Linux Security
    Linux Security
    Linux Security

    Fedora 31: php FEDORA-2020-32f9a2b308

    Date
    224
    Posted By
    **PHP version 7.3.15** (20 Feb 2020) **Core:** * Fixed bug php#71876 (Memory corruption htmlspecialchars(): charset `*' not supported). (Nikita) * Fixed bug #php#79146 (cscript can fail to run on some systems). (clarodeus) * Fixed bug php#78323 (Code 0 is returned on invalid options). (Ivan Mikheykin) * Fixed bug php#76047 (Use-after-free when accessing already destructed backtrace
    --------------------------------------------------------------------------------
    Fedora Update Notification
    FEDORA-2020-32f9a2b308
    2020-02-27 17:26:04.898486
    --------------------------------------------------------------------------------
    
    Name        : php
    Product     : Fedora 31
    Version     : 7.3.15
    Release     : 1.fc31
    URL         : https://www.php.net/
    Summary     : PHP scripting language for creating dynamic web sites
    Description :
    PHP is an HTML-embedded scripting language. PHP attempts to make it
    easy for developers to write dynamically generated web pages. PHP also
    offers built-in database integration for several commercial and
    non-commercial database management systems, so writing a
    database-enabled webpage with PHP is fairly simple. The most common
    use of PHP coding is probably as a replacement for CGI scripts.
    
    The php package contains the module (often referred to as mod_php)
    which adds support for the PHP language to Apache HTTP Server.
    
    --------------------------------------------------------------------------------
    Update Information:
    
    **PHP version 7.3.15** (20 Feb 2020)  **Core:**  * Fixed bug php#71876 (Memory
    corruption htmlspecialchars(): charset `*' not supported). (Nikita) * Fixed bug
    #php#79146 (cscript can fail to run on some systems). (clarodeus) * Fixed bug
    php#78323 (Code 0 is returned on invalid options). (Ivan Mikheykin) * Fixed bug
    php#76047 (Use-after-free when accessing already destructed backtrace
    arguments). (Nikita)  **CURL:**  * Fixed bug php#79078 (Hypothetical use-after-
    free in curl_multi_add_handle()). (cmb)  **Intl:**  * Fixed bug php#79212
    (NumberFormatter::format() may detect wrong type). (cmb)  **Libxml:**  * Fixed
    bug php#79191 (Error in SoapClient ctor disables DOMDocument::save()). (Nikita,
    cmb)  **MBString:**  * Fixed bug php#79154 (mb_convert_encoding() can modify
    $from_encoding). (cmb)  **MySQLnd:**  * Fixed bug php#79084 (mysqlnd may fetch
    wrong column indexes with MYSQLI_BOTH). (cmb)  **OpenSSL:**  * Fixed bug
    php#79145 (openssl memory leak). (cmb, Nikita)  **Phar:**  * Fixed bug php#79082
    (Files added to tar with Phar::buildFromIterator have all-access permissions).
    (**CVE-2020-7063**) (stas) * Fixed bug php#79171 (heap-buffer-overflow in
    phar_extract_file). (**CVE-2020-7061**) (cmb) * Fixed bug php#76584
    (PharFileInfo::decompress not working). (cmb)  **Reflection:**  * Fixed bug
    php#79115 (ReflectionClass::isCloneable call reflected class __destruct).
    (Nikita)  **Session:**  * Fixed bug php#79221 (Null Pointer Dereference in PHP
    Session Upload Progress). (**CVE-2020-7062**) (stas)  **SPL:**  * Fixed bug
    php#79151 (heap use after free caused by spl_dllist_it_helper_move_forward).
    (Nikita)  **Standard:**  * Fixed bug php#78902 (Memory leak when using
    stream_filter_append). (liudaixiao)  **Testing:**  * Fixed bug php#78090
    (bug45161.phpt takes forever to finish). (cmb)  **XSL:**  * Fixed bug php#70078
    (XSL callbacks with nodes as parameter leak memory). (cmb)
    --------------------------------------------------------------------------------
    ChangeLog:
    
    * Tue Feb 18 2020 Remi Collet  - 7.3.15-1
    - Update to 7.3.15 - https://www.php.net/releases/7_3_15.php
    * Tue Jan 21 2020 Remi Collet  - 7.3.14-1
    - Update to 7.3.14 - https://www.php.net/releases/7_3_14.php
    * Tue Jan  7 2020 Remi Collet  - 7.3.14~RC1-1
    - update to 7.3.14RC1
    * Tue Dec 17 2019 Remi Collet  - 7.3.13-1
    - Update to 7.3.13 - https://www.php.net/releases/7_3_13.php
    * Tue Dec  3 2019 Remi Collet  - 7.3.13~RC1-1
    - update to 7.3.13RC1
    * Tue Nov 19 2019 Remi Collet  - 7.3.12-1
    - Update to 7.3.12 - https://www.php.net/releases/7_3_12.php
    * Wed Nov  6 2019 Remi Collet  - 7.3.12~RC1-1
    - update to 7.3.12RC1
    * Tue Oct 22 2019 Remi Collet  - 7.3.11-1
    - Update to 7.3.11 - https://www.php.net/releases/7_3_11.php
    --------------------------------------------------------------------------------
    
    This update can be installed with the "dnf" update program. Use
    su -c 'dnf upgrade --advisory FEDORA-2020-32f9a2b308' at the command
    line. For more information, refer to the dnf documentation available at
    https://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
    
    All packages are signed with the Fedora Project GPG key. More details on the
    GPG keys used by the Fedora Project can be found at
    https://fedoraproject.org/keys
    --------------------------------------------------------------------------------
    _______________________________________________
    package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it.
    To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it.
    Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
    List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
    List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it.
    

    LinuxSecurity Poll

    Which aspect of server security are you most interested in learning more about?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /main-polls/38-which-aspect-of-server-security-are-you-most-interested-in-learning-more-about?task=poll.vote&format=json
    38
    radio
    [{"id":"131","title":"Preventing information leakage","votes":"1","type":"x","order":"1","pct":100,"resources":[]},{"id":"132","title":"Firewall considerations","votes":"0","type":"x","order":"2","pct":0,"resources":[]},{"id":"133","title":"Permissions ","votes":"0","type":"x","order":"3","pct":0,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350


    VIEW MORE POLLS

    bottom 200

    Please enable / Bitte aktiviere JavaScript!
    Veuillez activer / Por favor activa el Javascript![ ? ]

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.