File _patchinfo of Package patchinfo.118

<patchinfo incident="118">
  <issue id="902357" tracker="bnc">CVE-2014-3670: php: heap corruption issue in exif_thumbnail()</issue>
  <issue id="902360" tracker="bnc">CVE-2014-3669: php: integer overflow in unserialize()</issue>
  <issue id="902368" tracker="bnc">CVE-2014-3668 php5: xmlrpc ISO8601 date format parsing out-of-bounds read in mkgmtime()</issue>
  <issue id="CVE-2014-3669" tracker="cve" />
  <issue id="CVE-2014-3668" tracker="cve" />
  <issue id="CVE-2014-3670" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>pgajdos</packager>
  <description>php5 was updated to fix three security issues.

The following security issues were fixed:
- xmlrpc ISO8601 date format parsing out-of-bounds read in mkgmtime() (CVE-2014-3668).
- integer overflow in unserialize() (CVE-2014-3669).
- heap corruption issue in exif_thumbnail() (CVE-2014-3670).
</description>
  <summary>Security update for php5</summary>
</patchinfo>
Places

File _patchinfo of Package patchinfo.118

Places
