Page MenuHomeDevCentral
Create Task
Maniphest T807

Upgrade to PHP 5.6.20
Closed, WontfixPublic
Actions

Description

PHP 5.6.20 has been released 31 Mar 2016. It seems we're a bit late compared to the usual upgrade rhythm to upgrade our Docker images.

Security issues

Fileinfo:
Fixed bug #71527 (Buffer over-write in finfo_open with malformed magic file).

mbstring:
Fixed bug #71906 (AddressSanitizer: negative-size-param (-1) in mbfl_strcut).

Phar:
Fixed bug #71860 (Invalid memory write in phar on filename with \0 in name).

SNMP:
Fixed bug #71704 (php_snmp_error() Format String Vulnerability).

Standard:
Fixed bug #71798 (Integer Overflow in php_raw_url_encode).

Related Objects

Event Timeline

dereckson created this task.Apr 9 2016, 00:17
dereckson closed this task as Wontfix.Jul 27 2016, 13:52
dereckson claimed this task.

rDPHPCLI — Superseded by T901: direct upgrade to 5.6.23

dereckson awarded a token.Jul 27 2016, 13:53
dereckson rescinded a token.
dereckson awarded a token.
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator