Learn about Centmin Mod LEMP Stack today
Register Now

Beta Branch backport security bug patches from PHP 7.1.27 to PHP 5.6 in 123.09beta01

Discussion in 'Centmin Mod Github Commits' started by eva2000, Mar 8, 2019.

Tags:
  1. eva2000

    eva2000 Administrator Staff Member

    49,360
    11,306
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +17,591
    Local Time:
    8:29 AM
    Nginx 1.21.x
    MariaDB 10.x
    backport security bug patches from PHP 7.1.27 to PHP 5.6 in 123.09beta01

    patch PHP 5.6 builds for


    - security bug #77540 PHP :: Sec Bug #77540 :: Invalid Read on exif_process_SOFn
    - security bug #77563 PHP :: Sec Bug #77563 :: Uninitialized read in exif_process_IFD_in_MAKERNOTE
    - security bug #77630 PHP :: Sec Bug #77630 :: rename() across the device may allow unwanted access during processing

    Continue reading...

    123.09beta01 branch
     
  2. eva2000

    eva2000 Administrator Staff Member

    49,360
    11,306
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +17,591
    Local Time:
    8:29 AM
    Nginx 1.21.x
    MariaDB 10.x
    example of patched PHP 5.6.40 compile via centmin.sh menu option 5
    Code (Text):
    cat /root/centminlogs/patch_php_070319-160149.log
    
    patching PHP 5.6 for bug #77540
    https://bugs.php.net/bug.php?id=77540
    
    dos2unix: converting file php5640-77540.patch to Unix format ...
    patching file ext/exif/exif.c
    patching file ext/exif/exif.c
    
    patching PHP 5.6 for bug #77563
    https://bugs.php.net/bug.php?id=77563
    
    dos2unix: converting file php5640-77563.patch to Unix format ...
    patching file ext/exif/exif.c
    
    patching PHP 5.6 for bug #77630
    https://bugs.php.net/bug.php?id=77630
    
    dos2unix: converting file php5640-77630.patch to Unix format ...
    patching file main/streams/plain_wrapper.c
    

    Code (Text):
    php-config
    Usage: /usr/local/bin/php-config [OPTION]
    Options:
      --prefix            [/usr/local]
      --includes          [-I/usr/local/include/php -I/usr/local/include/php/main -I/usr/local/include/php/TSRM -I/usr/local/include/php/Zend -I/usr/local/include/php/ext -I/usr/local/include/php/ext/date/lib]
      --ldflags           []
      --libs              [-lcrypt  -lc-client  -lz -lexslt -ltidy -lresolv -lcrypt -ledit -lncurses -laspell -lpspell -lrt -lmcrypt -lltdl -lldap -llber -lstdc++ -lcrypt -lpam -lgmp -lt1 -lX11 -lXpm -lpng -lz -ljpeg -lvpx -lenchant -lcurl -lbz2 -lz -lrt -lm -ldl -lnsl  -lsystemd -lxml2 -lz -lm -ldl -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err -lssl -lcrypto -lcurl -lxml2 -lz -lm -ldl -lssl -lcrypto -lfreetype -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err -lssl -lcrypto -ldl -lm -licui18n -licuuc -licudata -ldl -lm -licuio -lxml2 -lz -lm -ldl -lnetsnmp -lssl -lssl -lcrypto -lm -lxml2 -lz -lm -ldl -lcrypt -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lxslt -lxml2 -lz -ldl -lm -lssl -lcrypto -lcrypt ]
      --extension-dir     [/usr/local/lib/php/extensions/no-debug-non-zts-20131226]
      --include-dir       [/usr/local/include/php]
      --man-dir           [/usr/local/php/man]
      --php-binary        [/usr/local/bin/php]
      --php-sapis         [ cli embed fpm cgi]
      --configure-options [--enable-fpm --enable-opcache --enable-intl --enable-pcntl --with-mcrypt --with-snmp --enable-embed=shared --with-mhash --with-zlib --with-gettext --enable-exif --enable-zip --with-bz2 --enable-soap --enable-sockets --enable-sysvmsg --enable-sysvsem --enable-sysvshm --enable-shmop --with-pear --enable-mbstring --with-openssl --with-mysql=mysqlnd --with-libdir=lib64 --with-mysqli=mysqlnd --with-mysql-sock=/var/lib/mysql/mysql.sock --with-curl --with-gd --with-xmlrpc --enable-bcmath --enable-calendar --enable-ftp --enable-gd-native-ttf --with-freetype-dir=/usr --with-jpeg-dir=/usr --with-png-dir=/usr --with-xpm-dir=/usr --with-vpx-dir=/usr --with-t1lib=/usr --enable-pdo --with-pdo-sqlite --with-pdo-mysql=mysqlnd --enable-inline-optimization --with-imap --with-imap-ssl --with-kerberos --with-readline --with-libedit --with-gmp --with-pspell --with-tidy --with-enchant --with-fpm-user=nginx --with-fpm-group=nginx --with-ldap --with-ldap-sasl --with-config-file-scan-dir=/etc/centminmod/php.d --with-fpm-systemd --with-xsl CC=ccache CFLAGS=-O2 -m64 -march=core-avx2 -pipe -gsplit-dwarf -Wno-deprecated-declarations CXX=ccache CXXFLAGS=-O2 -m64 -march=core-avx2 -pipe -gsplit-dwarf -Wno-deprecated-declarations]
      --version           [5.6.40]
      --vernum            [50640]