Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGIHEADmaster | Remi Collet | 2024-09-27 | 1 | -4/+3 |
| | | | | | | | | | | CVE-2024-4577 Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 Fix Erroneous parsing of multipart form data CVE-2024-8925 | ||||
* | use oracle client library version 21.13 on x86_64, 19.19 on aarch64 | Remi Collet | 2024-04-10 | 1 | -2/+2 |
| | | | | | | | Fix __Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 Fix password_verify can erroneously return true opening ATO risk CVE-2024-3096 | ||||
* | fix #81744: Password_verify() always return true with some hash | Remi Collet | 2023-02-15 | 1 | -11/+5 |
| | | | | | | | | CVE-2023-0567 fix #81746: 1-byte array overrun in common path resolve code CVE-2023-0568 fix DOS vulnerability when parsing multipart request body CVE-2023-0662 | ||||
* | mbstring: | Remi Collet | 2020-01-21 | 1 | -1/+1 |
| | | | | | | | | Fix #79037 global buffer-overflow in mbfl_filt_conv_big5_wchar CVE-2020-7060 standard: Fix #79099 OOB read in php_strip_tags_ex CVE-2020-7059 | ||||
* | Fix CVE-2019-11043 env_path_info underflow in fpm_main.c | Remi Collet | 2019-10-22 | 1 | -3/+5 |
| | |||||
* | From 7.1.32 | Remi Collet | 2019-08-28 | 1 | -2/+2 |
| | | | | | | | - mbstring: Fix CVE-2019-13224 don't allow different encodings for onig_new_deluxe - pcre: Fix #75457 heap use-after-free in pcrelib | ||||
* | - exif: | Remi Collet | 2019-07-30 | 1 | -2/+1 |
| | | | | | | | | | Fix #78256 heap-buffer-overflow on exif_process_user_comment CVE-2019-11042 Fix #78222 heap-buffer-overflow on exif_scan_thumbnail CVE-2019-11041 - phar: Fix #77919 Potential UAF in Phar RSHUTDOWN | ||||
* | - iconv: | Remi Collet | 2019-05-28 | 1 | -1/+1 |
| | | | | | | | | | | Fix #78069 Out-of-bounds read in iconv.c:_php_iconv_mime_decode() CVE-2019-11039 - exif: Fix #77988 Heap-buffer-overflow on php_jpg_get16 CVE-2019-11040 - sqlite3: Fix #77967 Bypassing open_basedir restrictions via file uris | ||||
* | - exif: | Remi Collet | 2019-04-30 | 1 | -3/+1 |
| | | | | | Fix #77950 Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG CVE-2019-11036 | ||||
* | - exif: | Remi Collet | 2019-04-02 | 1 | -9/+5 |
| | | | | | | | Fix #77753 Heap-buffer-overflow in php_ifd_get32s Fix #77831 Heap-buffer-overflow in exif_iif_add_value - sqlite3: Added sqlite3.defensive INI directive | ||||
* | F30 build | Remi Collet | 2019-03-08 | 1 | -2/+3 |
| | |||||
* | update test results + add CVEs | Remi Collet | 2019-03-05 | 1 | -4/+9 |
| | |||||
* | - core: | Remi Collet | 2019-01-09 | 1 | -2/+4 |
| | | | | | | | | | | | | | | | | | Fix #77369 memcpy with negative length via crafted DNS response - mbstring: Fix #77370 buffer overflow on mb regex functions - fetch_token Fix #77371 heap buffer overflow in mb regex functions compile_string_node Fix #77381 heap buffer overflow in multibyte match_at Fix #77382 heap buffer overflow in expand_case_fold_string Fix #77385 buffer overflow in fetch_token Fix #77394 buffer overflow in multibyte case folding - unicode Fix #77418 heap overflow in utf32be_mbc_to_code - phar: Fix #77247 heap buffer overflow in phar_detect_phar_fname_ext - xmlrpc: Fix #77242 heap out of bounds read in xmlrpc_decode Fix #77380 global out of bounds read in xmlrpc base64 code | ||||
* | Update to 7.0.33 - http://www.php.net/releases/7_0_33.php | Remi Collet | 2018-12-05 | 1 | -1/+1 |
| | | | | use oracle client library version 18.3 | ||||
* | refresh results with upstream patch | Remi Collet | 2018-09-11 | 1 | -3/+1 |
| | |||||
* | Update to 7.0.32 - http://www.php.net/releases/7_0_32.php | Remi Collet | 2018-09-11 | 1 | -1/+4 |
| | |||||
* | Update to 7.0.31 - http://www.php.net/releases/7_0_31.php | Remi Collet | 2018-07-17 | 1 | -1/+1 |
| | |||||
* | Update to 7.0.30 - http://www.php.net/releases/7_0_30.php | Remi Collet | 2018-04-24 | 1 | -1/+1 |
| | |||||
* | Update to 7.0.29 - http://www.php.net/releases/7_0_29.php | Remi Collet | 2018-03-28 | 1 | -1/+1 |
| | | | | FPM: update default pool configuration for process.dumpable | ||||
* | refresh test results | Remi Collet | 2018-02-27 | 1 | -23/+1 |
| | |||||
* | Update to 7.0.28 - http://www.php.net/releases/7_0_28.php | Remi Collet | 2018-02-27 | 1 | -5/+25 |
| | | | | | FPM: revert pid file removal improve devel dependencies | ||||
* | v7.0.27 | Remi Collet | 2018-01-02 | 1 | -2/+4 |
| | |||||
* | v7.0.27RC1 | Remi Collet | 2017-12-05 | 1 | -4/+2 |
| | |||||
* | v7.0.26 | Remi Collet | 2017-11-21 | 1 | -2/+4 |
| | |||||
* | v7.0.26RC1 | Remi Collet | 2017-11-07 | 1 | -4/+2 |
| | |||||
* | v7.0.25 | Remi Collet | 2017-10-24 | 1 | -5/+5 |
| | |||||
* | Update to 7.0.25RC1 | Remi Collet | 2017-10-10 | 1 | -2/+4 |
| | | | | oci8 version is now 2.1.8 | ||||
* | v7.024 | Remi Collet | 2017-09-26 | 1 | -4/+2 |
| | |||||
* | v7.0.24RC1 | Remi Collet | 2017-09-12 | 1 | -6/+5 |
| | |||||
* | add patch for EL-6, fix undefined symbol: sqlite3_errstr | Remi Collet | 2017-08-31 | 1 | -1/+0 |
| | |||||
* | Update to 7.0.23 - http://www.php.net/releases/7_0_23.php | Remi Collet | 2017-08-29 | 1 | -2/+3 |
| | |||||
* | disable httpd MPM check | Remi Collet | 2017-08-24 | 1 | -2/+8 |
| | |||||
* | Update to 7.0.23RC1 | Remi Collet | 2017-08-15 | 1 | -1/+1 |
| | | | | oci8 version is now 2.1.7 | ||||
* | v7.0.22 | Remi Collet | 2017-08-02 | 1 | -1/+1 |
| | |||||
* | v7.0.22RC1 | Remi Collet | 2017-07-18 | 1 | -1/+1 |
| | |||||
* | retag | Remi Collet | 2017-07-05 | 1 | -3/+1 |
| | |||||
* | v7.0.21 | Remi Collet | 2017-07-04 | 1 | -2/+4 |
| | |||||
* | 7.0.21RC1 | Remi Collet | 2017-06-21 | 1 | -1/+1 |
| | |||||
* | v7.0.20 | Remi Collet | 2017-06-07 | 1 | -1/+1 |
| | |||||
* | 7.0.20RC1 | Remi Collet | 2017-05-24 | 1 | -1/+1 |
| | |||||
* | v7.0.19 | Remi Collet | 2017-05-09 | 1 | -1/+1 |
| | |||||
* | 7.0.19RC1 new tag | Remi Collet | 2017-04-27 | 1 | -7/+3 |
| | |||||
* | 7.0.19RC1 | Remi Collet | 2017-04-25 | 1 | -9/+9 |
| | |||||
* | fix test report | Remi Collet | 2017-04-11 | 1 | -2/+3 |
| | |||||
* | v7.0.18 | Remi Collet | 2017-04-11 | 1 | -4/+5 |
| | |||||
* | PHP 7.0.18RC1 | Remi Collet | 2017-03-28 | 1 | -17/+9 |
| | |||||
* | PHP 7.0.17 | Remi Collet | 2017-03-14 | 1 | -1/+12 |
| | |||||
* | PHP 7.0.17RC1 | Remi Collet | 2017-02-28 | 1 | -1/+1 |
| | |||||
* | PHP 7.0.15 | Remi Collet | 2017-02-14 | 1 | -1/+1 |
| | |||||
* | PHP 7.0.16RC1 | Remi Collet | 2017-02-01 | 1 | -1/+1 |
| |