Welcome to Centmin Mod Community
Register Now

Beta Branch backport PHP 7.1.30 security fixes into EOL PHP 5.6.40 & 7.0.33 in 123.09beta01

Discussion in 'Centmin Mod Github Commits' started by eva2000, May 28, 2019.

  1. eva2000

    eva2000 Administrator Staff Member

    53,149
    12,110
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +18,645
    Local Time:
    7:02 PM
    Nginx 1.27.x
    MariaDB 10.x/11.4+
    backport PHP 7.1.30 security fixes into EOL PHP 5.6.40 & 7.0.33 in 123.09beta01

    PHP 7.3.6, 7.2.19 and 7.1.30 have security fixes due soon. Backporting the security fixes from PHP 7.1.30 into EOL releases for PHP 5.6.40 and 7.0.33 which usually do not get anymore security fixes as support is EOL

    - PHP bug #77967 PHP :: Sec Bug #77967 :: Bypassing open_basedir restrictions via file uris
    - PHP bug #77988 PHP :: Sec Bug #77988 :: heap-buffer-overflow on php_jpg_get16
    - PHP bug #78069 PHP :: Sec Bug #78069 :: Out-of-bounds read in iconv.c:_php_iconv_mime_decode() due to integer overflow

    Continue reading...

    123.09beta01 branch