Bug 1429 - [SECURITY] Update php to 5.2.13
Summary: [SECURITY] Update php to 5.2.13
Status: RESOLVED FIXED
Alias: None
Product: buildroot
Classification: Unclassified
Component: Outdated package (show other bugs)
Version: unspecified
Hardware: PC Linux
: P5 normal
Target Milestone: ---
Assignee: unassigned
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2010-03-26 15:58 UTC by Gustavo Zacarias
Modified: 2010-03-31 08:45 UTC (History)
1 user (show)

See Also:
Host: i686-linux
Target: arm-softfloat-linux-uclibcgnueabi
Build:

Attachments
[SECURITY] Bump php to 5.2.13 (790 bytes, patch)
2010-03-26 15:58 UTC, Gustavo Zacarias 		Details
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Gustavo Zacarias 2010-03-26 15:58:44 UTC 
Created attachment 1393 [details]
[SECURITY] Bump php to 5.2.13

PHP 5.2.13 includes security fixes:

*  Fixed safe_mode validation inside tempnam() when the directory path does not end with a /).
* Fixed a possible open_basedir/safe_mode bypass in session extension identified by Grzegorz Stachowiak.
* Improved LCG entropy.
Comment 1 Peter Korsgaard 2010-03-31 08:45:54 UTC 
Thanks, committed. I prefer to keep using the .tar.bz2 upstream though, so I reverted that.