-
-
Notifications
You must be signed in to change notification settings - Fork 13.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
php: 8.1.27 -> 8.1.28, 8.2.17 -> 8.2.18, 8.3.4 -> 8.3.6, fix CVE-2024-2756, CVE-2024-3096, CVE-2024-2757 #303711
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
a small nit
The exploit's pocs are not reproducible anymore with the PHPs I built locally. |
No new build failures on Linux x86_64 Result of 8 packages failed to build:
577 packages built:
|
Backport failed for Please cherry-pick the changes locally and resolve any conflicts. git fetch origin release-23.11
git worktree add -d .worktree/backport-303711-to-release-23.11 origin/release-23.11
cd .worktree/backport-303711-to-release-23.11
git switch --create backport-303711-to-release-23.11
git cherry-pick -x d12c76c716f4494ff3b95b3e0d5977b267285baa 147dffac94cb987f6b91c74b93ed32b6eb390bcc c6e4e7221879e24ef98ee8adf7b77eabd2251070 |
Done in #303793 |
Description of changes
https://news-web.php.net/php.announce/424
https://news-web.php.net/php.announce/425
https://news-web.php.net/php.announce/423
Things done
nix.conf
? (See Nix manual)sandbox = relaxed
sandbox = true
nix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD"
. Note: all changes have to be committed, also see nixpkgs-review usage./result/bin/
)Add a 👍 reaction to pull requests you find important.