From 86b6bd411822951fd2acd4b79c0d2aa95db65ade Mon Sep 17 00:00:00 2001 From: Patrick J Volkerding Date: Fri, 22 Nov 2024 22:08:18 +0000 Subject: [PATCH] Fri Nov 22 22:08:18 UTC 2024 extra/php81/php81-8.1.31-x86_64-1_slack15.0.txz: Upgraded. This update fixes bugs and security issues: LDAP: Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). (CVE-2024-8932) MySQLnd: Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap through heap buffer over-read). (CVE-2024-8929) PDO DBLIB: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib quoter causing OOB writes). (CVE-2024-11236) PDO Firebird: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the firebird quoter causing OOB writes). (CVE-2024-11236) Streams: Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream context might allow for CRLF injection in URIs). (CVE-2024-11234) Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with convert.quoted-printable-decode filter). (CVE-2024-11233) For more information, see: https://www.php.net/ChangeLog-8.php#8.1.31 https://www.cve.org/CVERecord?id=CVE-2024-8932 https://www.cve.org/CVERecord?id=CVE-2024-8929 https://www.cve.org/CVERecord?id=CVE-2024-11236 https://www.cve.org/CVERecord?id=CVE-2024-11234 https://www.cve.org/CVERecord?id=CVE-2024-11233 (* Security fix *) --- ChangeLog.rss | 36 ++++++++++++++++++++++++++-- ChangeLog.txt | 24 +++++++++++++++++++ FILELIST.TXT | 42 ++++++++++++++++----------------- extra/source/php81/fetch-php.sh | 4 ++-- 4 files changed, 81 insertions(+), 25 deletions(-) diff --git a/ChangeLog.rss b/ChangeLog.rss index 208f35cea..16d58c71d 100644 --- a/ChangeLog.rss +++ b/ChangeLog.rss @@ -11,9 +11,41 @@ Tracking Slackware development in git. en-us urn:uuid:c964f45e-6732-11e8-bbe5-107b4450212f - Wed, 20 Nov 2024 22:05:15 GMT - Thu, 21 Nov 2024 12:30:23 GMT + Fri, 22 Nov 2024 22:08:18 GMT + Sat, 23 Nov 2024 12:30:30 GMT maintain_current_git.sh v 1.17 + + Fri, 22 Nov 2024 22:08:18 GMT + Fri, 22 Nov 2024 22:08:18 GMT + https://git.slackware.nl/current/tag/?h=20241122220818 + 20241122220818 + + +extra/php81/php81-8.1.31-x86_64-1_slack15.0.txz: Upgraded. + This update fixes bugs and security issues: + LDAP: Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). + (CVE-2024-8932) + MySQLnd: Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap + through heap buffer over-read). (CVE-2024-8929) + PDO DBLIB: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib + quoter causing OOB writes). (CVE-2024-11236) + PDO Firebird: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the + firebird quoter causing OOB writes). (CVE-2024-11236) + Streams: Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream + context might allow for CRLF injection in URIs). (CVE-2024-11234) + Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with + convert.quoted-printable-decode filter). (CVE-2024-11233) + For more information, see: + https://www.php.net/ChangeLog-8.php#8.1.31 + https://www.cve.org/CVERecord?id=CVE-2024-8932 + https://www.cve.org/CVERecord?id=CVE-2024-8929 + https://www.cve.org/CVERecord?id=CVE-2024-11236 + https://www.cve.org/CVERecord?id=CVE-2024-11234 + https://www.cve.org/CVERecord?id=CVE-2024-11233 + (* Security fix *) + ]]> + + Wed, 20 Nov 2024 22:05:15 GMT Wed, 20 Nov 2024 22:05:15 GMT diff --git a/ChangeLog.txt b/ChangeLog.txt index 58dae2d22..c380d237d 100644 --- a/ChangeLog.txt +++ b/ChangeLog.txt @@ -1,3 +1,27 @@ +Fri Nov 22 22:08:18 UTC 2024 +extra/php81/php81-8.1.31-x86_64-1_slack15.0.txz: Upgraded. + This update fixes bugs and security issues: + LDAP: Fixed bug GHSA-g665-fm4p-vhff (OOB access in ldap_escape). + (CVE-2024-8932) + MySQLnd: Fixed bug GHSA-h35g-vwh6-m678 (Leak partial content of the heap + through heap buffer over-read). (CVE-2024-8929) + PDO DBLIB: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the dblib + quoter causing OOB writes). (CVE-2024-11236) + PDO Firebird: Fixed bug GHSA-5hqh-c84r-qjcv (Integer overflow in the + firebird quoter causing OOB writes). (CVE-2024-11236) + Streams: Fixed bug GHSA-c5f2-jwm7-mmq2 (Configuring a proxy in a stream + context might allow for CRLF injection in URIs). (CVE-2024-11234) + Fixed bug GHSA-r977-prxv-hc43 (Single byte overread with + convert.quoted-printable-decode filter). (CVE-2024-11233) + For more information, see: + https://www.php.net/ChangeLog-8.php#8.1.31 + https://www.cve.org/CVERecord?id=CVE-2024-8932 + https://www.cve.org/CVERecord?id=CVE-2024-8929 + https://www.cve.org/CVERecord?id=CVE-2024-11236 + https://www.cve.org/CVERecord?id=CVE-2024-11234 + https://www.cve.org/CVERecord?id=CVE-2024-11233 + (* Security fix *) ++--------------------------+ Wed Nov 20 22:05:15 UTC 2024 patches/packages/ca-certificates-20241120-noarch-1_slack15.0.txz: Upgraded. This update provides the latest CA certificates to check for the diff --git a/FILELIST.TXT b/FILELIST.TXT index 8c4aa4316..c63d35a57 100644 --- a/FILELIST.TXT +++ b/FILELIST.TXT @@ -1,20 +1,20 @@ -Wed Nov 20 22:08:50 UTC 2024 +Fri Nov 22 22:12:15 UTC 2024 Here is the file list for this directory. If you are using a mirror site and find missing or extra files in the disk subdirectories, please have the archive administrator refresh the mirror. -drwxr-xr-x 12 root root 4096 2024-11-20 22:05 . +drwxr-xr-x 12 root root 4096 2024-11-22 22:08 . -rw-r--r-- 1 root root 5767 2022-02-02 22:44 ./ANNOUNCE.15.0 -rw-r--r-- 1 root root 16609 2022-03-30 19:03 ./CHANGES_AND_HINTS.TXT --rw-r--r-- 1 root root 1261886 2024-11-19 22:30 ./CHECKSUMS.md5 --rw-r--r-- 1 root root 195 2024-11-19 22:30 ./CHECKSUMS.md5.asc +-rw-r--r-- 1 root root 1261886 2024-11-20 22:09 ./CHECKSUMS.md5 +-rw-r--r-- 1 root root 195 2024-11-20 22:09 ./CHECKSUMS.md5.asc -rw-r--r-- 1 root root 17976 1994-06-10 02:28 ./COPYING -rw-r--r-- 1 root root 35147 2007-06-30 04:21 ./COPYING3 -rw-r--r-- 1 root root 19573 2016-06-23 20:08 ./COPYRIGHT.TXT -rw-r--r-- 1 root root 616 2006-10-02 04:37 ./CRYPTO_NOTICE.TXT --rw-r--r-- 1 root root 2176854 2024-11-20 22:05 ./ChangeLog.txt +-rw-r--r-- 1 root root 2178092 2024-11-22 22:08 ./ChangeLog.txt drwxr-xr-x 3 root root 4096 