From 36ed7de241108565abe38ab34cbde52139f547e6 Mon Sep 17 00:00:00 2001 From: Remi Collet Date: Tue, 14 Apr 2020 10:30:16 +0200 Subject: standard: Fix #79330 shell_exec silently truncates after a null byte Fix #79465 OOB Read in urldecode CVE-2020-7067 --- php.spec | 12 +++++++++++- 1 file changed, 11 insertions(+), 1 deletion(-) (limited to 'php.spec') diff --git a/php.spec b/php.spec index cccf5b8..c99248f 100644 --- a/php.spec +++ b/php.spec @@ -141,7 +141,7 @@ Summary: PHP scripting language for creating dynamic web sites Name: %{?scl_prefix}php Version: %{upver}%{?rcver:~%{rcver}} -Release: 19%{?dist} +Release: 20%{?dist} # All files licensed under PHP version 3.01, except # Zend is licensed under Zend # TSRM is licensed under BSD @@ -245,6 +245,8 @@ Patch236: php-bug79221.patch Patch237: php-bug79082.patch Patch238: php-bug79282.patch Patch239: php-bug79329.patch +Patch240: php-bug79330.patch +Patch241: php-bug79465.patch # Fixes for tests (300+) # Factory is droped from system tzdata @@ -1027,6 +1029,8 @@ sed -e 's/php-devel/%{?scl_prefix}php-devel/' -i scripts/phpize.in %patch237 -p1 -b .bug79082 %patch238 -p1 -b .bug79282 %patch239 -p1 -b .bug79329 +%patch240 -p1 -b .bug79330 +%patch241 -p1 -b .bug79465 : --------------------------- #exit 1 @@ -1979,6 +1983,12 @@ EOF %changelog +* Tue Apr 14 2020 Remi Collet - 7.0.33-20 +- standard: + Fix #79330 shell_exec silently truncates after a null byte + Fix #79465 OOB Read in urldecode + CVE-2020-7067 + * Tue Mar 17 2020 Remi Collet - 7.0.33-19 - standard: Fix #79329 get_headers() silently truncates after a null byte -- cgit