From 99319aad1dc33330fd682dde3e7f0388f9c41b86 Mon Sep 17 00:00:00 2001
From: Remi Collet <remi@remirepo.net>
Date: Fri, 14 Sep 2018 10:37:21 +0200
Subject: fix #76582: XSS due to the header Transfer-Encoding: chunked

---
 php.spec | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

(limited to 'php.spec')

diff --git a/php.spec b/php.spec
index ab7fee8..b072c74 100644
--- a/php.spec
+++ b/php.spec
@@ -140,7 +140,7 @@
 Summary: PHP scripting language for creating dynamic web sites
 Name: %{?scl_prefix}php
 Version: 5.5.38
-Release: 8%{?dist}
+Release: 9%{?dist}
 # All files licensed under PHP version 3.01, except
 # Zend is licensed under Zend
 # TSRM is licensed under BSD
@@ -249,6 +249,7 @@ Patch153: bug73773.patch
 Patch154: bug69090.patch
 Patch155: bug73549.patch
 Patch156: bug75981.patch
+Patch157: bug76582.patch
 
 # Security fixes (200+)
 
@@ -998,6 +999,7 @@ support for using the enchant library to PHP.
 %patch154 -p1 -b .bug69090
 %patch155 -p1 -b .bug73549
 %patch156 -p1 -b .bug75981
+%patch157 -p1 -b .bug75981
 : ------------------------
 
 # Fixes for tests
@@ -1909,6 +1911,9 @@ EOF
 
 
 %changelog
+* Fri Sep 14 2018 Remi Collet <remi@remirepo.net> - 5.5.38-9
+- fix #76582: XSS due to the header Transfer-Encoding: chunked
+
 * Thu Mar  1 2018 Remi Collet <remi@remirepo.net> - 5.5.38-8
 - fix #73549: Use after free when stream is passed to imagepng
 - fix #75981: stack-buffer-overflow while parsing HTTP response
-- 
cgit