Buildroot Archive on lore.kernel.org
 help / color / mirror / Atom feed
* [Buildroot] [PATCH] php: security bump to version 5.5.23
@ 2015-03-20 12:49 Gustavo Zacarias
  2015-03-20 13:03 ` Thomas Petazzoni
  0 siblings, 1 reply; 2+ messages in thread
From: Gustavo Zacarias @ 2015-03-20 12:49 UTC (permalink / raw)
  To: buildroot

Fixes:
CVE-2015-0231 - Use After Free Vulnerability in unserialize()
CVE-2015-2305 - heap overflow vulnerability in regcomp.c
CVE-2015-2331 - ZIP Integer Overflow leads to writing past heap boundary

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
---
 package/php/php.hash | 2 +-
 package/php/php.mk   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/package/php/php.hash b/package/php/php.hash
index f8a1715..0794db8 100644
--- a/package/php/php.hash
+++ b/package/php/php.hash
@@ -1,2 +1,2 @@
 # From http://php.net/downloads.php
-md5	fb1704131d495f5b3e6ab3b087a8dbe6	php-5.5.22.tar.xz
+md5	692f9bc5649806f2053eee1e7323b7ea	php-5.5.23.tar.xz
diff --git a/package/php/php.mk b/package/php/php.mk
index 1e77a97..6d35a2f 100644
--- a/package/php/php.mk
+++ b/package/php/php.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-PHP_VERSION = 5.5.22
+PHP_VERSION = 5.5.23
 PHP_SITE = http://www.php.net/distributions
 PHP_SOURCE = php-$(PHP_VERSION).tar.xz
 PHP_INSTALL_STAGING = YES
-- 
2.0.5

^ permalink raw reply related	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2015-03-20 13:03 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2015-03-20 12:49 [Buildroot] [PATCH] php: security bump to version 5.5.23 Gustavo Zacarias
2015-03-20 13:03 ` Thomas Petazzoni

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox