projects / buildroot.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 0cfddd9)
php: bump version to 7.1.0 (security)
authorVicente Olivert Riera <Vincent.Riera@imgtec.com>
Mon, 9 Jan 2017 17:13:34 +0000 (17:13 +0000)
committerPeter Korsgaard <peter@korsgaard.com>
Tue, 10 Jan 2017 20:02:52 +0000 (21:02 +0100)
Fixed CVEs:
 - CVE-2016-9933 (imagefilltoborder stackoverflow on truecolor images)
   http://bugs.php.net/72696
 - CVE-2016-9934 (NULL Pointer Dereference in WDDX Packet
   Deserialization with PDORow)
   http://bugs.php.net/73331

Full ChangeLog:
  http://php.net/ChangeLog-7.php#7.1.0

Signed-off-by: Vicente Olivert Riera <Vincent.Riera@imgtec.com>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/php/php.hash patch | blob | history
package/php/php.mk patch | blob | history

diff --git a/package/php/php.hash b/package/php/php.hash
index 0424e467f79635ba4f91e2d70683134594e21976..5e4bdcb4453ab9f65f9b1ea47ce781a550bdff9b 100644 (file)
--- a/package/php/php.hash
+++ b/package/php/php.hash
@@ -1,2 +1,2 @@
 # From http://php.net/downloads.php
-sha256 0f1dff6392a1cc2ed126b9695f580a2ed77eb09d2c23b41cabfb41e6f27a8c89  php-7.0.14.tar.xz
+sha256 a810b3f29c21407c24caa88f50649320d20ba6892ae1923132598b8a0ca145b6  php-7.1.0.tar.xz
diff --git a/package/php/php.mk b/package/php/php.mk
index e8c8f4b779439c95c1d4039274b9acf130b5a5bd..2ba70aa55a92588404ee72a6b85c7dea8a35f5d8 100644 (file)
--- a/package/php/php.mk
+++ b/package/php/php.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-PHP_VERSION = 7.0.14
+PHP_VERSION = 7.1.0
 PHP_SITE = http://www.php.net/distributions
 PHP_SOURCE = php-$(PHP_VERSION).tar.xz
 PHP_INSTALL_STAGING = YES