2013-03-20 22:17 ./EFI drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT -rw-r--r-- 1 root root 1187840 2021-06-15 19:16 ./EFI/BOOT/bootx64.efi @@ -25,7 +25,7 @@ drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT -rwxr-xr-x 1 root root 2504 2019-07-05 18:54 ./EFI/BOOT/make-grub.sh -rw-r--r-- 1 root root 10722 2013-09-21 19:02 ./EFI/BOOT/osdetect.cfg -rw-r--r-- 1 root root 1273 2013-08-12 21:08 ./EFI/BOOT/tools.cfg --rw-r--r-- 1 root root 1654099 2024-11-19 22:30 ./FILELIST.TXT +-rw-r--r-- 1 root root 1654099 2024-11-20 22:08 ./FILELIST.TXT -rw-r--r-- 1 root root 1572 2012-08-29 18:27 ./GPG-KEY -rw-r--r-- 1 root root 864745 2022-02-02 08:25 ./PACKAGES.TXT -rw-r--r-- 1 root root 8034 2022-02-02 03:36 ./README.TXT @@ -39,12 +39,12 @@ drwxr-xr-x 2 root root 4096 2022-02-02 08:21 ./EFI/BOOT -rw-r--r-- 1 root root 17294 2008-12-08 18:13 ./SPEAK_INSTALL.TXT -rw-r--r-- 1 root root 57187 2022-02-01 19:37 ./Slackware-HOWTO -rw-r--r-- 1 root root 8700 2022-01-26 05:44 ./UPGRADE.TXT -drwxr-xr-x 19 root root 4096 2024-11-19 22:29 ./extra --rw-r--r-- 1 root root 55474 2024-11-19 22:29 ./extra/CHECKSUMS.md5 --rw-r--r-- 1 root root 195 2024-11-19 22:29 ./extra/CHECKSUMS.md5.asc --rw-r--r-- 1 root root 69718 2024-11-19 22:29 ./extra/FILE_LIST --rw-r--r-- 1 root root 4005989 2024-11-19 22:29 ./extra/MANIFEST.bz2 --rw-r--r-- 1 root root 38373 2024-11-19 22:29 ./extra/PACKAGES.TXT +drwxr-xr-x 19 root root 4096 2024-11-22 22:12 ./extra +-rw-r--r-- 1 root root 55474 2024-11-22 22:12 ./extra/CHECKSUMS.md5 +-rw-r--r-- 1 root root 195 2024-11-22 22:12 ./extra/CHECKSUMS.md5.asc +-rw-r--r-- 1 root root 69718 2024-11-22 22:12 ./extra/FILE_LIST +-rw-r--r-- 1 root root 4012749 2024-11-22 22:12 ./extra/MANIFEST.bz2 +-rw-r--r-- 1 root root 38373 2024-11-22 22:12 ./extra/PACKAGES.TXT -rw-r--r-- 1 root root 149 2002-02-09 00:18 ./extra/README.TXT drwxr-xr-x 2 root root 20480 2020-05-26 20:38 ./extra/aspell-word-lists -rw-r--r-- 1 root root 171 2016-06-06 20:10 ./extra/aspell-word-lists/aspell-af-0.50_0-x86_64-5.txt @@ -361,10 +361,10 @@ drwxr-xr-x 2 root root 4096 2023-08-07 19:24 ./extra/php80 -rw-r--r-- 1 root root 369 2023-08-07 18:47 ./extra/php80/php80-8.0.30-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 6175812 2023-08-07 18:47 ./extra/php80/php80-8.0.30-x86_64-1_slack15.0.txz -rw-r--r-- 1 root root 163 2023-08-07 18:47 ./extra/php80/php80-8.0.30-x86_64-1_slack15.0.txz.asc -drwxr-xr-x 2 root root 4096 2024-10-23 19:42 ./extra/php81 --rw-r--r-- 1 root root 369 2024-10-23 19:12 ./extra/php81/php81-8.1.30-x86_64-1_slack15.0.txt --rw-r--r-- 1 root root 6324768 2024-10-23 19:12 ./extra/php81/php81-8.1.30-x86_64-1_slack15.0.txz --rw-r--r-- 1 root root 195 2024-10-23 19:12 ./extra/php81/php81-8.1.30-x86_64-1_slack15.0.txz.asc +drwxr-xr-x 2 root root 4096 2024-11-22 22:12 ./extra/php81 +-rw-r--r-- 1 root root 369 2024-11-22 21:40 ./extra/php81/php81-8.1.31-x86_64-1_slack15.0.txt +-rw-r--r-- 1 root root 6328708 2024-11-22 21:40 ./extra/php81/php81-8.1.31-x86_64-1_slack15.0.txz +-rw-r--r-- 1 