Remi's RPM repository - Packages

Blog | Forum | Repository | Wizard

php54-php - PHP scripting language for creating dynamic web sites

Website:
http://www.php.net/
Licence:
PHP and Zend and BSD
Vendor:
Remi Collet
Description:
PHP is an HTML-embedded scripting language. PHP attempts to make it
easy for developers to write dynamically generated web pages. PHP also
offers built-in database integration for several commercial and
non-commercial database management systems, so writing a
database-enabled webpage with PHP is fairly simple. The most common
use of PHP coding is probably as a replacement for CGI scripts.

This package contains the module (often referred to as mod_php)
which adds support for the PHP language to system Apache HTTP Server.

Packages

php54-php-5.4.45-15.remi.src [12.4 MiB] Changelog by Remi Collet (2018-09-14):
- fix #76582: XSS due to the header Transfer-Encoding: chunked
php54-php-5.4.45-14.remi.src [12.4 MiB] Changelog by Remi Collet (2018-03-01):
- fix #73549: Use after free when stream is passed to imagepng
- fix #73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx()
  CVE-2016-10167
- fix #73869: Signed Integer Overflow gd_io.c
  CVE-2016-10168
- fix #74435: Buffer over-read into uninitialized memory
  CVE-2017-7890
- fix #75571: Potential infinite loop in gdImageCreateFromGifCtx
  CVE-2018-5711
- fix #75981: stack-buffer-overflow while parsing HTTP response
php54-php-5.4.45-13.remi.src [12.3 MiB] Changelog by Remi Collet (2017-02-18):
- fix #73737: FPE when parsing a tag format
  CVE-2016-10158
- fix #73764: int overflows in phar
  CVE-2016-10159
- fix #73768: Memory corruption when loading hostile phar
  CVE-2016-10160
php54-php-5.4.45-12.remi.src [12.3 MiB] Changelog by Remi Collet (2016-09-19):
- fix #72627: Memory Leakage In exif_process_IFD_in_TIFF
  CVE-2016-7128
- fix #72926: Uninitialized Thumbail Data Leads To Memory Leakage
  in exif_process_IFD_in_TIFF
- fix #73035: Out of bound when verify signature of tar phar
- fix #72928: Out of bound when verify signature of zip phar
  CVE-2016-7414
- fix #72735 regression in exif maker note parser
php54-php-5.4.45-11.remi.src [12.3 MiB] Changelog by Remi Collet (2016-07-22):
- Fix #70480: php_url_parse_ex() buffer overflow read
- Fix #69975: PHP segfaults when accessing nvarchar(max) defined columns
- Fix #72479: Use After Free Vulnerability in SNMP with GC and unserialize()
- Fix #72573: HTTP_PROXY is improperly trusted by some PHP libraries
  CVE-2016-5385
- Fix #72513: buffer overflow vulnerability in virtual_file_ex
- Fix #72520: buffer overflow vulnerability in php_stream_zip_opener
- Fix #72533: locale_accept_from_http out-of-bounds access
- Fix #72562: Use After Free in unserialize() with Unexpected Session
  Deserialization
- Fix #72603: Out of bound read in exif_process_IFD_in_MAKERNOTE
- Fix #72606: heap-buffer-overflow (write) simplestring_addn simplestring.c
- Partial fix #72613: do not treat negative returns from bz2 as size_t
- Fix #72618: NULL Pointer Dereference in exif_process_user_comment
- Fix #72519: possible OOB using imagegif