php74 보안 업데이트
업데이트 : 2021.01.03
이름 : php74-1:7.4.13-1.an3
벤더 : AnNyung Packaging Team
설명 :
PHP 7.4 is an HTML-embedded scripting language. PHP attempts to make it
easy for developers to write dynamically generated web pages. PHP
also offers built-in database integration for several commercial
and non-commercial database management systems, so writing a
database-enabled web page with PHP is fairly simple. The most
common use of PHP coding is probably as a replacement for CGI
scripts.
Building option:
--with no_goto : if don't add vm kind option with goto..
변경사항
- update 7.4.13
. http://www.php.net/ChangeLog-7.php#7.4.13
- official fixed 7.4.13
. fixed #74558 Can't rebind closure returned by Closure::fromCallable()
. fixed #80345 PHPIZE configuration has outdated PHP_RELEASE_VERSION
. fixed #80345 PHPIZE configuration has outdated PHP_RELEASE_VERSION
. fixed #72964 White space not unfolded for CC/Bcc headers
. fixed #80362 Running dtrace scripts can cause php to crash
. fixed #80393 Build of PHP extension fails due to configuration gap with libtool
. fixed #80402 configure filtering out -lpthread
. fixed #77069 stream filter loses final block of data
. fixed #77961 finfo_open crafted magic parsing SIGABRT
. fixed #69625 FPM returns 200 status on request without SCRIPT_FILENAME env
. fixed #80425 MessageFormatAdapter::getArgTypeList redefined
. fixed #80368 OpenSSL extension fails to build against LibreSSL due to lack of OCB support
. fixed #73809 Phar Zip parse crash - mmap fail
. fixed #75102 `PharData` says invalid checksum for valid tar
. fixed #77322 PharData::addEmptyDir('/') Possible integer overflow
. fixed #80458 PDOStatement::fetchAll() throws for upsert queries
. fixed #63185 nextRowset() ignores MySQL errors with native prepared statements
. fixed #78152 PDO::exec() - Bad error handling with multiple commands
. fixed #70066 Unexpected "Cannot execute queries while other unbuffered queries"
. fixed #71145 Multiple statements in init command triggers unbuffered query error
. fixed #76815 PDOStatement cannot be GCed/closeCursor-ed when a PROCEDURE resultset SIGNAL
. fixed #80366 Return Value of zend_fstat() not Checked
. fixed #80411 References to null-serialized object break serialize()
. fixed #77594 ob_tidyhandler is never reset
. fixed #48725 Support for flushing in zlib stream
- official fixed 7.3.14
. fixed #80523 bogus parse error on >4GB source code
. fixed #80384 filter buffers entire read until file closed
. fixed #80376 last day of the month causes runway cpu usage. (Derick)
. fixed #67983 mysqlnd with MYSQLI_OPT_INT_AND_FLOAT_NATIVE fails to interpret bit columns
. fixed #64638 Fetching resultsets from stored procedure with cursor fails
. fixed #72862 segfault using prepared statements on stored procedures that use a cursor
. fixed #77935 Crash in mysqlnd_fetch_stmt_row_cursor when calling an SP with a cursor
- security isseus
. CVE-2020-7070 PHP parses encoded cookie names so malicious `__Host-` cookies can be sent (#79699)
. CVE-2020-7069 Wrong ciphertext/tag in AES-CCM encryption for a 12 bytes IV (#79601)
. CVE-2020-7068 Use of freed hash key in the phar_parse_zipfile function (#79797)
업데이트 패키지
SRPMS:
. php74-7.4.13-1.an3.src.rpm
x86_64:
. php74-7.4.13-1.an3.x86_64.rpm
. php74-cli-7.4.13-1.an3.x86_64.rpm
. php74-dba-7.4.13-1.an3.x86_64.rpm
. php74-dblib-7.4.13-1.an3.x86_64.rpm
. php74-devel-7.4.13-1.an3.x86_64.rpm
. php74-extension-7.4.13-1.an3.x86_64.rpm
. php74-fpm-7.4.13-1.an3.x86_64.rpm
. php74-odbc-7.4.13-1.an3.x86_64.rpm
. php74-pgsql-7.4.13-1.an3.x86_64.rpm
|