summaryrefslogtreecommitdiffstats
path: root/php55.spec
diff options
context:
space:
mode:
Diffstat (limited to 'php55.spec')
-rw-r--r--php55.spec21
1 files changed, 20 insertions, 1 deletions
diff --git a/php55.spec b/php55.spec
index e84b8b7..98b7669 100644
--- a/php55.spec
+++ b/php55.spec
@@ -141,7 +141,7 @@
Summary: PHP scripting language for creating dynamic web sites
Name: php
Version: 5.5.38
-Release: 6%{?dist}
+Release: 7%{?dist}
# All files licensed under PHP version 3.01, except
# Zend is licensed under Zend
# TSRM is licensed under BSD
@@ -252,6 +252,11 @@ Patch146: bug73144.patch
Patch147: bug73418.patch
Patch148: bug73356.patch
Patch149: bug73631.patch
+Patch150: bug73737.patch
+Patch151: bug73764.patch
+Patch152: bug73768.patch
+Patch153: bug73773.patch
+Patch154: bug69090.patch
# Security fixes (200+)
@@ -1067,6 +1072,11 @@ rm -rf ext/json
%patch147 -p1 -b .bug73418
%patch148 -p1 -b .bug73356
%patch149 -p1 -b .bug73631
+%patch150 -p1 -b .bug73737
+%patch151 -p1 -b .bug73767
+%patch152 -p1 -b .bug73768
+%patch153 -p1 -b .bug73773
+%patch154 -p1 -b .bug69090
# Fixes for tests
%patch300 -p1 -b .datetests
@@ -2089,6 +2099,15 @@ EOF
%changelog
+* Sat Feb 18 2017 Remi Collet <remi@remirepo.net> - 5.5.38-7
+- fix #73737: FPE when parsing a tag format
+ CVE-2016-10158
+- fix #73764: int overflows in phar
+ CVE-2016-10159
+- fix #73768: Memory corruption when loading hostile phar
+ CVE-2016-10160
+- fix #69090: check cached files permissions
+
* Sat Dec 10 2016 Remi Collet <remi@remirepo.net> - 5.5.38-6
- fix #73631: Invalid read when wddx decodes empty boolean element
CVE-2016-9935