Miroirs/slackware-current
1
0
Fork 0
mirror of git://slackware.nl/current.git synced 2024-12-27 09:59:16 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Wed Oct 23 19:39:39 UTC 2024

Browse source 
extra/php81/php81-8.1.30-x86_64-1_slack15.0.txz:  Upgraded.
  This update fixes bugs and security issues:
  Bypass of CVE-2024-4577, Parameter Injection Vulnerability.
  cgi.force_redirect configuration is bypassable due to the environment
  variable collision.
  Logs from childrens may be altered.
  Erroneous parsing of multipart form data.
  For more information, see:
    https://www.php.net/ChangeLog-8.php#8.1.30
    https://www.cve.org/CVERecord?id=CVE-2024-8926
    https://www.cve.org/CVERecord?id=CVE-2024-8927
    https://www.cve.org/CVERecord?id=CVE-2024-9026
    https://www.cve.org/CVERecord?id=CVE-2024-8925
  (* Security fix *)
This commit is contained in:
Patrick J Volkerding 2024-10-23 19:39:39 +00:00 committed by Eric Hameleers
parent af81c69cb8
commit 837ccc192b
4 changed files with 65 additions and 25 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

28
ChangeLog.rss
View file

@ -11,9 +11,33 @@
<description>Tracking Slackware development in git.</description> <description>Tracking Slackware development in git.</description>
<language>en-us</language> <language>en-us</language>
<id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id> <id xmlns="http://www.w3.org/2005/Atom">urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f</id>
<pubDate>Mon, 21 Oct 2024 21:23:46 GMT</pubDate> <pubDate>Wed, 23 Oct 2024 19:39:39 GMT</pubDate>
<lastBuildDate>Tue, 22 Oct 2024 11:30:25 GMT</lastBuildDate> <lastBuildDate>Thu, 24 Oct 2024 11:30:26 GMT</lastBuildDate>
<generator>maintain_current_git.sh v 1.17</generator> <generator>maintain_current_git.sh v 1.17</generator>
<item>
<title>Wed, 23 Oct 2024 19:39:39 GMT</title>
<pubDate>Wed, 23 Oct 2024 19:39:39 GMT</pubDate>
<link>https://git.slackware.nl/current/tag/?h=20241023193939</link>
<guid isPermaLink="false">20241023193939</guid>
<description>
<![CDATA[<pre>
extra/php81/php81-8.1.30-x86_64-1_slack15.0.txz: Upgraded.
This update fixes bugs and security issues:
Bypass of CVE-2024-4577, Parameter Injection Vulnerability.
cgi.force_redirect configuration is bypassable due to the environment
variable collision.
Logs from childrens may be altered.
Erroneous parsing of multipart form data.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.1.30
https://www.cve.org/CVERecord?id=CVE-2024-8926
https://www.cve.org/CVERecord?id=CVE-2024-8927
https://www.cve.org/CVERecord?id=CVE-2024-9026
https://www.cve.org/CVERecord?id=CVE-2024-8925
(* Security fix *)
</pre>]]>
</description>
</item>
<item> <item>
<title>Mon, 21 Oct 2024 21:23:46 GMT</title> <title>Mon, 21 Oct 2024 21:23:46 GMT</title>
<pubDate>Mon, 21 Oct 2024 21:23:46 GMT</pubDate> <pubDate>Mon, 21 Oct 2024 21:23:46 GMT</pubDate>

16
ChangeLog.txt
View file

@ -1,3 +1,19 @@
Wed Oct 23 19:39:39 UTC 2024
extra/php81/php81-8.1.30-x86_64-1_slack15.0.txz: Upgraded.
This update fixes bugs and security issues:
Bypass of CVE-2024-4577, Parameter Injection Vulnerability.
cgi.force_redirect configuration is bypassable due to the environment
variable collision.
Logs from childrens may be altered.
Erroneous parsing of multipart form data.
For more information, see:
https://www.php.net/ChangeLog-8.php#8.1.30
https://www.cve.org/CVERecord?id=CVE-2024-8926
https://www.cve.org/CVERecord?id=CVE-2024-8927
https://www.cve.org/CVERecord?id=CVE-2024-9026
https://www.cve.org/CVERecord?id=CVE-2024-8925
(* Security fix *)
+--------------------------+
Mon Oct 21 21:23:46 UTC 2024 Mon Oct 21 21:23:46 UTC 2024
patches/packages/openssl-1.1.1zb-x86_64-1_slack15.0.txz: Upgraded. patches/packages/openssl-1.1.1zb-x86_64-1_slack15.0.txz: Upgraded.
Apply patch to fix a security issue: Apply patch to fix a security issue:

