Log of /rpms/php/sme8/php.spec

---

Revision 1.17 - (view) (download) (annotate) - [select for diffs]
Sat Nov 1 13:01:52 2014 UTC (10 years ago) by vip-ire
Branch: MAIN
CVS Tags: HEAD, php-5_3_3-17_el5_sme
Changes since 1.16: +16 -1 lines
Diff to previous 1.16

* Sat Nov 1 2014 Daniel Berteaud <daniel@firewall-services.com> - 5.3.3-17.sme
- Resync with upstream php53, which include (see [SME: 8633])
- fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710
- xmlrpc: fix out-of-bounds read flaw in mkgmtime() CVE-2014-3668
- core: fix integer overflow in unserialize() CVE-2014-3669
- exif: fix heap corruption issue in exif_thumbnail() CVE-2014-3670

---

Revision 1.16 - (view) (download) (annotate) - [select for diffs]
Sat Oct 18 10:16:16 2014 UTC (10 years ago) by vip-ire
Branch: MAIN
CVS Tags: php-5_3_3-16_el5_sme
Changes since 1.15: +23 -1 lines
Diff to previous 1.15

* Sat Oct 18 2014 Daniel Berteaud <daniel@firewall-services.com> - 5.3.3-16.sme
- Resync with upstream php53, which include (see [SME: 8574])
- spl: fix use-after-free in ArrayIterator due to object
  change during sorting. CVE-2014-4698
- spl: fix use-after-free in SPL Iterators. CVE-2014-4670
- gd: fix NULL pointer dereference in gdImageCreateFromXpm.
  CVE-2014-2497
- fileinfo: fix incomplete fix for CVE-2012-1571 in
  cdf_read_property_info. CVE-2014-3587
- core: fix incomplete fix for CVE-2014-4049 DNS TXT
  record parsing. CVE-2014-3597

---

Revision 1.15 - (view) (download) (annotate) - [select for diffs]
Thu Aug 7 07:05:52 2014 UTC (10 years, 3 months ago) by vip-ire
Branch: MAIN
CVS Tags: php-5_3_3-15_el5_sme
Changes since 1.14: +42 -1 lines
Diff to previous 1.14

* Thu Aug 7 2014 Daniel Berteaud <daniel@firewall-services.com> - 5.3.3-15.sme
- Resync with upstream php53, which include (see [SME: 8515])
- core: type confusion issue in phpinfo(). CVE-2014-4721
- date: fix heap-based buffer over-read in DateInterval. CVE-2013-6712
- core: fix heap-based buffer overflow in DNS TXT record parsing.
  CVE-2014-4049
- core: unserialize() SPL ArrayObject / SPLObjectStorage type
  confusion flaw. CVE-2014-3515
- fileinfo: out-of-bounds memory access in fileinfo. CVE-2014-2270
- fileinfo: unrestricted recursion in handling of indirect type
  rules. CVE-2014-1943
- fileinfo: out of bounds read in CDF parser. CVE-2012-1571
- fileinfo: cdf_check_stream_offset boundary check. CVE-2014-3479
- fileinfo: cdf_count_chain insufficient boundary check. CVE-2014-3480
- fileinfo: cdf_unpack_summary_info() excessive looping
  DoS. CVE-2014-0237
- fileinfo: CDF property info parsing nelements infinite
  loop. CVE-2014-0238

---

Revision 1.14 - (view) (download) (annotate) - [select for diffs]
Mon Dec 16 11:15:42 2013 UTC (10 years, 10 months ago) by vip-ire
Branch: MAIN
Changes since 1.13: +1 -1 lines
Diff to previous 1.13

Add bug reference in the changelog

---

Revision 1.13 - (view) (download) (annotate) - [select for diffs]
Mon Dec 16 10:47:16 2013 UTC (10 years, 10 months ago) by vip-ire
Branch: MAIN
CVS Tags: php-5_3_3-14_el5_sme
Changes since 1.12: +0 -1 lines
Diff to previous 1.12

Remove empty line in changelog

---

Revision 1.12 - (view) (download) (annotate) - [select for diffs]
Mon Dec 16 10:46:47 2013 UTC (10 years, 10 months ago) by vip-ire
Branch: MAIN
Changes since 1.11: +135 -63 lines
Diff to previous 1.11

* Mon Dec 16 2013 Daniel Berteaud <daniel@firewall-services.com> - 5.3.3-14.sme
- Resync with upstream php53, which include:
- add security fix for CVE-2013-6420
- add security fix for CVE-2013-4248
- add upstream reproducer for error_handler (#951075)
- add security fixes for CVE-2006-7243
- add security fixes for CVE-2012-2688, CVE-2012-0831,
  CVE-2011-1398, CVE-2013-1643
- fix segfault in error_handler with
  allow_call_time_pass_reference = Off (#951075)
- fix double free when destroy_zend_class fails (#951076)
- fix possible buffer overflow in pdo_odbc (#869694)
- php script hangs when it exceeds max_execution_time
  when inside an ODBC call (#864954)
- fix zend garbage collector (#892695)
- fix transposed memset arguments in libzip (#953818)
- fix possible segfault in pdo_mysql (#869693)
- fix imap_open DISABLE_AUTHENTICATOR param ignores array (#859369)
- fix stream support in fileinfo (#869697)
- fix setDate when DateTime created from timestamp (#869691)
- fix permission on source files (#869688)
- add php(language) and missing provides (#837044)
-
- fix copy doesn't report failure on partial copy (#951413)

