CloudLinux OS Blog - Beta: HardenedPHP updated
CloudLinux OS Blog

Beta: HardenedPHP updated

Beta: HardenedPHP updated

The new updated HardenedPHP packages are available from our updates-testing repository.

alt-php55-5.5.38-9

  • bug 73764: Crash while loading hostile phar archive (CVE-2016-10159);
  • bug 73768: Memory corruption when loading hostile phar (CVE-2016-10160);
  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 68447: grapheme_extract take an extra trailing character;
  • bug 70213: Unserialize context shared on double class lookup;
  • bug 73549: Use after free when stream is passed to imagepng;
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73773: Seg fault when loading hostile phar;
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

alt-php54-5.4.45-27

  • bug 73764: Crash while loading hostile phar archive (CVE-2016-10159);
  • bug 73768: Memory corruption when loading hostile phar (CVE-2016-10160);
  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 68447: grapheme_extract take an extra trailing character;
  • bug 70213: Unserialize context shared on double class lookup;
  • bug 73549: Use after free when stream is passed to imagepng;
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73773: Seg fault when loading hostile phar;
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

alt-php53-5.3.29-43

  • bug 73764: Crash while loading hostile phar archive (CVE-2016-10159);
  • bug 73768: Memory corruption when loading hostile phar (CVE-2016-10160);
  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 68447: grapheme_extract take an extra trailing character;
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73773: Seg fault when loading hostile phar;
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

alt-php52-5.2.17-94

  • bug 73764: Crash while loading hostile phar archive (CVE-2016-10159);
  • bug 73768: Memory corruption when loading hostile phar (CVE-2016-10160);
  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 68447: grapheme_extract take an extra trailing character;
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73773: Seg fault when loading hostile phar;
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

alt-php51-5.1.6-67

  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

alt-php44-4.4.9-58

  • bug 73825: Heap out of bounds read on unserialize in finish_nested_data() (CVE-2016-10161);
  • bug 73737: FPE when parsing a tag format (CVE-2016-10158);
  • bug 73868: Fix DOS vulnerability in gdImageCreateFromGd2Ctx();
  • bug 73869: Signed Integer Overflow gd_io.c.

To install run the command:

yum groupinstall alt-php --enablerepo=cloudlinux-updates-testing

 

Beta: New CloudLinux 7 kernel released
Beta: LVE Manager, alt-python27-cllib, lve-utils, ...
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Saturday, 24 August 2019

Captcha Image