php: security bump to version 5.3.15

Submitter	Gustavo Zacarias
Date	July 23, 2012, 5:21 p.m.
Message ID	<1343064116-7123-1-git-send-email-gustavo@zacarias.com.ar>
Download	mbox \| patch
Permalink	/patch/172715/
State	Accepted
Headers	show Return-Path: <buildroot-bounces@busybox.net> From: Gustavo Zacarias <gustavo@zacarias.com.ar> To: buildroot@busybox.net Date: Mon, 23 Jul 2012 14:21:56 -0300 Message-Id: <1343064116-7123-1-git-send-email-gustavo@zacarias.com.ar> Subject: [Buildroot] [PATCH] php: security bump to version 5.3.15 Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: buildroot-bounces@busybox.net Sender: buildroot-bounces@busybox.net

Comments

Gustavo Zacarias - July 23, 2012, 5:21 p.m.

Fix for CVE-2012-2688 (potential overflow in _php_stream_scandir),
CVE-2012-3365 (SQLite open_basedir bypass) and other misc bugfixes.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
---
 package/php/php.mk |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

Thomas Petazzoni - July 23, 2012, 8:51 p.m.

Le Mon, 23 Jul 2012 14:21:56 -0300,
Gustavo Zacarias <gustavo@zacarias.com.ar> a écrit :

> Fix for CVE-2012-2688 (potential overflow in _php_stream_scandir),
> CVE-2012-3365 (SQLite open_basedir bypass) and other misc bugfixes.
> 
> Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>

Applied, thanks!

Thomas

Patch

diff --git a/package/php/php.mk b/package/php/php.mk
index 31de289..0544659 100644
--- a/package/php/php.mk
+++ b/package/php/php.mk
@@ -4,7 +4,7 @@ 
 #
 #############################################################
 
-PHP_VERSION = 5.3.14
+PHP_VERSION = 5.3.15
 PHP_SOURCE = php-$(PHP_VERSION).tar.bz2
 PHP_SITE = http://www.php.net/distributions
 PHP_INSTALL_STAGING = YES

Patchwork php: security bump to version 5.3.15

Comments

Patch