[SECURITY] Fedora 12 Update: php-pecl-apc-3.1.4-2.fc12
updates at fedoraproject.org
updates at fedoraproject.org
Thu Sep 30 10:25:18 UTC 2010
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-15004
2010-09-21 00:57:13
--------------------------------------------------------------------------------
Name : php-pecl-apc
Product : Fedora 12
Version : 3.1.4
Release : 2.fc12
URL : http://pecl.php.net/package/APC
Summary : APC caches and optimizes PHP intermediate code
Description :
APC is a free, open, and robust framework for caching and optimizing PHP
intermediate code.
--------------------------------------------------------------------------------
Update Information:
Upstream Changelog for Version 3.1.4 - API 3.1.0 (beta)
* Renamed the memory protection configure option to --enable-apc-memprotect (Kalle, Shire)
* ZTS fixes and optimizations (Kalle, Felipe)
* Added support for interned strings, run-time caches and Zend Engine 2.4 (Dmitry)
* Added apc_exists() (Rasmus)
* Fixed potential XSS in apc.php (Pierre, Matt Chapman)
* Fixed pecl bug #17597 (keys with embedded NUL) (Gopal)
* Fixed pecl bug #17650 (Fix goto jump offsets) (Gopal)
* Fixed pecl bug #17527 (Standardized error reporting) (Gopal, Paul Dragoonis)
* Fixed pecl bug #17089 (Scrub the constant table of all inherited members before caching) (Gopal)
* Fixed pecl bug #16860 (files can be included more than once even when include/require_once are used) (Pierre)
* Fixed pecl bug #16717 (apc_fetch dies after 1 hour, regardless of ttl settings) (Kalle)
* Fixed pecl bug #17597 (apc user cache keys with embedded NULs) (Gopal)
* Fixed pecl bug #13583 (apc upload progress fixes) (Gopal)
Improves default configuration file provided.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 8 2010 Remi Collet <Fedora at FamilleCollet.com> - 3.1.4-2
- fix default value for apc.shm_size (need M suffixes)
* Thu Aug 5 2010 Remi Collet <Fedora at FamilleCollet.com> - 3.1.4-1
- update to Version 3.1.4 (beta) - API 3.1.0 (beta)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #634334 - CVE-2010-3294 php-pecl-apc: potential XSS in apc.php
https://bugzilla.redhat.com/show_bug.cgi?id=634334
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update php-pecl-apc' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list