Commit: b1497fe298f077e82d5b1a5024949abddc22b618 Author: Lior Kaplan <[email protected]> Mon, 15 Jan 2018 16:17:06 +0200 Parents: 7b04b6cb80b3d687965ce0feb8f6e4b5b1f5a637 Branches: master
Link: http://git.php.net/?p=web/php.git;a=commitdiff;h=b1497fe298f077e82d5b1a5024949abddc22b618 Log: Add CVE ID to bug #74111 (PHP 5.6.31, 7.0.21 and 7.1.7) Bugs: https://bugs.php.net/74111 Changed paths: M ChangeLog-5.php M ChangeLog-7.php Diff: diff --git a/ChangeLog-5.php b/ChangeLog-5.php index e6fdafb..c273423 100644 --- a/ChangeLog-5.php +++ b/ChangeLog-5.php @@ -46,7 +46,7 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change <ul><li>Core: <ul> <li><?php bugfix(73807); ?> (Performance problem with processing large post request). (CVE-2017-11142)</li> - <li><?php bugfix(74111); ?> (Heap buffer overread (READ: 1) finish_nested_data from unserialize).</li> + <li><?php bugfix(74111); ?> (Heap buffer overread (READ: 1) finish_nested_data from unserialize). (CVE-2017-12933)</li> <li><?php bugfix(74603); ?> (PHP INI Parsing Stack Buffer Overflow Vulnerability).</li> <li><?php bugfix(74819); ?> (wddx_deserialize() heap out-of-bound read via php_parse_date()). (CVE-2017-11145)</li> </ul></li> diff --git a/ChangeLog-7.php b/ChangeLog-7.php index 4cc2b98..6ed0bf5 100644 --- a/ChangeLog-7.php +++ b/ChangeLog-7.php @@ -1060,7 +1060,7 @@ site_header("PHP 7 ChangeLog", array("current" => "docs", "css" => array("change <li>Fixed misparsing of abstract unix domain socket names.</li> <li><?php bugfix(74603); ?> (PHP INI Parsing Stack Buffer Overflow Vulnerability).</li> <li><?php bugfix(74101); ?> (Unserialize Heap Use-After-Free (READ: 1) in zval_get_type). (CVE-2017-12934)</li> - <li><?php bugfix(74111); ?> (Heap buffer overread (READ: 1) finish_nested_data from unserialize).</li> + <li><?php bugfix(74111); ?> (Heap buffer overread (READ: 1) finish_nested_data from unserialize). (CVE-2017-12933)</li> <li><?php bugfix(74819); ?> (wddx_deserialize() heap out-of-bound read via php_parse_date()). (CVE-2017-11145)</li> </ul></li> <li>Date: @@ -1139,7 +1139,7 @@ site_header("PHP 7 ChangeLog", array("current" => "docs", "css" => array("change <li><?php bugfix(74658); ?> (Undefined constants in array properties result in broken properties).</li> <li>Fixed misparsing of abstract unix domain socket names.</li> <li><?php bugfix(74101); ?> (Unserialize Heap Use-After-Free (READ: 1) in zval_get_type). (CVE-2017-12934)</li> - <li><?php bugfix(74111); ?> (Heap buffer overread (READ: 1) finish_nested_data from unserialize).</li> + <li><?php bugfix(74111); ?> (Heap buffer overread (READ: 1) finish_nested_data from unserialize). (CVE-2017-12933)</li> <li><?php bugfix(74603); ?> (PHP INI Parsing Stack Buffer Overflow Vulnerability).</li> <li><?php bugfix(74819); ?> (wddx_deserialize() heap out-of-bound read via php_parse_date()). (CVE-2017-11145)</li> </ul></li> -- PHP Webmaster List Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
