Beta Branch backport security bug patches from PHP 7.1.27 to PHP 5.6 in 123.09beta01

backport security bug patches from PHP 7.1.27 to PHP 5.6 in 123.09beta01

patch PHP 5.6 builds for

- security bug #77540 PHP :: Sec Bug #77540 :: Invalid Read on exif_process_SOFn
- security bug #77563 PHP :: Sec Bug #77563 :: Uninitialized read in exif_process_IFD_in_MAKERNOTE
- security bug #77630 PHP :: Sec Bug #77630 :: rename() across the device may allow unwanted access during processing

---

Continue reading...

123.09beta01 branch

• Branch: centminmod/centminmod
• Commit History: centminmod/centminmod

 

example of patched PHP 5.6.40 compile via centmin.sh menu option 5

Code (Text):

cat /root/centminlogs/patch_php_070319-160149.log

patching PHP 5.6 for bug #77540
https://bugs.php.net/bug.php?id=77540

dos2unix: converting file php5640-77540.patch to Unix format ...
patching file ext/exif/exif.c
patching file ext/exif/exif.c

patching PHP 5.6 for bug #77563
https://bugs.php.net/bug.php?id=77563

dos2unix: converting file php5640-77563.patch to Unix format ...
patching file ext/exif/exif.c

patching PHP 5.6 for bug #77630
https://bugs.php.net/bug.php?id=77630

dos2unix: converting file php5640-77630.patch to Unix format ...
patching file main/streams/plain_wrapper.c

Code (Text):

php-config
Usage: /usr/local/bin/php-config [OPTION]
Options:
  --prefix            [/usr/local]
  --includes          [-I/usr/local/include/php -I/usr/local/include/php/main -I/usr/local/include/php/TSRM -I/usr/local/include/php/Zend -I/usr/local/include/php/ext -I/usr/local/include/php/ext/date/lib]
  --ldflags           []
  --libs              [-lcrypt  -lc-client  -lz -lexslt -ltidy -lresolv -lcrypt -ledit -lncurses -laspell -lpspell -lrt -lmcrypt -lltdl -lldap -llber -lstdc++ -lcrypt -lpam -lgmp -lt1 -lX11 -lXpm -lpng -lz -ljpeg -lvpx -lenchant -lcurl -lbz2 -lz -lrt -lm -ldl -lnsl  -lsystemd -lxml2 -lz -lm -ldl -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err -lssl -lcrypto -lcurl -lxml2 -lz -lm -ldl -lssl -lcrypto -lfreetype -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err -lssl -lcrypto -ldl -lm -licui18n -licuuc -licudata -ldl -lm -licuio -lxml2 -lz -lm -ldl -lnetsnmp -lssl -lssl -lcrypto -lm -lxml2 -lz -lm -ldl -lcrypt -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lxslt -lxml2 -lz -ldl -lm -lssl -lcrypto -lcrypt ]
  --extension-dir     [/usr/local/lib/php/extensions/no-debug-non-zts-20131226]
  --include-dir       [/usr/local/include/php]
  --man-dir           [/usr/local/php/man]
  --php-binary        [/usr/local/bin/php]
  --php-sapis         [ cli embed fpm cgi]
  --configure-options [--enable-fpm --enable-opcache --enable-intl --enable-pcntl --with-mcrypt --with-snmp --enable-embed=shared --with-mhash --with-zlib --with-gettext --enable-exif --enable-zip --with-bz2 --enable-soap --enable-sockets --enable-sysvmsg --enable-sysvsem --enable-sysvshm --enable-shmop --with-pear --enable-mbstring --with-openssl --with-mysql=mysqlnd --with-libdir=lib64 --with-mysqli=mysqlnd --with-mysql-sock=/var/lib/mysql/mysql.sock --with-curl --with-gd --with-xmlrpc --enable-bcmath --enable-calendar --enable-ftp --enable-gd-native-ttf --with-freetype-dir=/usr --with-jpeg-dir=/usr --with-png-dir=/usr --with-xpm-dir=/usr --with-vpx-dir=/usr --with-t1lib=/usr --enable-pdo --with-pdo-sqlite --with-pdo-mysql=mysqlnd --enable-inline-optimization --with-imap --with-imap-ssl --with-kerberos --with-readline --with-libedit --with-gmp --with-pspell --with-tidy --with-enchant --with-fpm-user=nginx --with-fpm-group=nginx --with-ldap --with-ldap-sasl --with-config-file-scan-dir=/etc/centminmod/php.d --with-fpm-systemd --with-xsl CC=ccache CFLAGS=-O2 -m64 -march=core-avx2 -pipe -gsplit-dwarf -Wno-deprecated-declarations CXX=ccache CXXFLAGS=-O2 -m64 -march=core-avx2 -pipe -gsplit-dwarf -Wno-deprecated-declarations]
  --version           [5.6.40]
  --vernum            [50640]