Revision
1.1 -
(
view)
(
download)
(
annotate)
-
[select for diffs]
Sat Oct 18 10:16:16 2014 UTC
(10 years, 1 month ago)
by
vip-ire
Branch:
MAIN
CVS Tags:
HEAD,
php-5_3_3-16_el5_sme,
php-5_3_3-17_el5_sme
* Sat Oct 18 2014 Daniel Berteaud <daniel@firewall-services.com> - 5.3.3-16.sme
- Resync with upstream php53, which include (see [SME: 8574])
- spl: fix use-after-free in ArrayIterator due to object
change during sorting. CVE-2014-4698
- spl: fix use-after-free in SPL Iterators. CVE-2014-4670
- gd: fix NULL pointer dereference in gdImageCreateFromXpm.
CVE-2014-2497
- fileinfo: fix incomplete fix for CVE-2012-1571 in
cdf_read_property_info. CVE-2014-3587
- core: fix incomplete fix for CVE-2014-4049 DNS TXT
record parsing. CVE-2014-3597