php-process-5.3.3-50.el6_10.x86_64
[43 KiB] |
Changelog
by Remi Collet (2019-10-29):
- fix underflow in env_path_info in fpm_main.c CVE-2019-11043
|
php-process-5.3.3-48.el6_8.x86_64
[43 KiB] |
Changelog
by Remi Collet (2016-07-25):
- don't set environmental variable based on user supplied Proxy
request header CVE-2016-5385
|
php-process-5.3.3-46.el6_6.x86_64
[42 KiB] |
Changelog
by Remi Collet (2015-07-03):
- fix gzfile accept paths with NUL character #1213407
- fix patch for CVE-2015-4024
|
php-process-5.3.3-40.el6_6.x86_64
[41 KiB] |
Changelog
by Jan Kaluza (2014-10-23):
- fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710
|
php-process-5.3.3-27.el6_5.2.x86_64
[39 KiB] |
Changelog
by Remi Collet (2014-09-10):
- spl: fix use-after-free in ArrayIterator due to object
change during sorting. CVE-2014-4698
- spl: fix use-after-free in SPL Iterators. CVE-2014-4670
- gd: fix NULL pointer dereference in gdImageCreateFromXpm.
CVE-2014-2497
- fileinfo: fix incomplete fix for CVE-2012-1571 in
cdf_read_property_info. CVE-2014-3587
- core: fix incomplete fix for CVE-2014-4049 DNS TXT
record parsing. CVE-2014-3597
|
php-process-5.3.3-27.el6_5.1.x86_64
[39 KiB] |
Changelog
by Remi Collet (2014-07-15):
- core: type confusion issue in phpinfo(). CVE-2014-4721
- date: fix heap-based buffer over-read in DateInterval. CVE-2013-6712
- core: fix heap-based buffer overflow in DNS TXT record parsing.
CVE-2014-4049
- core: unserialize() SPL ArrayObject / SPLObjectStorage type
confusion flaw. CVE-2014-3515
- fileinfo: out-of-bounds memory access in fileinfo. CVE-2014-2270
- fileinfo: unrestricted recursion in handling of indirect type
rules. CVE-2014-1943
- fileinfo: out of bounds read in CDF parser. CVE-2012-1571
- fileinfo: cdf_check_stream_offset boundary check. CVE-2014-3479
- fileinfo: cdf_count_chain insufficient boundary check. CVE-2014-3480
- fileinfo: cdf_unpack_summary_info() excessive looping
DoS. CVE-2014-0237
- fileinfo: CDF property info parsing nelements infinite
loop. CVE-2014-0238
|
php-process-5.3.3-27.el6_5.x86_64
[38 KiB] |
Changelog
by Remi Collet (2013-12-05):
- add security fix for CVE-2013-6420
|
php-process-5.3.3-26.el6.x86_64
[38 KiB] |
Changelog
by Remi Collet (2013-08-19):
- add security fix for CVE-2013-4248
|
php-process-5.3.3-23.el6_4.x86_64
[37 KiB] |
Changelog
by Remi Collet (2013-07-12):
- add security fix for CVE-2013-4113
|
php-process-5.3.3-22.el6.x86_64
[37 KiB] |
Changelog
by Remi Collet (2012-11-29):
- php-xml provides php-xmlreader and php-xmlwriter (#874987)
- fix possible NULL derefence and buffer overflow (#879179)
- fix zend garbage collector (#848186, #868375)
|
php-process-5.3.3-14.el6_3.x86_64
[36 KiB] |
Changelog
by Joe Orton (2012-06-25):
- add security fix for CVE-2010-2950
|