Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package php7 for openSUSE:Factory checked in at 2022-10-01 17:42:45 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/php7 (Old) and /work/SRC/openSUSE:Factory/.php7.new.2275 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "php7" Sat Oct 1 17:42:45 2022 rev:117 rq:1006913 version:7.4.32 Changes: -------- --- /work/SRC/openSUSE:Factory/php7/php7.changes 2022-06-13 13:01:58.761070827 +0200 +++ /work/SRC/openSUSE:Factory/.php7.new.2275/php7.changes 2022-10-01 17:42:56.509646710 +0200 @@ -1,0 +2,11 @@ +Thu Sep 29 10:17:46 UTC 2022 - pgaj...@suse.com + +- version update to 7.4.32 + * This is security release that addresses an infinite recursion with specially + constructed phar files, and prevents a clash with variable name mangling for + the __Host/__Secure HTTP headers. + * CVEs fixed: CVE-2022-31628, CVE-2022-31629 + https://www.php.net/ChangeLog-7.php#7.4.32 + https://www.php.net/ChangeLog-7.php#7.4.31 + +------------------------------------------------------------------- Old: ---- php-7.4.30.tar.xz php-7.4.30.tar.xz.asc New: ---- php-7.4.32.tar.xz php-7.4.32.tar.xz.asc ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ php7.spec ++++++ --- /var/tmp/diff_new_pack.mnctxZ/_old 2022-10-01 17:42:57.413648354 +0200 +++ /var/tmp/diff_new_pack.mnctxZ/_new 2022-10-01 17:42:57.421648369 +0200 @@ -53,7 +53,7 @@ %define build_argon2 1 %endif Name: %{pprefix}%{php_name}%{psuffix} -Version: 7.4.30 +Version: 7.4.32 Release: 0 Summary: Interpreter for the PHP scripting language version 7 License: PHP-3.01 ++++++ php-7.4.30.tar.xz -> php-7.4.32.tar.xz ++++++ /work/SRC/openSUSE:Factory/php7/php-7.4.30.tar.xz /work/SRC/openSUSE:Factory/.php7.new.2275/php-7.4.32.tar.xz differ: char 27, line 1
