summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rw-r--r--php-cve-2026-14355.patch (renamed from php-gh22187.patch)0
-rw-r--r--php.spec4
2 files changed, 3 insertions, 1 deletions
diff --git a/php-gh22187.patch b/php-cve-2026-14355.patch
index 04acf37..04acf37 100644
--- a/php-gh22187.patch
+++ b/php-cve-2026-14355.patch
diff --git a/php.spec b/php.spec
index ed8eb89..61d0887 100644
--- a/php.spec
+++ b/php.spec
@@ -238,7 +238,8 @@ Patch228: php-cve-2026-6735.patch
Patch229: php-cve-2026-7259.patch
Patch230: php-cve-2026-7568.patch
Patch231: php-cve-2026-7258.patch
-Patch232: php-gh22187.patch
+# from 8.2.32
+Patch232: php-cve-2026-14355.patch
# Fixes for tests (300+)
# Factory is droped from system tzdata
@@ -1960,6 +1961,7 @@ EOF
%changelog
* Wed Jul 1 2026 Remi Collet <remi@remirepo.net> - 8.0.30-17
- Fix Memory corruption (zend_mm_heap corrupted) in openssl_encrypt with AES-WRAP-PAD
+ CVE-2026-14355
* Mon May 11 2026 Remi Collet <remi@remirepo.net> - 8.0.30-16
- Fix XSS within status endpoint