diff options
author | Gustavo Zacarias <gustavo@zacarias.com.ar> | 2016-04-01 09:02:19 -0300 |
---|---|---|
committer | Thomas Petazzoni <thomas.petazzoni@free-electrons.com> | 2016-04-02 16:51:22 +0200 |
commit | 039db88c6b500bbc1863e11a1141f12b1842af82 (patch) | |
tree | 2302de7328f28f48509e52a57e35ac6d5818dd15 /package/php | |
parent | 136156372ef4fc7582bec0ba68f543961683b008 (diff) |
php: security bump to version 5.6.20
Fixes (no CVEs yet):
Buffer over-write in finfo_open with malformed magic file.
Invalid memory write in phar on filename with \0 in name.
Parsing of tar file with duplicate filenames causes memory leak.
php_snmp_error() Format String Vulnerability.
Integer Overflow in php_raw_url_encode.
Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
Diffstat (limited to 'package/php')
-rw-r--r-- | package/php/php.hash | 2 | ||||
-rw-r--r-- | package/php/php.mk | 2 |
2 files changed, 2 insertions, 2 deletions
diff --git a/package/php/php.hash b/package/php/php.hash index 9cfbcad65..e359bf7cd 100644 --- a/package/php/php.hash +++ b/package/php/php.hash @@ -1,2 +1,2 @@ # From http://php.net/downloads.php -sha256 bb32337f93a00b71789f116bddafa8848139120e7fb6f4f98a84f52dbcb8329f php-5.6.19.tar.xz +sha256 2b87d40213361112af49157a435e0d4cdfd334c9b7c731c8b844932b1f444e7a php-5.6.20.tar.xz diff --git a/package/php/php.mk b/package/php/php.mk index 6d27c3086..1c920607b 100644 --- a/package/php/php.mk +++ b/package/php/php.mk @@ -4,7 +4,7 @@ # ################################################################################ -PHP_VERSION = 5.6.19 +PHP_VERSION = 5.6.20 PHP_SITE = http://www.php.net/distributions PHP_SOURCE = php-$(PHP_VERSION).tar.xz PHP_INSTALL_STAGING = YES |