[Buildroot] [PATCH] php: security bump to version 5.5.22

Thomas Petazzoni thomas.petazzoni at free-electrons.com
Thu Feb 19 20:27:45 UTC 2015


Dear Gustavo Zacarias,

On Thu, 19 Feb 2015 11:59:56 -0300, Gustavo Zacarias wrote:
> Fixes:
> CVE-2015-0273 - Use after free vulnerability in unserialize() with
> DateTimeZone.
> CVE-2015-0235 - Mitigation for GHOST: glibc gethostbyname buffer
> overflow.
> 
> Signed-off-by: Gustavo Zacarias <gustavo at zacarias.com.ar>
> ---
>  package/php/php.hash | 2 +-
>  package/php/php.mk   | 2 +-
>  2 files changed, 2 insertions(+), 2 deletions(-)

Applied to master, thanks.

Thomas
-- 
Thomas Petazzoni, CTO, Free Electrons
Embedded Linux, Kernel and Android engineering
http://free-electrons.com


More information about the buildroot mailing list