From 1ecf423dfb69492a3fadb3c11ae735a6c0d5e0c4 Mon Sep 17 00:00:00 2001 From: Gustavo Zacarias Date: Thu, 16 Dec 2010 11:53:33 -0300 Subject: php: security bump to version 5.2.16 * Fixed extract() to do not overwrite $GLOBALS and $this when using EXTR_OVERWRITE. * Fixed crash in zip extract method (possible CWE-170). * Fixed a possible double free in imap extension. * Fixed possible flaw in open_basedir (CVE-2010-3436). * Fixed NULL pointer dereference in ZipArchive::getArchiveComment. (CVE-2010-3709). * Fixed bug #52929 (Segfault in filter_var with FILTER_VALIDATE_EMAIL with large amount of data). Signed-off-by: Gustavo Zacarias Signed-off-by: Peter Korsgaard --- package/php/php.mk | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'package') diff --git a/package/php/php.mk b/package/php/php.mk index af4fa292a..4db2b84c4 100644 --- a/package/php/php.mk +++ b/package/php/php.mk @@ -4,7 +4,7 @@ # ############################################################# -PHP_VERSION = 5.2.14 +PHP_VERSION = 5.2.16 PHP_SOURCE = php-$(PHP_VERSION).tar.bz2 PHP_SITE = http://www.php.net/distributions PHP_INSTALL_STAGING = YES -- cgit v1.2.3