Summary: | <dev-lang/php-{5.5.31,5.6.17}: Multiple vulnerabilities (CVE-2016-{1903,1904}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Tomáš Mózes <hydrapolic> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | olipro+gentoopub, php-bugs |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | A2 [glsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 577376 | ||
Bug Blocks: |
Description
Tomáš Mózes
2016-01-08 07:34:48 UTC
*** Bug 565808 has been marked as a duplicate of this bug. *** Both fixed versions are now in the tree: https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=d3cbb58f7b708c7457e823a84e8f0c70e9a5efd9 https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e949cd002a24b94279b4b563f438bfff2c67c755 Arches, please stabilize =dev-lang/php-5.5.31 =dev-lang/php-5.6.17 Stable targets: alpha amd64 arm hppa ia64 ppc ppc64 sparc x86 amd64 : ok (builds) Have built both with: USE="apache2 bcmath berkdb bzip2 calendar cdb cgi cjk cli crypt ctype curl debug embed enchant exif fileinfo filter flatfile fpm ftp gd gdbm gmp hash iconv inifile intl iodbc ipv6 json kerberos ldap ldap-sasl libmysqlclient mhash mssql nls odbc opcache pcntl pdo phar posix postgres readline recode session sharedmem simplexml snmp soap sockets spell sqlite ssl sybase-ct systemd sysvipc tidy tokenizer truetype unicode vpx wddx xml xmlreader xmlrpc xmlwriter xpm xslt zip zlib (-firebird) (-frontbase) -imap -libedit -mysql -mysqli -oci8-instant-client -qdbm (-selinux) -threads" amd64 stable x86 stable arm stable Both stable on alpha. ppc stable Stable for HPPA PPC64. sparc stable ia64 stable. Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one. I've removed the affected versions. Just waiting on arm stabilization over in bug #577376 and then I'll get rid of a few more. This issue was resolved and addressed in GLSA 201606-10 at https://security.gentoo.org/glsa/201606-10 by GLSA coordinator Kristian Fiskerstrand (K_F). |