42
FILELIST.TXT
View file

@ -1,20 +1,20 @@
Mon Oct 21 21:24:52 UTC 2024 Wed Oct 23 19:42:28 UTC 2024
Here is the file list for this directory. If you are using a Here is the file list for this directory. If you are using a
mirror site and find missing or extra files in the disk mirror site and find missing or extra files in the disk
subdirectories, please have the archive administrator refresh subdirectories, please have the archive administrator refresh
the mirror. the mirror.
drwxr-xr-x 12 root root 4096 2024-10-21 21:23 . drwxr-xr-x 12 root root 4096 2024-10-23 19:39 .
-rw-r--r-- 1 root root 5767 2022-02-02 22:44 ./ANNOUNCE.15.0 -rw-r--r-- 1 root root 5767 2022-02-02 22:44 ./ANNOUNCE.15.0
-rw-r--r-- 1 root root 16609 2022-03-30 19:03 ./CHANGES_AND_HINTS.TXT -rw-r--r-- 1 root root 16609 2022-03-30 19:03 ./CHANGES_AND_HINTS.TXT
-rw-r--r-- 1 root root 1268302 2024-10-20 23:44 ./CHECKSUMS.md5 -rw-r--r-- 1 root root 1268402 2024-10-21 21:25 ./CHECKSUMS.md5
-rw-r--r-- 1 root root 195 2024-10-20 23:44 ./CHECKSUMS.md5.asc -rw-r--r-- 1 root root 195 2024-10-21 21:25 ./CHECKSUMS.md5.asc
-rw-r--r-- 1 root root 17976 1994-06-10 02:28 ./COPYING -rw-r--r-- 1 root root 17976 1994-06-10 02:28 ./COPYING
-rw-r--r-- 1 root root 35147 2007-06-30 04:21 ./COPYING3 -rw-r--r-- 1 root root 35147 2007-06-30 04:21 ./COPYING3
-rw-r--r-- 1 root root 19573 2016-06-23 20:08 ./COPYRIGHT.TXT -rw-r--r-- 1 root root 19573 2016-06-23 20:08 ./COPYRIGHT.TXT
-rw-r--r-- 1 root root 616 2006-10-02 04:37 ./CRYPTO_NOTICE.TXT -rw-r--r-- 1 root root 616 2006-10-02 04:37 ./CRYPTO_NOTICE.TXT
-rw-r--r-- 1 root root 2168137 2024-10-21 21:23 ./ChangeLog.txt -rw-r--r-- 1 root root 2168840 2024-10-23 19:39 ./ChangeLog.txt
drwxr-xr-x 3 root root 4096 2013-03-20 22:17 ./EFI drwxr-xr-x 3 root root 4096 2013-03-20 22:17 ./EFI
drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT
-rw-r--r-- 1 root root 1187840 2021-06-15 19:16 ./EFI/BOOT/bootx64.efi -rw-r--r-- 1 root root 1187840 2021-06-15 19:16 ./EFI/BOOT/bootx64.efi
@ -25,7 +25,7 @@ drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT
-rwxr-xr-x 1 root root 2504 2019-07-05 18:54 ./EFI/BOOT/make-grub.sh -rwxr-xr-x 1 root root 2504 2019-07-05 18:54 ./EFI/BOOT/make-grub.sh
-rw-r--r-- 1 root root 10722 2013-09-21 19:02 ./EFI/BOOT/osdetect.cfg -rw-r--r-- 1 root root 10722 2013-09-21 19:02 ./EFI/BOOT/osdetect.cfg
-rw-r--r-- 1 root root 1273 2013-08-12 21:08 ./EFI/BOOT/tools.cfg -rw-r--r-- 1 root root 1273 2013-08-12 21:08 ./EFI/BOOT/tools.cfg
-rw-r--r-- 1 root root 1662688 2024-10-20 23:44 ./FILELIST.TXT -rw-r--r-- 1 root root 1662804 2024-10-21 21:24 ./FILELIST.TXT
