Mageia alert MGASA-2018-0167 (php)


From:
    	       Mageia Updates <buildsystem-daemon@mageia.org> 
To:
    	       updates-announce@ml.mageia.org 
Subject:
    	       [updates-announce] MGASA-2018-0167: Updated php packages fix CVE-2018-7584 
Date:
    	       Wed, 14 Mar 2018 17:22:04 +0100
Message-ID:
    	       <20180314162204.EA72D9F9B1@duvel.mageia.org>
MGASA-2018-0167 - Updated php packages fix CVE-2018-7584

Publication date: 14 Mar 2018
URL: https://advisories.mageia.org/MGASA-2018-0167.html
Type: security
Affected Mageia releases: 5, 6
CVE: CVE-2018-7584

Description:
Updated php packages fix security vulnerability:

Update to php 5.6.34 fixes a stack-buffer-overflow while parsing HTTP response). 
(CVE-2018-7584)

References:
- https://bugs.mageia.org/show_bug.cgi?id=22736
- http://www.php.net/ChangeLog-5.php#5.6.34
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7584

SRPMS:
- 5/core/php-5.6.34-1.mga5
- 6/core/php-5.6.34-1.mga6

From:		Mageia Updates <buildsystem-daemon@mageia.org>
To:		updates-announce@ml.mageia.org
Subject:		[updates-announce] MGASA-2018-0167: Updated php packages fix CVE-2018-7584
Date:		Wed, 14 Mar 2018 17:22:04 +0100
Message-ID:		<20180314162204.EA72D9F9B1@duvel.mageia.org>