From 9a969ef7708b752e35f825190735ce20e6031302 Mon Sep 17 00:00:00 2001 From: Remi Collet Date: Fri, 18 Mar 2016 13:48:58 +0100 Subject: php 5.4: add 3 CVE ref in changelog --- php.spec | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/php.spec b/php.spec index f0d84ad..820c109 100644 --- a/php.spec +++ b/php.spec @@ -1687,6 +1687,7 @@ EOF - Fix #71039: exec functions ignore length but look for NULL termination - Fix #71720: heap bufferover flow in escapeshell functions - Fix #71488: Stack overflow when decompressing tar archives + CVE-2016-2554 - upgrade bundled PCRE to 8.38 * Wed Jan 6 2016 Remi Collet 5.4.45-3 @@ -1698,8 +1699,9 @@ EOF * Wed Sep 30 2015 Remi Collet 5.4.45-2 - Fix bug #70433 - Uninitialized pointer in phar_make_dirstream - when zip entry filename is "/" + when zip entry filename is "/" CVE-2015-7804 - Fix bug #69720: Null pointer dereference in phar_get_fp_offset() + CVE-2015-7803 * Wed Sep 2 2015 Remi Collet 5.4.45-1 - Update to 5.4.45 -- cgit