summaryrefslogtreecommitdiffstats
path: root/php-bug81726.patch
diff options
context:
space:
mode:
Diffstat (limited to 'php-bug81726.patch')
-rw-r--r--php-bug81726.patch33
1 files changed, 33 insertions, 0 deletions
diff --git a/php-bug81726.patch b/php-bug81726.patch
index 8984aa9..ebeb4a2 100644
--- a/php-bug81726.patch
+++ b/php-bug81726.patch
@@ -145,3 +145,36 @@ index c9928ecdcd..f55e5fd4d8 100644
--
2.37.3
+From 9d32d284b25f5df75780911a47b3c23cbaac1761 Mon Sep 17 00:00:00 2001
+From: Remi Collet <remi@remirepo.net>
+Date: Fri, 30 Sep 2022 09:22:14 +0200
+Subject: [PATCH] fix NEWS
+
+---
+ NEWS | 8 +++++---
+ 1 file changed, 5 insertions(+), 3 deletions(-)
+
+diff --git a/NEWS b/NEWS
+index fe4cb9c484..b7a19aea19 100644
+--- a/NEWS
++++ b/NEWS
+@@ -1,14 +1,16 @@
+ PHP NEWS
+ |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
+
+-Backported from 7.4.31
++Backported from 7.4.32
+
+ - Core:
+- . Fixed bug #81726: phar wrapper: DOS when using quine gzip file.
+- (CVE-2022-31628). (cmb)
+ . Fixed bug #81727: Don't mangle HTTP variable names that clash with ones
+ that have a specific semantic meaning. (CVE-2022-31629). (Derick)
+
++- Phar:
++ . Fixed bug #81726: phar wrapper: DOS when using quine gzip file.
++ (CVE-2022-31628). (cmb)
++
+ Backported from 7.4.30
+
+ - mysqlnd: