projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: fa5ce3f)
php: security bump to version 5.5.21
authorGustavo Zacarias <gustavo@zacarias.com.ar>
Thu, 22 Jan 2015 17:17:45 +0000 (14:17 -0300)
committerPeter Korsgaard <peter@korsgaard.com>
Fri, 23 Jan 2015 15:44:27 +0000 (16:44 +0100)
Fixes:
CVE-2015-0231 - Use After Free Vulnerability in PHP's unserialize()
CVE-2014-9427 - Out of bounds read crashes php-cgi
CVE-2015-0232 - Free called on unitialized pointer

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/php/php.hash patch | blob | history
package/php/php.mk patch | blob | history

diff --git a/package/php/php.hash b/package/php/php.hash
index 011728967b218a453f699cb7055c8bf3ad90c8b6..cd27b1020f67428209ac33913c62200149d8290b 100644 (file)
--- a/package/php/php.hash
+++ b/package/php/php.hash
@@ -1,2 +1,2 @@
 # From http://php.net/downloads.php
-md5    51377838dfee2d7bb4715674ac715394        php-5.5.20.tar.xz
+md5    79664ce44f7c93f355a25a3fe3dcc91b        php-5.5.21.tar.xz
diff --git a/package/php/php.mk b/package/php/php.mk
index a5f45743a7e58e00fae66f944b3b2cbfb6dc1516..4bcbe1866dff0d4418c89dc461d99ef6ecb101a1 100644 (file)
--- a/package/php/php.mk
+++ b/package/php/php.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-PHP_VERSION = 5.5.20
+PHP_VERSION = 5.5.21
 PHP_SITE = http://www.php.net/distributions
 PHP_SOURCE = php-$(PHP_VERSION).tar.xz
 PHP_INSTALL_STAGING = YES