home-assistant
/
buildroot
mirror of https://github.com/home-assistant/buildroot.git
0
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
buildroot/package/php
History
Peter Korsgaard ba8f13e5d7 package/php: security bump to version 8.2.26 
Fixes the following security issues:

- Heap-Use-After-Free in sapi_read_post_data Processing in CLI SAPI
  Interface
  https://github.com/php/php-src/security/advisories/GHSA-4w77-75f9-2c8w

- CVE-2024-8932: OOB access in ldap_escape
  https://github.com/php/php-src/security/advisories/GHSA-g665-fm4p-vhff

- CVE-2024-8929: [Mysqlnd] Leak partial content of the heap through heap
  buffer over-read
  https://github.com/php/php-src/security/advisories/GHSA-h35g-vwh6-m678

- CVE-2024-11233: Single byte overread with convert.quoted-printable-decode
  filter
  https://github.com/php/php-src/security/advisories/GHSA-r977-prxv-hc43

- CVE-2024-11234: Configuring a proxy in a stream context might allow for
  CRLF injection in URIs
  https://github.com/php/php-src/security/advisories/GHSA-c5f2-jwm7-mmq2

- CVE-2024-11236: Integer overflow in the firebird and dblib quoters causing
  OOB writes
  https://github.com/php/php-src/security/advisories/GHSA-5hqh-c84r-qjcv

Changelog: https://www.php.net/ChangeLog-8.php#8.2.26

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
 		2024-12-05 22:31:07 +01:00
..
0001-acinclude.m4-don-t-unset-variables.patch
0002-iconv-tweak-iconv-detection.patch
0003-configure-disable-the-phar-tool.patch
0004-Call-apxs-with-correct-prefix.patch
0005-allow-opcache-cross-compiling.patch
0006-xxhash-h-Fix-GCC-12-Og.patch
Config.ext
Config.in
php-fpm.conf
php.hash package/php: security bump to version 8.2.26 2024-12-05 22:31:07 +01:00
php.mk package/php: security bump to version 8.2.26 2024-12-05 22:31:07 +01:00