-rw-r--r-- 1 root root 1572 2012-08-29 18:27 ./GPG-KEY -rw-r--r-- 1 root root 1572 2012-08-29 18:27 ./GPG-KEY
-rw-r--r-- 1 root root 864745 2022-02-02 08:25 ./PACKAGES.TXT -rw-r--r-- 1 root root 864745 2022-02-02 08:25 ./PACKAGES.TXT
-rw-r--r-- 1 root root 8034 2022-02-02 03:36 ./README.TXT -rw-r--r-- 1 root root 8034 2022-02-02 03:36 ./README.TXT
@ -39,12 +39,12 @@ drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT
-rw-r--r-- 1 root root 17294 2008-12-08 18:13 ./SPEAK_INSTALL.TXT -rw-r--r-- 1 root root 17294 2008-12-08 18:13 ./SPEAK_INSTALL.TXT
-rw-r--r-- 1 root root 57187 2022-02-01 19:37 ./Slackware-HOWTO -rw-r--r-- 1 root root 57187 2022-02-01 19:37 ./Slackware-HOWTO
-rw-r--r-- 1 root root 8700 2022-01-26 05:44 ./UPGRADE.TXT -rw-r--r-- 1 root root 8700 2022-01-26 05:44 ./UPGRADE.TXT
drwxr-xr-x 19 root root 4096 2024-10-03 18:35 ./extra drwxr-xr-x 19 root root 4096 2024-10-23 19:42 ./extra
-rw-r--r-- 1 root root 56343 2024-10-03 18:35 ./extra/CHECKSUMS.md5 -rw-r--r-- 1 root root 56343 2024-10-23 19:42 ./extra/CHECKSUMS.md5
-rw-r--r-- 1 root root 195 2024-10-03 18:35 ./extra/CHECKSUMS.md5.asc -rw-r--r-- 1 root root 195 2024-10-23 19:42 ./extra/CHECKSUMS.md5.asc
-rw-r--r-- 1 root root 70733 2024-10-03 18:35 ./extra/FILE_LIST -rw-r--r-- 1 root root 70733 2024-10-23 19:42 ./extra/FILE_LIST
-rw-r--r-- 1 root root 3058335 2024-10-03 18:35 ./extra/MANIFEST.bz2 -rw-r--r-- 1 root root 3065788 2024-10-23 19:42 ./extra/MANIFEST.bz2
-rw-r--r-- 1 root root 37488 2024-10-03 18:35 ./extra/PACKAGES.TXT -rw-r--r-- 1 root root 37488 2024-10-23 19:42 ./extra/PACKAGES.TXT
-rw-r--r-- 1 root root 149 2002-02-09 00:18 ./extra/README.TXT -rw-r--r-- 1 root root 149 2002-02-09 00:18 ./extra/README.TXT
drwxr-xr-x 2 root root 20480 2020-05-26 20:38 ./extra/aspell-word-lists drwxr-xr-x 2 root root 20480 2020-05-26 20:38 ./extra/aspell-word-lists
-rw-r--r-- 1 root root 171 2016-06-06 20:10 ./extra/aspell-word-lists/aspell-af-0.50_0-x86_64-5.txt -rw-r--r-- 1 root root 171 2016-06-06 20:10 ./extra/aspell-word-lists/aspell-af-0.50_0-x86_64-5.txt
@ -358,10 +358,10 @@ drwxr-xr-x 2 root root 4096 2023-08-07 19:24 ./extra/php80
-rw-r--r-- 1 root root 369 2023-08-07 18:47 ./extra/php80/php80-8.0.30-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 369 2023-08-07 18:47 ./extra/php80/php80-8.0.30-x86_64-1_slack15.0.txt
-rw-r--r-- 1 root root 6175812 2023-08-07 18:47 ./extra/php80/php80-8.0.30-x86_64-1_slack15.0.txz -rw-r--r-- 1 root root 6175812 2023-08-07 18:47 ./extra/php80/php80-8.0.30-x86_64-1_slack15.0.txz
