php71 보안 업데이트
업데이트 : 2022.02.06
이름 : php71-2:7.1.33-4.an3
벤더 : AnNyung Packaging Team
설명 :
PHP 7.1 is an HTML-embedded scripting language. PHP attempts to make it
easy for developers to write dynamically generated web pages. PHP
also offers built-in database integration for several commercial
and non-commercial database management systems, so writing a
database-enabled web page with PHP is fairly simple. The most
common use of PHP coding is probably as a replacement for CGI
scripts.
Building option:
--with no_goto : if don't add vm kind option with goto..
변경사항
- support TLS 1.3 (lined openssl 1.1)
- security issues
. #79812 Pcntl: Potential integer overflow in pcntl_exec()
. CVE-2020-7071 Standard: FILTER_VALIDATE_URL accepts URLs with invalid userinfo (#77423)
. CVE-2021-21706 Zip: ZipArchive::extractTo extracts outside of destinatio (#81420)
. CVE-2021-21703 FPM; PHP-FPM oob R/W in root process leading to privilege escalation (#81026)
. CVE-2021-21707 XML: special character is breaking the path in xml function (#79971)
업데이트 패키지
SRPMS:
. php71-7.1.33-4.an3.src.rpm
x86_64:
. php71-7.1.33-4.an3.x86_64.rpm
. php71-cli-7.1.33-4.an3.x86_64.rpm
. php71-dba-7.1.33-4.an3.x86_64.rpm
. php71-dblib-7.1.33-4.an3.x86_64.rpm
. php71-devel-7.1.33-4.an3.x86_64.rpm
. php71-extension-7.1.33-4.an3.x86_64.rpm
. php71-fpm-7.1.33-4.an3.x86_64.rpm
. php71-odbc-7.1.33-4.an3.x86_64.rpm
. php71-pgsql-7.1.33-4.an3.x86_64.rpm
|