diff options
| author | Remi Collet <remi@remirepo.net> | 2026-05-13 16:31:07 +0200 |
|---|---|---|
| committer | Remi Collet <remi@php.net> | 2026-05-13 16:31:07 +0200 |
| commit | 11b950e90bcd9f0f3a7906cd3f2ae0c2e323f860 (patch) | |
| tree | 625fdbf1da40e924f0daaf8e6a065643c9c08058 /php.spec | |
| parent | daf9b88c6cd0fe21b83f684e10dba7095d49605e (diff) | |
CVE-2026-6735
Fix Stale SOAP_GLOBAL(ref_map) pointer with Apache Map
CVE-2026-6722
Fix Use-after-free after header parsing failure with SOAP_PERSISTENCE_SESSION
CVE-2026-7261
Fix Broken Apache map value NULL check
CVE-2026-7262
Fix Signed integer overflow of char array offset
CVE-2026-7568
Diffstat (limited to 'php.spec')
| -rw-r--r-- | php.spec | 29 |
1 files changed, 26 insertions, 3 deletions
@@ -61,7 +61,7 @@ %global oraclelib 19.1 %global oracledir 19.24 %else -%global oraclever 23.6 +%global oraclever 23.26.2 %global oraclemax 24 %global oraclelib 23.1 %global oracledir 23 @@ -136,7 +136,7 @@ Summary: PHP scripting language for creating dynamic web sites Name: %{?scl_prefix}php Version: %{upver}%{?rcver:~%{rcver}} -Release: 45%{?dist} +Release: 46%{?dist} # All files licensed under PHP version 3.01, except # Zend is licensed under Zend # TSRM is licensed under BSD @@ -279,6 +279,12 @@ Patch273: php-cve-2024-11234.patch Patch274: php-cve-2024-8932.patch Patch275: php-cve-2024-11233.patch Patch276: php-ghsa-4w77-75f9-2c8w.patch +# from 8.2.31 +Patch277: php-cve-2026-6722.patch +Patch278: php-cve-2026-7261.patch +Patch279: php-cve-2026-7262.patch +Patch280: php-cve-2026-6735.patch +Patch281: php-cve-2026-7568.patch # Fixes for tests (300+) # Factory is droped from system tzdata @@ -1102,6 +1108,11 @@ sed -e 's/php-devel/%{?scl_prefix}php-devel/' -i scripts/phpize.in %patch -P274 -p1 -b .cve8932 %patch -P275 -p1 -b .cve11233 %patch -P276 -p1 -b .ghsa4w77 +%patch -P277 -p1 -b .cve6722 +%patch -P278 -p1 -b .cve7261 +%patch -P279 -p1 -b .cve7262 +%patch -P280 -p1 -b .cve6735 +%patch -P281 -p1 -b .cve7268 # Fixes for tests %patch -P300 -p1 -b .datetests @@ -1873,7 +1884,7 @@ cat << EOF WARNING : PHP 7.0 have reached its "End of Life" in December 2018. Even, if this package includes some of - the important security fixes, backported from 8.1, the + the important security fixes, backported from 8.2, the UPGRADE to a maintained version is very strongly RECOMMENDED. ===================================================================== @@ -2057,6 +2068,18 @@ EOF %changelog +* Tue May 12 2026 Remi Collet <remi@remirepo.net> - 7.0.33-46 +- Fix XSS within status endpoint + CVE-2026-6735 +- Fix Stale SOAP_GLOBAL(ref_map) pointer with Apache Map + CVE-2026-6722 +- Fix Use-after-free after header parsing failure with SOAP_PERSISTENCE_SESSION + CVE-2026-7261 +- Fix Broken Apache map value NULL check + CVE-2026-7262 +- Fix Signed integer overflow of char array offset + CVE-2026-7568 + * Tue Nov 26 2024 Remi Collet <remi@remirepo.net> - 7.0.33-45 - Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface GHSA-4w77-75f9-2c8w |