Commit: 7b150ab230a666d52a73ced0df457eaa2099a9ad Author: Lior Kaplan <[email protected]> Sun, 20 Mar 2016 08:39:22 +0200 Parents: 2719af9a70caa3dd45bf3be45bcf5b760225c2c0 Branches: master
Link: http://git.php.net/?p=web/php.git;a=commitdiff;h=7b150ab230a666d52a73ced0df457eaa2099a9ad Log: Add CVE for #70350 (PHP 7.0.0) Bugs: https://bugs.php.net/70350 Changed paths: M ChangeLog-7.php Diff: diff --git a/ChangeLog-7.php b/ChangeLog-7.php index c79f6a4..37e680f 100644 --- a/ChangeLog-7.php +++ b/ChangeLog-7.php @@ -868,7 +868,7 @@ site_header("PHP 7 ChangeLog", array("current" => "docs", "css" => array("change <li>Zip: <ul> <li><?php bugfix(70322); ?> (ZipArchive::close() doesn't indicate errors).</li> - <li><?php bugfix(70350); ?> (ZipArchive::extractTo allows for directory traversal when creating directories).</li> + <li><?php bugfix(70350); ?> (ZipArchive::extractTo allows for directory traversal when creating directories). (CVE-2014-9767)</li> <li>Added ZipArchive::setCompressionName and ZipArchive::setCompressionIndex methods.</li> <li>Update bundled libzip to 1.0.1.</li> <li><?php bugfix(67161); ?> (ZipArchive::getStream() returns NULL for certain file).</li> -- PHP Webmaster List Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
