Patchwork php: security bump to version 5.3.15

login
register
mail settings
Submitter Gustavo Zacarias
Date July 23, 2012, 5:21 p.m.
Message ID <1343064116-7123-1-git-send-email-gustavo@zacarias.com.ar>
Download mbox | patch
Permalink /patch/172715/
State Accepted
Headers show

Comments

Gustavo Zacarias - July 23, 2012, 5:21 p.m.
Fix for CVE-2012-2688 (potential overflow in _php_stream_scandir),
CVE-2012-3365 (SQLite open_basedir bypass) and other misc bugfixes.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
---
 package/php/php.mk |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)
Thomas Petazzoni - July 23, 2012, 8:51 p.m.
Le Mon, 23 Jul 2012 14:21:56 -0300,
Gustavo Zacarias <gustavo@zacarias.com.ar> a écrit :

> Fix for CVE-2012-2688 (potential overflow in _php_stream_scandir),
> CVE-2012-3365 (SQLite open_basedir bypass) and other misc bugfixes.
> 
> Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>

Applied, thanks!

Thomas

Patch

diff --git a/package/php/php.mk b/package/php/php.mk
index 31de289..0544659 100644
--- a/package/php/php.mk
+++ b/package/php/php.mk
@@ -4,7 +4,7 @@ 
 #
 #############################################################
 
-PHP_VERSION = 5.3.14
+PHP_VERSION = 5.3.15
 PHP_SOURCE = php-$(PHP_VERSION).tar.bz2
 PHP_SITE = http://www.php.net/distributions
 PHP_INSTALL_STAGING = YES