[Buildroot] [PATCH] php: security bump to version 5.5.23

Thomas Petazzoni thomas.petazzoni at free-electrons.com
Fri Mar 20 13:03:06 UTC 2015


Dear Gustavo Zacarias,

On Fri, 20 Mar 2015 09:49:51 -0300, Gustavo Zacarias wrote:
> Fixes:
> CVE-2015-0231 - Use After Free Vulnerability in unserialize()
> CVE-2015-2305 - heap overflow vulnerability in regcomp.c
> CVE-2015-2331 - ZIP Integer Overflow leads to writing past heap boundary
> 
> Signed-off-by: Gustavo Zacarias <gustavo at zacarias.com.ar>
> ---
>  package/php/php.hash | 2 +-
>  package/php/php.mk   | 2 +-
>  2 files changed, 2 insertions(+), 2 deletions(-)

Applied, thanks.

Thomas
-- 
Thomas Petazzoni, CTO, Free Electrons
Embedded Linux, Kernel and Android engineering
http://free-electrons.com


More information about the buildroot mailing list