-rw-r--r-- 1 root root 163 2023-08-07 18:47 ./extra/php80/php80-8.0.30-x86_64-1_slack15.0.txz.asc -rw-r--r-- 1 root root 163 2023-08-07 18:47 ./extra/php80/php80-8.0.30-x86_64-1_slack15.0.txz.asc
drwxr-xr-x 2 root root 4096 2024-06-06 19:25 ./extra/php81 drwxr-xr-x 2 root root 4096 2024-10-23 19:42 ./extra/php81
-rw-r--r-- 1 root root 369 2024-06-06 19:39 ./extra/php81/php81-8.1.29-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 369 2024-10-23 19:12 ./extra/php81/php81-8.1.30-x86_64-1_slack15.0.txt
-rw-r--r-- 1 root root 6300460 2024-06-06 19:39 ./extra/php81/php81-8.1.29-x86_64-1_slack15.0.txz -rw-r--r-- 1 root root 6324768 2024-10-23 19:12 ./extra/php81/php81-8.1.30-x86_64-1_slack15.0.txz
-rw-r--r-- 1 root root 195 2024-06-06 19:39 ./extra/php81/php81-8.1.29-x86_64-1_slack15.0.txz.asc -rw-r--r-- 1 root root 195 2024-10-23 19:12 ./extra/php81/php81-8.1.30-x86_64-1_slack15.0.txz.asc
drwxr-xr-x 2 root root 4096 2023-08-04 19:16 ./extra/rust-for-mozilla drwxr-xr-x 2 root root 4096 2023-08-04 19:16 ./extra/rust-for-mozilla
-rw-r--r-- 1 root root 700 2022-01-27 20:31 ./extra/rust-for-mozilla/README -rw-r--r-- 1 root root 700 2022-01-27 20:31 ./extra/rust-for-mozilla/README
-rw-r--r-- 1 root root 426 2023-07-25 20:55 ./extra/rust-for-mozilla/rust-1.70.0-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 426 2023-07-25 20:55 ./extra/rust-for-mozilla/rust-1.70.0-x86_64-1_slack15.0.txt
@ -375,7 +375,7 @@ drwxr-xr-x 2 root root 4096 2024-01-31 21:21 ./extra/sendmail
-rw-r--r-- 1 root root 586 2024-01-31 20:58 ./extra/sendmail/sendmail-cf-8.18.1-noarch-1_slack15.0.txt -rw-r--r-- 1 root root 586 2024-01-31 20:58 ./extra/sendmail/sendmail-cf-8.18.1-noarch-1_slack15.0.txt
-rw-r--r-- 1 root root 119356 2024-01-31 20:58 ./extra/sendmail/sendmail-cf-8.18.1-noarch-1_slack15.0.txz -rw-r--r-- 1 root root 119356 2024-01-31 20:58 ./extra/sendmail/sendmail-cf-8.18.1-noarch-1_slack15.0.txz
-rw-r--r-- 1 root root 163 2024-01-31 20:58 ./extra/sendmail/sendmail-cf-8.18.1-noarch-1_slack15.0.txz.asc -rw-r--r-- 1 root root 163 2024-01-31 20:58 ./extra/sendmail/sendmail-cf-8.18.1-noarch-1_slack15.0.txz.asc
drwxr-xr-x 19 root root 4096 2024-06-06 19:21 ./extra/source drwxr-xr-x 19 root root 4096 2024-10-23 19:32 ./extra/source
lrwxrwxrwx 1 root root 21 2021-04-29 18:18 ./extra/source/alpine -> ../../source/n/alpine lrwxrwxrwx 1 root root 21 2021-04-29 18:18 ./extra/source/alpine -> ../../source/n/alpine
drwxr-xr-x 4 root root 4096 2018-11-09 05:59 ./extra/source/aspell-word-lists drwxr-xr-x 4 root root 4096 2018-11-09 05:59 ./extra/source/aspell-word-lists
