Learn about Centmin Mod LEMP Stack today
Register Now

Beta Branch backport PHP 7.3.29 security fix to PHP 5.6, 7.0, 7.1, 7.2 in 123.09beta01

Discussion in 'Centmin Mod Github Commits' started by eva2000, Jul 2, 2021.

  1. eva2000

    eva2000 Administrator Staff Member

    47,551
    10,789
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +16,774
    Local Time:
    4:44 PM
    Nginx 1.19.x
    MariaDB 5.5/10.x
    backport PHP 7.3.29 security fix to PHP 5.6, 7.0, 7.1, 7.2 in 123.09beta01

    - Backport PHP 7.3.29/7.4.21/8.0.8 security fix to end of life unsupported PHP 5.6.40, 7.0.33, 7.1.33, and 7.2.34
    - To update, run cmupdate command on local server and then run centmin.sh menu option 5 to re-compile the relevant PHP EOL version for 5.6.40, 7.0.33, 7.1.33, and 7.2.34 if you still are using older PHP versions. Ideally, you should be using PHP 7.3.29+ or 7.4.21+ or 8.0.8+ if your PHP scripts support those versions.
    - PDO_Firebird:
    Fixed bug https://bugs.php.net/bug.php?id=76448 (Stack buffer overflow in firebird_info_cb). (CVE-2021-21704)
    Fixed bug https://bugs.php.net/bug.php?id=76449 (SIGSEGV in firebird_handle_doer). (CVE-2021-21704)
    Fixed bug https://bugs.php.net/bug.php?id=76450 (SIGSEGV in firebird_stmt_execute). (CVE-2021-21704)
    Fixed bug https://bugs.php.net/bug.php?id=76452 (Crash while parsing blob data in firebird_fetch_blob). (CVE-2021-21704)
    - PHP Core Fixed bug https://bugs.php.net/bug.php?id=81122 (SSRF bypass in FILTER_VALIDATE_URL). (CVE-2021-21705)

    Continue reading...


    123.09beta01 branch