CloudLinux - CloudLinux Blog - HardenedPHP and Alt-PHP updated
Blog

By accepting you will be accessing a service provided by a third-party external to https://www.cloudlinux.com/

HardenedPHP and Alt-PHP updated

HardenedPHP and Alt-PHP updated

New updated HardenedPHP and Alt-PHP packages are available from our production repository.

Changelog:

alt-php54-5.4.45-16

  • security bug 72099: xml_parse_into_struct segmentation fault (CVE-2016-4539);

  • security bug 72061: Out-of-bounds reads in zif_grapheme_stripos with negative offset (CVE-2016-4540, CVE-2016-4541);

  • security bug 71912: libgd: signedness vulnerability (CVE-2016-3074);

  • security bug 72094: Out of bounds heap read access in exif header processing (CVE-2016-4542, CVE-2016-4543, CVE-2016-4544);

  • security bug 72093: bcpowmod accepts negative scale and corrupts one definition (CVE-2016-4537, CVE-2016-4538);

  • added workaround for wrong symlinks creation by cagefsctl --setup-cl-selector.

alt-php53-5.3.29-31

  • security bug 72099: xml_parse_into_struct segmentation fault (CVE-2016-4539);

  • security bug 72061: Out-of-bounds reads in zif_grapheme_stripos with negative offset (CVE-2016-4540, CVE-2016-4541);

  • security bug 71912: libgd: signedness vulnerability (CVE-2016-3074);

  • security bug 72094: Out of bounds heap read access in exif header processing (CVE-2016-4542, CVE-2016-4543, CVE-2016-4544);

  • security bug 72093: bcpowmod accepts negative scale and corrupts one definition (CVE-2016-4537, CVE-2016-4538);

  • added workaround for wrong symlinks creation by cagefsctl --setup-cl-selector.

alt-php52-5.2.17-81

  • security bug 72061: Out-of-bounds reads in zif_grapheme_stripos with negative offset (CVE-2016-4540, CVE-2016-4541);

  • security bug 71912: libgd: signedness vulnerability (CVE-2016-3074);

  • security bug 72094: Out of bounds heap read access in exif header processing (CVE-2016-4542, CVE-2016-4543, CVE-2016-4544);

  • security bug 72093: bcpowmod accepts negative scale and corrupts one definition (CVE-2016-4537, CVE-2016-4538);

  • security bug 72093: bcpowmod accepts negative scale and corrupts one definition (CVE-2016-4537, CVE-2016-4538);

  • added workaround for wrong symlinks creation by cagefsctl --setup-cl-selector.

alt-php51-5.1.6-54

  • security bug 71912: libgd: signedness vulnerability (CVE-2016-3074);

  • security bug 72094: Out of bounds heap read access in exif header processing (CVE-2016-4542, CVE-2016-4543, CVE-2016-4544);

  • security bug 72093: bcpowmod accepts negative scale and corrupts one definition (CVE-2016-4537, CVE-2016-4538);

  • added workaround for wrong symlinks creation by cagefsctl --setup-cl-selector.

alt-php44-4.4.9-48

  • security bug 72094: Out of bounds heap read access in exif header processing (CVE-2016-4542, CVE-2016-4543, CVE-2016-4544);

  • security bug 72093: bcpowmod accepts negative scale and corrupts one definition (CVE-2016-4537, CVE-2016-4538);

  • added workaround for wrong symlinks creation by cagefsctl --setup-cl-selector.

alt-php55-5.5.35-2

  • updated to PHP 5.5.35
  • added workaround for wrong symlinks creation by cagefsctl --setup-cl-selector.

alt-php56-5.6.21-2

  • updated to PHP 5.6.21;
  • added workaround for wrong symlinks creation by cagefsctl --setup-cl-selector.

alt-php70-7.0.6-2

  • updated to PHP 7.0.6;
  • added workaround for wrong symlinks creation by cagefsctl --setup-cl-selector.

 

To update run the command:

yum groupupdate alt-php

Ubuntu LTS 16.04 includes livepatch - now what?
How to use a single key to register multiple Kerne...
 

Comments 1

Guest - amin on Thursday, 19 May 2016 09:37

done thank you very much

done thank you very much
Already Registered? Login Here
Guest
Saturday, 08 August 2020

Captcha Image