-rwxr-xr-x 1 root root 3531 2020-05-26 20:06 ./extra/source/aspell-word-lists/aspell-dict.SlackBuild -rwxr-xr-x 1 root root 3531 2020-05-26 20:06 ./extra/source/aspell-word-lists/aspell-dict.SlackBuild
@ -624,12 +624,12 @@ drwxr-xr-x 2 root root 4096 2023-08-07 18:40 ./extra/source/php80
-rw-r--r-- 1 root root 806 2023-03-11 19:34 ./extra/source/php80/php.ini-development.diff.gz -rw-r--r-- 1 root root 806 2023-03-11 19:34 ./extra/source/php80/php.ini-development.diff.gz
-rwxr-xr-x 1 root root 10642 2023-08-07 18:40 ./extra/source/php80/php80.SlackBuild -rwxr-xr-x 1 root root 10642 2023-08-07 18:40 ./extra/source/php80/php80.SlackBuild
-rw-r--r-- 1 root root 822 2021-12-03 05:20 ./extra/source/php80/slack-desc -rw-r--r-- 1 root root 822 2021-12-03 05:20 ./extra/source/php80/slack-desc
drwxr-xr-x 2 root root 4096 2024-06-06 19:39 ./extra/source/php81 drwxr-xr-x 2 root root 4096 2024-10-23 19:08 ./extra/source/php81
-rw-r--r-- 1 root root 432 2020-12-21 16:28 ./extra/source/php81/doinst.sh.gz -rw-r--r-- 1 root root 432 2020-12-21 16:28 ./extra/source/php81/doinst.sh.gz
-rwxr-xr-x 1 root root 120 2024-06-06 19:35 ./extra/source/php81/fetch-php.sh -rwxr-xr-x 1 root root 120 2024-10-23 19:07 ./extra/source/php81/fetch-php.sh
-rw-r--r-- 1 root root 1020 2021-02-19 20:43 ./extra/source/php81/mod_php.conf.example -rw-r--r-- 1 root root 1020 2021-02-19 20:43 ./extra/source/php81/mod_php.conf.example
-rw-r--r-- 1 root root 11826292 2024-06-05 06:30 ./extra/source/php81/php-8.1.29.tar.xz -rw-r--r-- 1 root root 11850340 2024-09-26 19:40 ./extra/source/php81/php-8.1.30.tar.xz
-rw-r--r-- 1 root root 833 2024-06-05 06:30 ./extra/source/php81/php-8.1.29.tar.xz.asc -rw-r--r-- 1 root root 833 2024-09-26 19:40 ./extra/source/php81/php-8.1.30.tar.xz.asc
-rw-r--r-- 1 root root 387 2017-11-28 02:08 ./extra/source/php81/php-fpm.conf.diff.gz -rw-r--r-- 1 root root 387 2017-11-28 02:08 ./extra/source/php81/php-fpm.conf.diff.gz
-rw-r--r-- 1 root root 565 2023-04-13 17:54 ./extra/source/php81/php.imap.api.diff.gz -rw-r--r-- 1 root root 565 2023-04-13 17:54 ./extra/source/php81/php.imap.api.diff.gz
-rw-r--r-- 1 root root 806 2023-03-11 19:34 ./extra/source/php81/php.ini-development.diff.gz -rw-r--r-- 1 root root 806 2023-03-11 19:34 ./extra/source/php81/php.ini-development.diff.gz

4
extra/source/php81/fetch-php.sh
View file

@ -1,2 +1,2 @@
lftpget http://us.php.net/distributions/php-8.1.29.tar.xz.asc lftpget http://us.php.net/distributions/php-8.1.30.tar.xz.asc
lftpget http://us.php.net/distributions/php-8.1.29.tar.xz lftpget http://us.php.net/distributions/php-8.1.30.tar.xz