OpenPOWER buildroot sources https://git.raptorcs.com/git/buildroot/atom?h=2016.05 2016-05-26T21:25:11+00:00 2016-05-26T21:25:11+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2016-05-26T20:41:21+00:00 urn:sha1:47aa250650ae6d9b1a80c66e6b5536f5fa606432 Fixes: Core: Integer Overflow in php_html_entities Core: Integer underflow / arbitrary null write in fread/gzread GD: imagescale out-of-bounds read Intl: get_icu_value_internal out-of-bounds read Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2016-04-29T06:49:22+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2016-04-29T00:19:56+00:00 urn:sha1:915576a01c9c758788ba42b7fe2b9fe0f6258abb Fixes (CVEs not assigned yet): bug #72094 - Out of bounds heap read access in exif header processing bug #71912 - libgd: signedness vulnerability bug #72061 - Out-of-bounds reads in zif_grapheme_stripos with negative offset bug #71843 - null ptr deref ZEND_RETURN_SPEC_CONST_HANDLER bug #71952 - Corruption inside imageaffinematrixget Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2016-04-02T14:51:22+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2016-04-01T12:02:19+00:00 urn:sha1:039db88c6b500bbc1863e11a1141f12b1842af82 Fixes (no CVEs yet): Buffer over-write in finfo_open with malformed magic file. Invalid memory write in phar on filename with \0 in name. Parsing of tar file with duplicate filenames causes memory leak. php_snmp_error() Format String Vulnerability. Integer Overflow in php_raw_url_encode. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2016-03-04T16:07:47+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2016-03-04T10:47:40+00:00 urn:sha1:e6d744e3071af563a270060c13f3cc2ae7ce3c5f Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2016-02-05T22:23:07+00:00 Bernd Kuhls bernd.kuhls@t-online.de 2016-02-04T21:16:08+00:00 urn:sha1:b420e0b55983d44e7bad854da5ca00907a77f868 Changelog: http://www.php.net/ChangeLog-5.php#5.6.18 Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Acked-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2016-01-08T17:51:46+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2016-01-07T18:46:52+00:00 urn:sha1:2f52641294f187829257d9c2f823cb2ede3f30a0 Bug #70976 (Memory Read via gdImageRotateInterpolated Array Index Out of Bounds). Bug #70755 (fpm_log.c memory leak and buffer overflow). Bug #70661 (Use After Free Vulnerability in WDDX Packet Deserialization). Bug #70741 (Session WDDX Packet Deserialization Type Confusion Vulnerability). Bug #70728 (Type Confusion Vulnerability in PHP_to_XMLRPC_worker()). No CVEs assigned yet. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2015-11-28T13:32:10+00:00 Bernd Kuhls bernd.kuhls@t-online.de 2015-11-28T11:32:20+00:00 urn:sha1:f67ffb437566562be47188097f846ade231daf3c Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com> 2015-10-31T08:39:01+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2015-10-30T12:33:32+00:00 urn:sha1:567a7c3dfadbe0304b5990a465000fba130dfa46 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2015-10-02T19:00:50+00:00 Gustavo Zacarias gustavo@zacarias.com.ar 2015-10-02T16:01:22+00:00 urn:sha1:48518f428bb78f8a7b04ff3c780cd48f1c4b1f76 Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> 2015-09-06T08:48:22+00:00 Bernd Kuhls bernd.kuhls@t-online.de 2015-09-05T09:29:25+00:00 urn:sha1:59dda508e59e3603cb58a9737a5b3383301ac66f Link to release announcement: http://php.net/archive/2015.php#id2015-09-04-2 Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>