---

Revision 1.11 - (view) (download) (annotate) - [select for diffs]
Mon Jul 15 13:51:22 2013 UTC (11 years, 3 months ago) by slords
Branch: MAIN
CVS Tags: php-5_3_3-13_el5_sme_2
Changes since 1.10: +7 -4 lines
Diff to previous 1.10

* Mon Jul 15 2013 Shad L. Lords <slords@mail.com> - 5.3.3-13.sme.2
- Add php53-* provides to provide compatibility
- Obsolete php-domxml and php-dom [SME: 6733]
- Update Obsoletes and Conflicts [SME: 6436]

---

Revision 1.10 - (view) (download) (annotate) - [select for diffs]
Thu Aug 23 02:39:15 2012 UTC (12 years, 2 months ago) by slords
Branch: MAIN
CVS Tags: php-5_3_3-13_el5_sme_1
Changes since 1.9: +25 -20 lines
Diff to previous 1.9

* Wed Aug 22 2012 Shad L. Lords <slords@mail.com> - 5.3.3-13.sme.1
- Add php53-* provides to provide compatibility

---

Revision 1.9 - (view) (download) (annotate) - [select for diffs]
Fri Jun 29 14:54:00 2012 UTC (12 years, 4 months ago) by slords
Branch: MAIN
CVS Tags: php-5_3_3-13_el5_sme
Changes since 1.8: +73 -24 lines
Diff to previous 1.8

* Fri Jun 29 2012 Shad L. Lords <slords@mail.com> - 5.3.3-13.sme
- Obsolete php-domxml and php-dom [SME: 6733]
- Update Obsoletes and Conflicts [SME: 6436]

---

Revision 1.8 - (view) (download) (annotate) - [select for diffs]
Fri Feb 3 15:51:39 2012 UTC (12 years, 9 months ago) by slords
Branch: MAIN
CVS Tags: php-5_3_3-1_el5_sme_6
Changes since 1.7: +19 -3 lines
Diff to previous 1.7

* Fri Feb 3 2012 Shad L. Lords <slords@mail.com> - 5.3.3-1.6.sme
- Obsolete php-domxml and php-dom [SME: 6733]
- Update Obsoletes and Conflicts [SME: 6436]

---

Revision 1.7 - (view) (download) (annotate) - [select for diffs]
Thu Nov 3 22:54:51 2011 UTC (13 years ago) by slords
Branch: MAIN
CVS Tags: php-5_3_3-1_el5_sme_3
Changes since 1.6: +1 -1 lines
Diff to previous 1.6

Fix date

---

Revision 1.6 - (view) (download) (annotate) - [select for diffs]
Thu Nov 3 22:54:19 2011 UTC (13 years ago) by slords
Branch: MAIN
Changes since 1.5: +30 -4 lines
Diff to previous 1.5

* Thu Nov 2 2011 Shad L. Lords <slords@mail.com> - 5.3.3-1.3.sme
- Obsolete php-domxml and php-dom [SME: 6733]
- Update Obsoletes and Conflicts [SME: 6436]

---

Revision 1.5 - (view) (download) (annotate) - [select for diffs]
Wed Sep 28 17:13:27 2011 UTC (13 years, 1 month ago) by snetram
Branch: MAIN
CVS Tags: php-5_3_3-1_el5_sme_1_1
Branch point for: redhat-upstream
Changes since 1.4: +5 -1 lines
Diff to previous 1.4

* Wed Sep 28 2011 Jonathan Martens <smeserver-contribs@snetram.nl> - 5.3.3-1.1.1
- Obsolete php-domxml and php-dom [SME: 6733]

---

Revision 1.4 - (view) (download) (annotate) - [select for diffs]
Tue Sep 13 14:05:18 2011 UTC (13 years, 1 month ago) by slords
Branch: MAIN
CVS Tags: php-5_3_3-1_el5_sme_1_0
Changes since 1.3: +6 -2 lines
Diff to previous 1.3

* Tue Sep 13 2011 Shad L. Lords <slords@mail.com> - 5.3.3-1.1.0
- Update Obsoletes and Conflicts [SME: 6436]

---

Revision 1.3 - (view) (download) (annotate) - [select for diffs]
Mon Jun 20 19:27:01 2011 UTC (13 years, 4 months ago) by slords
Branch: MAIN
CVS Tags: php-5_3_3-1_el5_sme_1
Changes since 1.2: +425 -171 lines
Diff to previous 1.2

Import upstream sources

---

Revision 1.2 - (view) (download) (annotate) - [select for diffs]
Thu Mar 4 16:31:07 2010 UTC (14 years, 8 months ago) by slords
Branch: MAIN
Changes since 1.1: +2 -0 lines
Diff to previous 1.1

Fix headers

---

Revision 1.1 - (view) (download) (annotate) - [select for diffs]
Sat Feb 6 20:36:50 2010 UTC (14 years, 9 months ago) by slords
Branch: MAIN
CVS Tags: php-5_2_10-1_el5_sme

Initial import