root root 195 2024-11-22 21:40 ./extra/php81/php81-8.1.31-x86_64-1_slack15.0.txz.asc -rw-r--r-- 1 root root 352 2024-08-10 19:47 ./extra/rust-bindgen-0.69.4-x86_64-1_slack15.0.txt -rw-r--r-- 1 root root 1699624 2024-08-10 19:47 ./extra/rust-bindgen-0.69.4-x86_64-1_slack15.0.txz -rw-r--r-- 1 root root 195 2024-08-10 19:47 ./extra/rust-bindgen-0.69.4-x86_64-1_slack15.0.txz.asc @@ -381,7 +381,7 @@ drwxr-xr-x 2 root root 4096 2024-01-31 21:21 ./extra/sendmail -rw-r--r-- 1 root root 586 2024-01-31 20:58 ./extra/sendmail/sendmail-cf-8.18.1-noarch-1_slack15.0.txt -rw-r--r-- 1 root root 119356 2024-01-31 20:58 ./extra/sendmail/sendmail-cf-8.18.1-noarch-1_slack15.0.txz -rw-r--r-- 1 root root 163 2024-01-31 20:58 ./extra/sendmail/sendmail-cf-8.18.1-noarch-1_slack15.0.txz.asc -drwxr-xr-x 21 root root 4096 2024-10-30 20:53 ./extra/source +drwxr-xr-x 21 root root 4096 2024-11-22 21:51 ./extra/source lrwxrwxrwx 1 root root 21 2021-04-29 18:18 ./extra/source/alpine -> ../../source/n/alpine drwxr-xr-x 4 root root 4096 2018-11-09 05:59 ./extra/source/aspell-word-lists -rwxr-xr-x 1 root root 3531 2020-05-26 20:06 ./extra/source/aspell-word-lists/aspell-dict.SlackBuild @@ -605,12 +605,12 @@ drwxr-xr-x 2 root root 4096 2023-08-07 18:40 ./extra/source/php80 -rw-r--r-- 1 root root 806 2023-03-11 19:34 ./extra/source/php80/php.ini-development.diff.gz -rwxr-xr-x 1 root root 10642 2023-08-07 18:40 ./extra/source/php80/php80.SlackBuild -rw-r--r-- 1 root root 822 2021-12-03 05:20 ./extra/source/php80/slack-desc -drwxr-xr-x 2 root root 4096 2024-10-23 19:08 ./extra/source/php81 +drwxr-xr-x 2 root root 4096 2024-11-22 21:33 ./extra/source/php81 -rw-r--r-- 1 root root 432 2020-12-21 16:28 ./extra/source/php81/doinst.sh.gz --rwxr-xr-x 1 root root 120 2024-10-23 19:07 ./extra/source/php81/fetch-php.sh +-rwxr-xr-x 1 root root 120 2024-11-22 21:32 ./extra/source/php81/fetch-php.sh -rw-r--r-- 1 root root 1020 2021-02-19 20:43 ./extra/source/php81/mod_php.conf.example --rw-r--r-- 1 root root 11850340 2024-09-26 19:40 ./extra/source/php81/php-8.1.30.tar.xz --rw-r--r-- 1 root root 833 2024-09-26 19:40 ./extra/source/php81/php-8.1.30.tar.xz.asc +-rw-r--r-- 1 root root 11916684 2024-11-19 15:40 ./extra/source/php81/php-8.1.31.tar.xz +-rw-r--r-- 1 root root 833 2024-11-19 15:40 ./extra/source/php81/php-8.1.31.tar.xz.asc -rw-r--r-- 1 root root 387 2017-11-28 02:08 ./extra/source/php81/php-fpm.conf.diff.gz -rw-r--r-- 1 root root 565 2023-04-13 17:54 ./extra/source/php81/php.imap.api.diff.gz -rw-r--r-- 1 root root 806 2023-03-11 19:34 ./extra/source/php81/php.ini-development.diff.gz diff --git a/extra/source/php81/fetch-php.sh b/extra/source/php81/fetch-php.sh index fa1d0f315..7f8900174 100755 --- a/extra/source/php81/fetch-php.sh +++ b/extra/source/php81/fetch-php.sh @@ -1,2 +1,2 @@ -lftpget http://us.php.net/distributions/php-8.1.30.tar.xz.asc -lftpget http://us.php.net/distributions/php-8.1.30.tar.xz +lftpget http://us.php.net/distributions/php-8.1.31.tar.xz.asc +lftpget http://us.php.net/distributions/php-8.1.31.tar.xz