Security update for php5
PHP was updated to fix two security issues.
The following vulnerabilities were fixed:
* CVE-2015-5589: PHP could be crashed when processing an invalid file with the "phar" extension with a segfault in Phar::convertToData, leading to Denial of Service (DOS) (boo#938721)
* CVE-2015-5590: PHP could be crashed or have unspecified other impact due to a buffer overlow in phar_fix_filepath (boo#938719)
-
Submitted by
Petr Gajdos (pgajdos)
Fixed bugs
bnc#938721
VUL-0: CVE-2015-5589: php5,php53: segmentation fault in Phar::convertToData
bnc#938719
VUL-0: CVE-2015-5590: php5,php53: buffer overflow in phar_fix_filepath
