
- Fix #72099: xml_parse_into_struct segmentation fault
+ CVE-2016-4539
* Tue Mar 29 2016 Remi Collet <remi@fedoraproject.org> 5.4.45-7
- Fix #71860: Require valid paths for phar filenames
generated by cgit (git 2.34.1) at 2024-04-26 12:42:05 +0000