aboutsummaryrefslogtreecommitdiffstats
path: root/meta-oe/recipes-devtools/php/php/CVE-2020-7070.patch
diff options
context:
space:
mode:
authorMingli Yu <mingli.yu@windriver.com>2021-04-21 11:23:09 +0800
committerArmin Kuster <akuster808@gmail.com>2021-07-26 16:05:08 -0700
commit85f8047c71047d93cf79a954142157f85079968d (patch)
tree2a90ee5741a8a4fe5b6e55940bd3ec97d878da3d /meta-oe/recipes-devtools/php/php/CVE-2020-7070.patch
parent11c1cd6bf5855d458da94c6c7291bbe985ac653a (diff)
downloadmeta-openembedded-85f8047c71047d93cf79a954142157f85079968d.tar.gz
meta-openembedded-85f8047c71047d93cf79a954142157f85079968d.tar.bz2
meta-openembedded-85f8047c71047d93cf79a954142157f85079968d.zip
php: Upgrade to 7.4.16
License-Update: License updated (year updated) Fix some security issues such as CVE-2021-21702 and remove two cve patches which already included in the new version. Signed-off-by: Mingli Yu <mingli.yu@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com> (cherry picked from commit e418ee4657e084c8b4d42aabf76ff6df99253e91) [Bug fix only updates plus: CVE-2020-7071 ] Signed-off-by: Armin Kuster <akuster808@gmail.com>
Diffstat (limited to 'meta-oe/recipes-devtools/php/php/CVE-2020-7070.patch')
-rw-r--r--meta-oe/recipes-devtools/php/php/CVE-2020-7070.patch24
1 files changed, 0 insertions, 24 deletions
diff --git a/meta-oe/recipes-devtools/php/php/CVE-2020-7070.patch b/meta-oe/recipes-devtools/php/php/CVE-2020-7070.patch
deleted file mode 100644
index e5b527f98..000000000
--- a/meta-oe/recipes-devtools/php/php/CVE-2020-7070.patch
+++ /dev/null
@@ -1,24 +0,0 @@
-Subject: Patch fix-urldecode for HTTP related Bug #79699
-
----
- main/php_variables.c | 4 +++-
- 1 file changed, 3 insertions(+), 1 deletion(-)
-
-diff --git a/main/php_variables.c b/main/php_variables.c
-index 1a40c2a1..cbdc7cf1 100644
---- a/main/php_variables.c
-+++ b/main/php_variables.c
-@@ -514,7 +514,9 @@ SAPI_API SAPI_TREAT_DATA_FUNC(php_default_treat_data)
- }
-
- val = estrndup(val, val_len);
-- php_url_decode(var, strlen(var));
-+ if (arg != PARSE_COOKIE) {
-+ php_url_decode(var, strlen(var));
-+ }
- if (sapi_module.input_filter(arg, var, &val, val_len, &new_val_len)) {
- php_register_variable_safe(var, val, new_val_len, &array);
- }
---
-2.25.1
-