Commit: ef55a9223da820ac8709804a15e415abac555d9f Author: Lior Kaplan <[email protected]> Sat, 30 Apr 2016 23:56:21 +0300 Parents: 00497c7149479fd56e6ee5aadddcbac067306335 Branches: master
Link: http://git.php.net/?p=web/php.git;a=commitdiff;h=ef55a9223da820ac8709804a15e415abac555d9f Log: Add CVE for #67498 (PHP 5.3.29, 5.4.30, 5.5.14 and 5.6.0) Bugs: https://bugs.php.net/67498 Changed paths: M ChangeLog-5.php Diff: diff --git a/ChangeLog-5.php b/ChangeLog-5.php index 71034d7..f10435e 100644 --- a/ChangeLog-5.php +++ b/ChangeLog-5.php @@ -2617,7 +2617,7 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change <li><?php bugfix(67091); ?> (make install fails to install libphp5.so on FreeBSD 10.0).</li> <li><?php bugfix(67368); ?> (Memory leak with immediately dereferenced array in class constant).</li> <li><?php bugfix(67468); ?> (Segfault in highlight_file()/highlight_string()).</li> - <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li> + <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability). (CVE-2014-4721)</li> <li><?php bugfix(67551); ?> (php://input temp file will be located in sys_temp_dir instead of upload_tmp_dir).</li> <li><?php bugfix(67169); ?> (array_splice all elements, then []= gives wrong index).</li> <li><?php bugfix(67198); ?> (php://input regression).</li> @@ -3164,7 +3164,7 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change <li><?php bugfix(67390); ?> (insecure temporary file use in the configure script). (CVE-2014-3981)</li> <li><?php bugfix(67399); ?> (putenv with empty variable may lead to crash).</li> <li><?php bugfix(67492); ?> (unserialize() SPL ArrayObject / SPLObjectStorage Type Confusion) (CVE-2014-3515).</li> - <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li> + <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability). (CVE-2014-4721)</li> </li> </ul></li> <li>COM: @@ -3326,7 +3326,7 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change <li><?php bugfix(67390); ?> (insecure temporary file use in the configure script). (CVE-2014-3981).</li> <li><?php bugfix(67399); ?> (putenv with empty variable may lead to crash).</li> - <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li> + <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability). (CVE-2014-4721)</li> <li>Fixed BC break introduced by patch for bug <?php bugl(67072); ?>.</li> </ul></li> <li>Date: @@ -3395,7 +3395,7 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change <li><?php bugfix(66622); ?> (Closures do not correctly capture the late bound class (static::) in some cases).</li> <li><?php bugfix(67390); ?> (insecure temporary file use in the configure script) (CVE-2014-3981).</li> <li><?php bugfix(67399); ?> (putenv with empty variable may lead to crash).</li> - <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li> + <li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability). (CVE-2014-4721)</li> </ul></li> <li>CLI server: <ul> -- PHP Webmaster List Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
