packages/php
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

!225 [sync] PR-224: fix CVE-2024-8929

Browse Source 
From: @openeuler-sync-bot 
Reviewed-by: @dillon_chen 
Signed-off-by: @dillon_chen
This commit is contained in:
openeuler-ci-bot 2024-11-28 02:38:37 +00:00 committed by Gitee
commit fe198cc6bf
No known key found for this signature in database
GPG Key ID: 173E9B9CA92EEF8F
2 changed files with 2292 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2285
php-cve-2024-8929.patch Normal file
View File

File diff suppressed because it is too large Load Diff

13
php.spec
View File

@ -26,7 +26,7 @@
Name: php Name: php
Version: %{upver} Version: %{upver}
Release: 7 Release: 8
Summary: PHP scripting language for creating dynamic web sites Summary: PHP scripting language for creating dynamic web sites
License: PHP-3.01 AND Zend-2.0 AND BSD-2-Clause AND MIT AND Apache-1.0 AND NCSA AND BSL-1.0 License: PHP-3.01 AND Zend-2.0 AND BSD-2-Clause AND MIT AND Apache-1.0 AND NCSA AND BSL-1.0
URL: http://www.php.net/ URL: http://www.php.net/
@ -68,6 +68,7 @@ Patch17: php-cve-2024-11234.patch
Patch18: php-cve-2024-8932.patch Patch18: php-cve-2024-8932.patch
Patch19: php-cve-2024-11233.patch Patch19: php-cve-2024-11233.patch
Patch20: php-ghsa-4w77-75f9-2c8w.patch Patch20: php-ghsa-4w77-75f9-2c8w.patch
Patch21: php-cve-2024-8929.patch
BuildRequires: bzip2-devel, curl-devel >= 7.9, httpd-devel >= 2.0.46-1, pam-devel, httpd-filesystem, nginx-filesystem BuildRequires: bzip2-devel, curl-devel >= 7.9, httpd-devel >= 2.0.46-1, pam-devel, httpd-filesystem, nginx-filesystem
BuildRequires: libstdc++-devel, openssl-devel, sqlite-devel >= 3.6.0, zlib-devel, smtpdaemon, libedit-devel BuildRequires: libstdc++-devel, openssl-devel, sqlite-devel >= 3.6.0, zlib-devel, smtpdaemon, libedit-devel
@ -491,11 +492,7 @@ scripting language and therefore develop “system code” more productively.
For PHP, FFI opens a way to write PHP extensions and bindings to C libraries For PHP, FFI opens a way to write PHP extensions and bindings to C libraries
in pure PHP. in pure PHP.
%package help %package_help
Summary: help
%description help
help
%prep %prep
%autosetup -n php-%{upver} -p1 %autosetup -n php-%{upver} -p1
@ -1095,6 +1092,10 @@ systemctl try-restart php-fpm.service >/dev/null 2>&1 || :
%changelog %changelog
* Thu Nov 28 2024 Funda Wang <fundawang@yeah.net> - 8.0.30-8
- Fix Leak partial content of the heap through heap buffer over-read
CVE-2024-8929
* Sat Nov 23 2024 Funda Wang <fundawang@yeah.net> - 8.0.30-7 * Sat Nov 23 2024 Funda Wang <fundawang@yeah.net> - 8.0.30-7
- Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface - Fix Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI Interface
GHSA-4w77-75f9-2c8w GHSA-4w77-75f9-2c8w