From 65638dbd3e83c7f78568c00c7013f568cf53606b Mon Sep 17 00:00:00 2001
From: Remi Collet <remi@remirepo.net>
Date: Fri, 14 Sep 2018 11:22:08 +0200
Subject: fix #76582: XSS due to the header Transfer-Encoding: chunked

---
 php.spec | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

(limited to 'php.spec')

diff --git a/php.spec b/php.spec
index 81f8257..7deb454 100644
--- a/php.spec
+++ b/php.spec
@@ -119,7 +119,7 @@
 Summary: PHP scripting language for creating dynamic web sites
 Name: %{?scl_prefix}php
 Version: 5.4.45
-Release: 14%{?dist}
+Release: 15%{?dist}
 # All files licensed under PHP version 3.01, except
 # Zend is licensed under Zend
 # TSRM is licensed under BSD
@@ -251,6 +251,7 @@ Patch267: bug73869.patch
 Patch268: bug74435.patch
 Patch269: bug75571.patch
 Patch270: bug75981.patch
+Patch271: bug76582.patch
 
 # Fixes for tests (300+)
 # Backported from 5.5
@@ -959,6 +960,7 @@ support for using the enchant library to PHP.
 %patch268 -p1 -b .bug74435
 %patch269 -p1 -b .bug75571
 %patch270 -p1 -b .bug75981
+%patch271 -p1 -b .bug76582
 : ------------------------
 #exit 1
 
@@ -1796,6 +1798,9 @@ EOF
 
 
 %changelog
+* Fri Sep 14 2018 Remi Collet <remi@remirepo.net> - 5.4.45-15
+- fix #76582: XSS due to the header Transfer-Encoding: chunked
+
 * Thu Mar  1 2018 Remi Collet <remi@remirepo.net> - 5.4.45-14
 - fix #73549: Use after free when stream is passed to imagepng
 - fix #73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx()
-- 
cgit