php/archived-web-php
1
0
Fork 0
mirror of https://github.com/php/web-php.git synced 2026-03-23 23:02:13 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add shared CVE for #70172, #70365 and #70366 (PHP 5.4.45, 5.5.29, 5.6.13)

Browse Source
This commit is contained in:
Lior Kaplan
2015-09-09 13:54:25 +03:00
parent 879ecdd1aa
commit 0731bb2d19
1 changed files with 9 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
ChangeLog-5.php
View File

@@ -16,7 +16,7 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change
<li><?php bugfix(69900); ?> (Too long timeout on pipes).</li>
<li><?php bugfix(69487); ?> (SAPI may truncate POST data).</li>
<li><?php bugfix(70198); ?> (Checking liveness does not work as expected).</li>
<li><?php bugfix(70172); ?> (Use After Free Vulnerability in unserialize()).</li>
<li><?php bugfix(70172); ?> (Use After Free Vulnerability in unserialize()). (CVE-2105-6834)</li>
<li><?php bugfix(70219); ?> (Use after free vulnerability in session deserializer). (CVE-2015-6835)</li>
</ul></li>
<li>CLI server:
@@ -58,8 +58,8 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change
<ul>
<li><?php bugfix(70290); ?> (Null pointer deref (segfault) in spl_autoload via ob_start).</li>
<li><?php bugfix(70303); ?> (Incorrect constructor reflection for ArrayObject).</li>
<li><?php bugfix(70365); ?> (Use-after-free vulnerability in unserialize() with SplObjectStorage).</li>
<li><?php bugfix(70366); ?> (Use-after-free vulnerability in unserialize() with SplDoublyLinkedList).</li>
<li><?php bugfix(70365); ?> (Use-after-free vulnerability in unserialize() with SplObjectStorage). (CVE-2015-6834)</li>
<li><?php bugfix(70366); ?> (Use-after-free vulnerability in unserialize() with SplDoublyLinkedList). (CVE-2015-6834)</li>
</ul></li>
<li>Standard:
<ul>
@@ -82,7 +82,7 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change
<?php release_date('03-Sep-2015'); ?>
<ul><li>Core:
<ul>
<li><?php bugfix(70172); ?> (Use After Free Vulnerability in unserialize()).</li>
<li><?php bugfix(70172); ?> (Use After Free Vulnerability in unserialize()). (CVE-2105-6834)</li>
<li><?php bugfix(70219); ?> (Use after free vulnerability in session deserializer). (CVE-2015-6835)</li>
</ul></li>
<li>EXIF:
@@ -103,8 +103,8 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change
</ul></li>
<li>SPL:
<ul>
<li><?php bugfix(70365); ?> (Use-after-free vulnerability in unserialize() with SplObjectStorage).</li>
<li><?php bugfix(70366); ?> (Use-after-free vulnerability in unserialize() with SplDoublyLinkedList).</li>
<li><?php bugfix(70365); ?> (Use-after-free vulnerability in unserialize() with SplObjectStorage). (CVE-2015-6834)</li>
<li><?php bugfix(70366); ?> (Use-after-free vulnerability in unserialize() with SplDoublyLinkedList). (CVE-2015-6834)</li>
</ul></li>
<li>XSLT:
<ul>
@@ -122,7 +122,7 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change
<b><?php release_date('03-Sep-2015'); ?></b>
<ul><li>Core:
<ul>
<li><?php bugfix(70172); ?> (Use After Free Vulnerability in unserialize()).</li>
<li><?php bugfix(70172); ?> (Use After Free Vulnerability in unserialize()). (CVE-2105-6834)</li>
<li><?php bugfix(70219); ?> (Use after free vulnerability in session deserializer). (CVE-2015-6835)</li>
</ul></li>
<li>EXIF:
@@ -143,8 +143,8 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change
</ul></li>
<li>SPL:
<ul>
<li><?php bugfix(70365); ?> (Use-after-free vulnerability in unserialize() with SplObjectStorage).</li>
<li><?php bugfix(70366); ?> (Use-after-free vulnerability in unserialize() with SplDoublyLinkedList).</li>
<li><?php bugfix(70365); ?> (Use-after-free vulnerability in unserialize() with SplObjectStorage). (CVE-2015-6834)</li>
<li><?php bugfix(70366); ?> (Use-after-free vulnerability in unserialize() with SplDoublyLinkedList). (CVE-2015-6834)</li>
</ul></li>
<li>XSLT:
<ul>