From a0a70a22d639fa152b53ad1e90a43cd2544a5537 Mon Sep 17 00:00:00 2001 From: Remi Collet Date: Fri, 27 Sep 2024 08:48:20 +0200 Subject: Fix Bypass of CVE-2012-1823, Argument Injection in PHP-CGI CVE-2024-4577 Fix Bypass of CVE-2024-4577, Parameter Injection Vulnerability CVE-2024-8926 Fix cgi.force_redirect configuration is bypassable due to the environment variable collision CVE-2024-8927 Fix Erroneous parsing of multipart form data CVE-2024-8925 --- failed.txt | 9 +++------ 1 file changed, 3 insertions(+), 6 deletions(-) (limited to 'failed.txt') diff --git a/failed.txt b/failed.txt index 20e522d..a6d6dd1 100644 --- a/failed.txt +++ b/failed.txt @@ -1,14 +1,11 @@ -===== 7.2.34-21 (2024-04-11) +===== 7.2.34-24 (2024-04-27) $ grep -r 'Tests failed' /var/lib/mock/*/build.log -/var/lib/mock/el7x72/build.log:Tests failed : 1 -/var/lib/mock/el8a72/build.log:Tests failed : 19 -/var/lib/mock/el8x72/build.log:Tests failed : 19 +/var/lib/mock/el8a72/build.log:Tests failed : 22 +/var/lib/mock/el8x72/build.log:Tests failed : 22 -el7x: - 3 ext/openssl/tests/openssl_x509_checkpurpose_basic.phpt el8x: 3 buildroot issue with strict openssl policy (fixed in 7.4) and tzdata -- cgit