development/languages

php-zts - Thread-safe PHP interpreter for use with the Apache HTTP Server

Website: http://www.php.net/
License: PHP
Vendor: Scientific Linux
Description:
The php-zts package contains a module for use with the Apache HTTP
Server which can operate under a threaded server processing model.

Packages

php-zts-5.3.3-50.el6_10.x86_64 [1.2 MiB] Changelog by Remi Collet (2019-10-29):
- fix underflow in env_path_info in fpm_main.c CVE-2019-11043
php-zts-5.3.3-48.el6_8.x86_64 [1.2 MiB] Changelog by Remi Collet (2016-07-25):
- don't set environmental variable based on user supplied Proxy
  request header CVE-2016-5385
php-zts-5.3.3-46.el6_6.x86_64 [1.2 MiB] Changelog by Remi Collet (2015-07-03):
- fix gzfile accept paths with NUL character #1213407
- fix patch for CVE-2015-4024
php-zts-5.3.3-40.el6_6.x86_64 [1.2 MiB] Changelog by Jan Kaluza (2014-10-23):
- fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710
php-zts-5.3.3-27.el6_5.2.x86_64 [1.2 MiB] Changelog by Remi Collet (2014-09-10):
- spl: fix use-after-free in ArrayIterator due to object
  change during sorting. CVE-2014-4698
- spl: fix use-after-free in SPL Iterators. CVE-2014-4670
- gd: fix NULL pointer dereference in gdImageCreateFromXpm.
  CVE-2014-2497
- fileinfo: fix incomplete fix for CVE-2012-1571 in
  cdf_read_property_info. CVE-2014-3587
- core: fix incomplete fix for CVE-2014-4049 DNS TXT
  record parsing. CVE-2014-3597
php-zts-5.3.3-27.el6_5.1.x86_64 [1.2 MiB] Changelog by Remi Collet (2014-07-15):
- core: type confusion issue in phpinfo(). CVE-2014-4721
- date: fix heap-based buffer over-read in DateInterval. CVE-2013-6712
- core: fix heap-based buffer overflow in DNS TXT record parsing.
  CVE-2014-4049
- core: unserialize() SPL ArrayObject / SPLObjectStorage type
  confusion flaw. CVE-2014-3515
- fileinfo: out-of-bounds memory access in fileinfo. CVE-2014-2270
- fileinfo: unrestricted recursion in handling of indirect type
  rules. CVE-2014-1943
- fileinfo: out of bounds read in CDF parser. CVE-2012-1571
- fileinfo: cdf_check_stream_offset boundary check. CVE-2014-3479
- fileinfo: cdf_count_chain insufficient boundary check. CVE-2014-3480
- fileinfo: cdf_unpack_summary_info() excessive looping
  DoS. CVE-2014-0237
- fileinfo: CDF property info parsing nelements infinite
  loop. CVE-2014-0238
php-zts-5.3.3-27.el6_5.x86_64 [1.2 MiB] Changelog by Remi Collet (2013-12-05):
- add security fix for CVE-2013-6420
php-zts-5.3.3-26.el6.x86_64 [1.2 MiB] Changelog by Remi Collet (2013-08-19):
- add security fix for CVE-2013-4248
php-zts-5.3.3-23.el6_4.x86_64 [1.2 MiB] Changelog by Remi Collet (2013-07-12):
- add security fix for CVE-2013-4113

Listing created by Repoview-0.6.6-4.el7