Changelog for
php70-php-xml-7.0.33-17.fc29.remi.x86_64.rpm :
* Thu Jan 23 2020 Remi Collet
- 7.0.33-17- mbstring: Fix #79037 global buffer-overflow in mbfl_filt_conv_big5_wchar CVE-2020-7060- standard: Fix #79099 OOB read in php_strip_tags_ex CVE-2020-7059
* Tue Dec 17 2019 Remi Collet - 7.0.33-15- bcmath: Fix #78878 Buffer underflow in bc_shift_addsub CVE-2019-11046- core: Fix #78862 link() silently truncates after a null byte on Windows CVE-2019-11044 Fix #78863 DirectoryIterator class silently truncates after a null byte CVE-2019-11045- exif Fix #78793 Use-after-free in exif parsing under memory sanitizer CVE-2019-11050 Fix #78910 Heap-buffer-overflow READ in exif CVE-2019-11047- use oracle client library version 19.5 (18.5 on EL-6)
* Tue Oct 22 2019 Remi Collet - 7.0.33-14- FPM: Fix CVE-2019-11043 env_path_info underflow in fpm_main.c
* Wed Aug 28 2019 Remi Collet - 7.0.33-13- mbstring: Fix CVE-2019-13224 don\'t allow different encodings for onig_new_deluxe- pcre: Fix #75457 heap use-after-free in pcrelib
* Tue Jul 30 2019 Remi Collet - 7.0.33-12- exif: Fix #78256 heap-buffer-overflow on exif_process_user_comment CVE-2019-11042 Fix #78222 heap-buffer-overflow on exif_scan_thumbnail CVE-2019-11041- phar: Fix #77919 Potential UAF in Phar RSHUTDOWN
* Tue Jul 02 2019 Remi Collet - 7.0.33-11- use oracle client library version 19.3- disable opcache.huge_code_pages in default configuration
* Tue May 28 2019 Remi Collet - 7.0.33-9- iconv: Fix #78069 Out-of-bounds read in iconv.c:_php_iconv_mime_decode() CVE-2019-11039- exif: Fix #77988 Heap-buffer-overflow on php_jpg_get16 CVE-2019-11040- sqlite3: Fix #77967 Bypassing open_basedir restrictions via file uris
* Tue Apr 30 2019 Remi Collet - 7.0.33-8- exif: Fix #77950 Heap-buffer-overflow in _estrndup via exif_process_IFD_TAG CVE-2019-11036
* Tue Apr 02 2019 Remi Collet - 7.0.33-7- exif: Fix #77753 Heap-buffer-overflow in php_ifd_get32s CVE-2019-11034 Fix #77831 Heap-buffer-overflow in exif_iif_add_value CVE-2019-11035- sqlite3: Added sqlite3.defensive INI directive
* Fri Mar 15 2019 Remi Collet - 7.0.33-6- Fix #76846 Segfault in shutdown function after memory limit error
* Tue Mar 05 2019 Remi Collet - 7.0.33-5- Fix #77630 rename() across the device may allow unwanted access during processing CVE-2019-9637
* Mon Mar 04 2019 Remi Collet - 7.0.33-4- exif: Fix #77509 Uninitialized read in exif_process_IFD_in_TIFF CVE-2019-9641 Fix #77540 Invalid Read on exif_process_SOFn CVE-2019-9640 Fix #77563 Uninitialized read in exif_process_IFD_in_MAKERNOTE CVE-2019-9638 Fix #77659 Uninitialized read in exif_process_IFD_in_MAKERNOTE CVE-2019-9639- phar: Fix #77396 Null Pointer Dereference in phar_create_or_parse_filename Fix #77586 - phar_tar_writeheaders_int() buffer overflow- spl: Fix #77431 openFile() silently truncates after a null byte
* Fri Jan 18 2019 Remi Collet - 7.0.33-3- cleanup for EL-8
* Wed Jan 09 2019 Remi Collet - 7.0.33-2- core: Fix #77369 memcpy with negative length via crafted DNS response CVE-2019-9022- mbstring: Fix #77370 buffer overflow on mb regex functions - fetch_token CVE-2019-9023 Fix #77371 heap buffer overflow in mb regex functions compile_string_node CVE-2019-9023 Fix #77381 heap buffer overflow in multibyte match_at CVE-2019-9023 Fix #77382 heap buffer overflow in expand_case_fold_string CVE-2019-9023 Fix #77385 buffer overflow in fetch_token CVE-2019-9023 Fix #77394 buffer overflow in multibyte case folding - unicode CVE-2019-9023 Fix #77418 heap overflow in utf32be_mbc_to_code CVE-2019-9023- phar: Fix #77247 heap buffer overflow in phar_detect_phar_fname_ext CVE-2019-9021- xmlrpc: Fix #77242 heap out of bounds read in xmlrpc_decode CVE-2019-9020 Fix #77380 global out of bounds read in xmlrpc base64 code CVE-2019-9024
* Wed Dec 05 2018 Remi Collet - 7.0.33-1- Update to 7.0.33 - http://www.php.net/releases/7_0_33.php- use oracle client library version 18.3
* Tue Sep 11 2018 Remi Collet - 7.0.32-1- Update to 7.0.32 - http://www.php.net/releases/7_0_32.php
* Thu Aug 23 2018 Remi Collet - 7.0.31-2- F29: backport ICU 62.1 support from 7.1
* Tue Jul 17 2018 Remi Collet - 7.0.31-1- Update to 7.0.31 - http://www.php.net/releases/7_0_31.php
* Tue Apr 24 2018 Remi Collet - 7.0.30-1- Update to 7.0.30 - http://www.php.net/releases/7_0_30.php
* Wed Mar 28 2018 Remi Collet - 7.0.29-1- Update to 7.0.29 - http://www.php.net/releases/7_0_29.php- FPM: update default pool configuration for process.dumpable
* Thu Mar 15 2018 Remi Collet - 7.0.28-2- add file trigger to restart the php-fpm service when new pool or new extension installed (F27+)
* Tue Feb 27 2018 Remi Collet - 7.0.28-1- Update to 7.0.28 - http://www.php.net/releases/7_0_28.php- FPM: revert pid file removal- improve devel dependencies