Get the most out of your Centmin Mod LEMP stack
Become a Member

Beta Branch backport security bug patches from PHP 7.1.27 to PHP 5.6 in 123.09beta01

Discussion in 'Centmin Mod Github Commits' started by eva2000, Mar 8, 2019.

Tags:
  1. eva2000

    eva2000 Administrator Staff Member

    46,677
    10,598
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +16,446
    Local Time:
    9:59 AM
    Nginx 1.19.x
    MariaDB 5.5/10.x
    backport security bug patches from PHP 7.1.27 to PHP 5.6 in 123.09beta01

    patch PHP 5.6 builds for

    - security bug #77540 PHP :: Sec Bug #77540 :: Invalid Read on exif_process_SOFn
    - security bug #77563 PHP :: Sec Bug #77563 :: Uninitialized read in exif_process_IFD_in_MAKERNOTE
    - security bug #77630 PHP :: Sec Bug #77630 :: rename() across the device may allow unwanted access during processing


    Continue reading...

    123.09beta01 branch
     
  2. eva2000

    eva2000 Administrator Staff Member

    46,677
    10,598
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +16,446
    Local Time:
    9:59 AM
    Nginx 1.19.x
    MariaDB 5.5/10.x
    example of patched PHP 5.6.40 compile via centmin.sh menu option 5
    Code (Text):
    cat /root/centminlogs/patch_php_070319-160149.log
    
    patching PHP 5.6 for bug #77540
    https://bugs.php.net/bug.php?id=77540
    
    dos2unix: converting file php5640-77540.patch to Unix format ...
    patching file ext/exif/exif.c
    patching file ext/exif/exif.c
    
    patching PHP 5.6 for bug #77563
    https://bugs.php.net/bug.php?id=77563
    
    dos2unix: converting file php5640-77563.patch to Unix format ...
    patching file ext/exif/exif.c
    
    patching PHP 5.6 for bug #77630
    https://bugs.php.net/bug.php?id=77630
    
    dos2unix: converting file php5640-77630.patch to Unix format ...
    patching file main/streams/plain_wrapper.c
    

    Code (Text):
    php-config
    Usage: /usr/local/bin/php-config [OPTION]
    Options:
      --prefix            [/usr/local]
      --includes          [-I/usr/local/include/php -I/usr/local/include/php/main -I/usr/local/include/php/TSRM -I/usr/local/include/php/Zend -I/usr/local/include/php/ext -I/usr/local/include/php/ext/date/lib]
      --ldflags           []
      --libs              [-lcrypt  -lc-client  -lz -lexslt -ltidy -lresolv -lcrypt -ledit -lncurses -laspell -lpspell -lrt -lmcrypt -lltdl -lldap -llber -lstdc++ -lcrypt -lpam -lgmp -lt1 -lX11 -lXpm -lpng -lz -ljpeg -lvpx -lenchant -lcurl -lbz2 -lz -lrt -lm -ldl -lnsl  -lsystemd -lxml2 -lz -lm -ldl -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err -lssl -lcrypto -lcurl -lxml2 -lz -lm -ldl -lssl -lcrypto -lfreetype -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err -lssl -lcrypto -ldl -lm -licui18n -licuuc -licudata -ldl -lm -licuio -lxml2 -lz -lm -ldl -lnetsnmp -lssl -lssl -lcrypto -lm -lxml2 -lz -lm -ldl -lcrypt -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lxslt -lxml2 -lz -ldl -lm -lssl -lcrypto -lcrypt ]
      --extension-dir     [/usr/local/lib/php/extensions/no-debug-non-zts-20131226]
      --include-dir       [/usr/local/include/php]
      --man-dir           [/usr/local/php/man]
      --php-binary        [/usr/local/bin/php]
      --php-sapis         [ cli embed fpm cgi]
      --configure-options [--enable-fpm --enable-opcache --enable-intl --enable-pcntl --with-mcrypt --with-snmp --enable-embed=shared --with-mhash --with-zlib --with-gettext --enable-exif --enable-zip --with-bz2 --enable-soap --enable-sockets --enable-sysvmsg --enable-sysvsem --enable-sysvshm --enable-shmop --with-pear --enable-mbstring --with-openssl --with-mysql=mysqlnd --with-libdir=lib64 --with-mysqli=mysqlnd --with-mysql-sock=/var/lib/mysql/mysql.sock --with-curl --with-gd --with-xmlrpc --enable-bcmath --enable-calendar --enable-ftp --enable-gd-native-ttf --with-freetype-dir=/usr --with-jpeg-dir=/usr --with-png-dir=/usr --with-xpm-dir=/usr --with-vpx-dir=/usr --with-t1lib=/usr --enable-pdo --with-pdo-sqlite --with-pdo-mysql=mysqlnd --enable-inline-optimization --with-imap --with-imap-ssl --with-kerberos --with-readline --with-libedit --with-gmp --with-pspell --with-tidy --with-enchant --with-fpm-user=nginx --with-fpm-group=nginx --with-ldap --with-ldap-sasl --with-config-file-scan-dir=/etc/centminmod/php.d --with-fpm-systemd --with-xsl CC=ccache CFLAGS=-O2 -m64 -march=core-avx2 -pipe -gsplit-dwarf -Wno-deprecated-declarations CXX=ccache CXXFLAGS=-O2 -m64 -march=core-avx2 -pipe -gsplit-dwarf -Wno-deprecated-declarations]
      --version           [5.6.40]
      --vernum            [50640]