Bug 703326 (CVE-2019-11045, CVE-2019-11046, CVE-2019-11047, CVE-2019-11049, CVE-2019-11050)

Comment 1 Thomas Deutschmann (RETIRED) 2019-12-19 02:57:05 UTC

Bcmath:
Fixed bug https://bugs.php.net/bug.php?id=78878 (Buffer underflow in bc_shift_addsub). (CVE-2019-11046)

Core:
Fixed bug https://bugs.php.net/bug.php?id=78863 (DirectoryIterator class silently truncates after a null byte). (CVE-2019-11045)
Fixed bug https://bugs.php.net/bug.php?id=78943 (mail() may release string with refcount==1 twice). (CVE-2019-11049).


EXIF:
Fixed bug https://bugs.php.net/bug.php?id=78793 (Use-after-free in exif parsing under memory sanitizer). (CVE-2019-11050)
Fixed bug https://bugs.php.net/bug.php?id=78910 (Heap-buffer-overflow READ in exif). (CVE-2019-11047)

Comment 2 Mikle Kolyada (RETIRED) 2019-12-23 09:22:06 UTC

amd64 stable

Comment 3 Agostino Sarubbo 2019-12-24 08:09:15 UTC

x86 stable

Comment 4 Mikle Kolyada (RETIRED) 2019-12-24 14:02:14 UTC

arm stable

Comment 5 Aaron Bauman (RETIRED) 2019-12-25 20:05:05 UTC

arm64 stable

Comment 6 Sergei Trofimovich (RETIRED) 2019-12-25 21:02:34 UTC

hppa/ia64 stable

Comment 7 Agostino Sarubbo 2019-12-30 15:54:26 UTC

ppc stable

Comment 8 Agostino Sarubbo 2019-12-31 08:18:29 UTC

ppc64 stable

Comment 9 Thomas Deutschmann (RETIRED) 2020-01-17 20:15:36 UTC

GLSA Vote: No!

Repository is clean, all done!