--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2016-ace6f06a4d
2016-04-05 10:09:11.083748
--------------------------------------------------------------------------------

Name        : php
Product     : Fedora 24
Version     : 5.6.20
Release     : 1.fc24
URL         : https://www.php.net/
Summary     : PHP scripting language for creating dynamic web sites
Description :
PHP is an HTML-embedded scripting language. PHP attempts to make it
easy for developers to write dynamically generated web pages. PHP also
offers built-in database integration for several commercial and
non-commercial database management systems, so writing a
database-enabled webpage with PHP is fairly simple. The most common
use of PHP coding is probably as a replacement for CGI scripts.

The php package contains the module (often referred to as mod_php)
which adds support for the PHP language to Apache HTTP Server.

--------------------------------------------------------------------------------
Update Information:

31 Mar 2016, **PHP 5.6.20**  **CLI Server:**  * Fixed bug php#69953 (Support
MKCALENDAR request method). (Christoph)  **Core:**  * Fixed bug php#71596
(Segmentation fault on ZTS with date function (setlocale)). (Anatol)  **Curl:**
* Fixed bug php#71694 (Support constant CURLM_ADDED_ALREADY). (mpyw)  **Date:**
* Fixed bug php#71635 (DatePeriod::getEndDate segfault). (Thomas Punt)
**Fileinfo:**  * Fixed bug php#71527 (Buffer over-write in finfo_open with
malformed magic file). (Anatol)  **Mbstring:**  * Fixed bug php#71906
(AddressSanitizer: negative-size-param (-1) in mbfl_strcut). (Stas)  **ODBC:**
* Fixed bug php#47803, php#69526 (Executing prepared statements is succesfull
only for the first two statements). (einavitamar, Anatol) * Fixed bug php#71860
(Invalid memory write in phar on filename with \0 in name). (Stas)
**PDO_DBlib:**  * Fixed bug php#54648 (PDO::MSSQL forces format of datetime
fields). (steven, Anatol)  **Phar:**  * Fixed bug php#71625 (Crash in php7.dll
with bad phar filename). (Anatol) * Fixed bug php#71504 (Parsing of tar file
with duplicate filenames causes memory leak). (Jos Elstgeest)  **SNMP:**  *
Fixed bug php#71704 (php_snmp_error() Format String Vulnerability). (andrew)
**Standard**  * Fixed bug php#71798 (Integer Overflow in php_raw_url_encode).
(taoguangchen, Stas)
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program. Use
su -c 'yum update php' at the command line.
For more information, refer to "Managing Software with yum",
available at .

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://lists.fedoraproject.org/admin/lists/package-announce.lists.fedoraproject.org/

Fedora 24: php Security Update 2016-ace6f06a4d

April 5, 2016
31 Mar 2016, **PHP 5.6.20** **CLI Server:** * Fixed bug php#69953 (Support MKCALENDAR request method)

Summary

PHP is an HTML-embedded scripting language. PHP attempts to make it

easy for developers to write dynamically generated web pages. PHP also

offers built-in database integration for several commercial and

non-commercial database management systems, so writing a

database-enabled webpage with PHP is fairly simple. The most common

use of PHP coding is probably as a replacement for CGI scripts.

The php package contains the module (often referred to as mod_php)

which adds support for the PHP language to Apache HTTP Server.

Update Information:

31 Mar 2016, **PHP 5.6.20** **CLI Server:** * Fixed bug php#69953 (Support MKCALENDAR request method). (Christoph) **Core:** * Fixed bug php#71596 (Segmentation fault on ZTS with date function (setlocale)). (Anatol) **Curl:** * Fixed bug php#71694 (Support constant CURLM_ADDED_ALREADY). (mpyw) **Date:** * Fixed bug php#71635 (DatePeriod::getEndDate segfault). (Thomas Punt) **Fileinfo:** * Fixed bug php#71527 (Buffer over-write in finfo_open with malformed magic file). (Anatol) **Mbstring:** * Fixed bug php#71906 (AddressSanitizer: negative-size-param (-1) in mbfl_strcut). (Stas) **ODBC:** * Fixed bug php#47803, php#69526 (Executing prepared statements is succesfull only for the first two statements). (einavitamar, Anatol) * Fixed bug php#71860 (Invalid memory write in phar on filename with \0 in name). (Stas) **PDO_DBlib:** * Fixed bug php#54648 (PDO::MSSQL forces format of datetime fields). (steven, Anatol) **Phar:** * Fixed bug php#71625 (Crash in php7.dll with bad phar filename). (Anatol) * Fixed bug php#71504 (Parsing of tar file with duplicate filenames causes memory leak). (Jos Elstgeest) **SNMP:** * Fixed bug php#71704 (php_snmp_error() Format String Vulnerability). (andrew) **Standard** * Fixed bug php#71798 (Integer Overflow in php_raw_url_encode). (taoguangchen, Stas)

Change Log

References

Fedora Update Notification FEDORA-2016-ace6f06a4d 2016-04-05 10:09:11.083748 Name : php Product : Fedora 24 Version : 5.6.20 Release : 1.fc24 URL : https://www.php.net/ Summary : PHP scripting language for creating dynamic web sites Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. The php package contains the module (often referred to as mod_php) which adds support for the PHP language to Apache HTTP Server.

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update php' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
Name : php
Product : Fedora 24
Version : 5.6.20
Release : 1.fc24
URL : https://www.php.net/
Summary : PHP scripting language for creating dynamic web sites

Related News

19.Laptop Bed Esm H320
2 - 3 min read
AlmaLinux 9.4 beta has been released and provides compelling reasons to consider it for desktop usage. While AlmaLinux is primarily known as a
32.Lock Code Circular Esm H320
2 - 3 min read
Linux admins and security practitioners face significant challenges in keeping their Linux systems secure amidst the constant threat of kernel bugs.
1.Penguin Landscape Esm H320
2 - 3 min read
A significant security threat, known as the Spectre v2 exploit, has been observed targeting Linux systems running on modern Intel processors. Let's
10.FingerPrint Locks Esm H320
2 - 3 min read
The recent release of I2P 2.5.0 , an anonymous P2P network that protects against online censorship, surveillance, and monitoring, has brought a slew
24.Key Code Esm H320
2 - 3 min read
The Akira ransomware group has extorted approximately $42 million from over 250 victims since January 1, 2024. The group initially focused on
5.ShakingHands Esm H320
2 - 3 min read
At The Linux Foundation's Open Source Summit North America , Linus Torvalds, the creator of Linux, discussed various topics related to Linux
30.Lock Globe Motherboard Esm H320
1 - 2 min read
The SPDX 3.0 release marks a significant milestone in software management, particularly for Linux admins, infosec professionals, internet security
11.Locks IsometricPattern Esm H320
2 - 3 min read
Open Source maintainers and developers have been warned about the continued wave of attacks aimed at project maintainers similar to those recently
Sign Up

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved