Skip to content

Commit ef55a92

Browse files
kaplanliorkaplanlior
committed
Add CVE for #67498 (PHP 5.3.29, 5.4.30, 5.5.14 and 5.6.0)
1 parent 00497c7 commit ef55a92

File tree

1 file changed

+4
-4
lines changed

1 file changed

+4
-4
lines changed

ChangeLog-5.php

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -2617,7 +2617,7 @@ function gzopen by gzopen64).</li>
26172617
<li><?php bugfix(67091); ?> (make install fails to install libphp5.so on FreeBSD 10.0).</li>
26182618
<li><?php bugfix(67368); ?> (Memory leak with immediately dereferenced array in class constant).</li>
26192619
<li><?php bugfix(67468); ?> (Segfault in highlight_file()/highlight_string()).</li>
2620-
<li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li>
2620+
<li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability). (CVE-2014-4721)</li>
26212621
<li><?php bugfix(67551); ?> (php://input temp file will be located in sys_temp_dir instead of upload_tmp_dir).</li>
26222622
<li><?php bugfix(67169); ?> (array_splice all elements, then []= gives wrong index).</li>
26232623
<li><?php bugfix(67198); ?> (php://input regression).</li>
@@ -3164,7 +3164,7 @@ function gzopen by gzopen64).</li>
31643164
<li><?php bugfix(67390); ?> (insecure temporary file use in the configure script). (CVE-2014-3981)</li>
31653165
<li><?php bugfix(67399); ?> (putenv with empty variable may lead to crash).</li>
31663166
<li><?php bugfix(67492); ?> (unserialize() SPL ArrayObject / SPLObjectStorage Type Confusion) (CVE-2014-3515).</li>
3167-
<li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li>
3167+
<li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability). (CVE-2014-4721)</li>
31683168
</li>
31693169
</ul></li>
31703170
<li>COM:
@@ -3326,7 +3326,7 @@ function gzopen by gzopen64).</li>
33263326
<li><?php bugfix(67390); ?> (insecure temporary file use in the configure script).
33273327
(CVE-2014-3981).</li>
33283328
<li><?php bugfix(67399); ?> (putenv with empty variable may lead to crash).</li>
3329-
<li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li>
3329+
<li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability). (CVE-2014-4721)</li>
33303330
<li>Fixed BC break introduced by patch for bug <?php bugl(67072); ?>.</li>
33313331
</ul></li>
33323332
<li>Date:
@@ -3395,7 +3395,7 @@ function gzopen by gzopen64).</li>
33953395
<li><?php bugfix(66622); ?> (Closures do not correctly capture the late bound class (static::) in some cases).</li>
33963396
<li><?php bugfix(67390); ?> (insecure temporary file use in the configure script) (CVE-2014-3981).</li>
33973397
<li><?php bugfix(67399); ?> (putenv with empty variable may lead to crash).</li>
3398-
<li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability).</li>
3398+
<li><?php bugfix(67498); ?> (phpinfo() Type Confusion Information Leak Vulnerability). (CVE-2014-4721)</li>
33993399
</ul></li>
34003400
<li>CLI server:
34013401
<ul>

0 commit comments

Comments
 (0)