Skip to content

Commit 842227e

Browse files
kaplanliorkaplanlior
committed
Update CVE info for PHP 5.6.26
1 parent a115e53 commit 842227e

File tree

1 file changed

+11
-11
lines changed

1 file changed

+11
-11
lines changed

ChangeLog-5.php

Lines changed: 11 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -35,7 +35,7 @@
3535
</ul></li>
3636
<li>Intl:
3737
<ul>
38-
<li><?php bugfix(73007); ?> (add locale length check).</li>
38+
<li><?php bugfix(73007); ?> (add locale length check). (CVE-2016-7416)</li>
3939
</ul></li>
4040
<li>JSON:
4141
<ul>
@@ -52,12 +52,7 @@
5252
</ul></li>
5353
<li>Mysqlnd:
5454
<ul>
55-
<li><?php bugfix(72293); ?> (Heap overflow in mysqlnd related to BIT fields).</li>
56-
</ul></li>
57-
<li>Phar:
58-
<ul>
59-
<li><?php bugfix(72928); ?> (Out of bound when verify signature of zip phar in phar_parse_zipfile).</li>
60-
<li><?php bugfix(73035); ?> (Out of bound when verify signature of tar phar in phar_parse_tarfile).</li>
55+
<li><?php bugfix(72293); ?> (Heap overflow in mysqlnd related to BIT fields). (CVE-2016-7412)</li>
6156
</ul></li>
6257
<li>PDO:
6358
<ul>
@@ -68,9 +63,14 @@
6863
<li>Implemented FR <?php bugl(72633); ?> (Postgres PDO lastInsertId() should work without specifying a sequence).</li>
6964
<li><?php bugfix(72759); ?> (Regression in pgo_pgsql).</li>
7065
</ul></li>
66+
<li>Phar:
67+
<ul>
68+
<li><?php bugfix(72928); ?> (Out of bound when verify signature of zip phar in phar_parse_zipfile). (CVE-2016-7414)</li>
69+
<li><?php bugfix(73035); ?> (Out of bound when verify signature of tar phar in phar_parse_tarfile).</li>
70+
</ul></li>
7171
<li>SPL:
7272
<ul>
73-
<li><?php bugfix(73029); ?> (Missing type check when unserializing SplArray).</li>
73+
<li><?php bugfix(73029); ?> (Missing type check when unserializing SplArray). (CVE-2016-7417)</li>
7474
</ul></li>
7575
<li>Standard:
7676
<ul>
@@ -81,16 +81,16 @@
8181
<li><?php bugfix(73011); ?> (integer overflow in fgets cause heap corruption).</li>
8282
<li><?php bugfix(73017); ?> (memory corruption in wordwrap function).</li>
8383
<li><?php bugfix(73045); ?> (integer overflow in fgetcsv caused heap corruption).</li>
84-
<li><?php bugfix(73052); ?> (Memory Corruption in During Deserialized-object Destruction) (Stas)</li>
84+
<li><?php bugfix(73052); ?> (Memory Corruption in During Deserialized-object Destruction). (CVE-2016-7411)</li>
8585
</ul></li>
8686
<li>Streams:
8787
<ul>
8888
<li><?php bugfix(72853); ?> (stream_set_blocking doesn't work).</li>
8989
</ul></li>
9090
<li>Wddx:
9191
<ul>
92-
<li><?php bugfix(72860); ?> (wddx_deserialize use-after-free).</li>
93-
<li><?php bugfix(73065); ?> (Out-Of-Bounds Read in php_wddx_push_element).</li>
92+
<li><?php bugfix(72860); ?> (wddx_deserialize use-after-free). (CVE-2016-7413)</li>
93+
<li><?php bugfix(73065); ?> (Out-Of-Bounds Read in php_wddx_push_element). (CVE-2016-7418)</li>
9494
</ul></li>
9595
<li>XML:
9696
<ul>

0 commit comments

Comments
 (0)