弁財天

ゴフマン「専門家を信じるのではなく、自分自身で考えて判断せよ」

php52-backports

PHP 5.2.17以降のバグ・セキュリティー対策
php52-backports

$ cd php-5.2.17
$ patch -p1 <../php52-backports-20120808.patch
patching file main/php_variables.c
patching file main/php_globals.h
patching file main/rfc1867.c
patching file main/snprintf.c
patching file main/spprintf.c
patching file main/snprintf.h
patching file main/php_open_temporary_file.c
patching file main/SAPI.c
patching file main/reentrancy.c
patching file main/main.c
patching file main/fopen_wrappers.c
patching file main/streams/streams.c
patching file main/streams/userspace.c
patching file sapi/apache/mod_php5.c
patching file sapi/apache_hooks/mod_php5.c
patching file sapi/apache2handler/sapi_apache2.c
patching file sapi/apache2handler/apache_config.c
patching file sapi/cgi/cgi_main.c
patching file sapi/cli/php_cli.c
patching file sapi/apache2filter/sapi_apache2.c
patching file ext/spl/spl_observer.c
patching file ext/spl/spl_directory.c
patching file ext/spl/spl_iterators.c
patching file ext/spl/spl_array.c
patching file ext/standard/array.c
patching file ext/standard/string.c
patching file ext/standard/basic_functions.c
patching file ext/standard/pack.c
patching file ext/standard/base64.c
patching file ext/standard/var.c
patching file ext/standard/http_fopen_wrapper.c
patching file ext/standard/ftp_fopen_wrapper.c
patching file ext/standard/info.c
patching file ext/standard/filters.c
patching file ext/standard/url.c
patching file ext/standard/html.c
patching file ext/standard/file.c
patching file ext/standard/proc_open.c
patching file ext/pdo_dblib/dblib_stmt.c
patching file ext/mysqli/mysqli_warning.c
patching file ext/mysqli/mysqli_api.c
patching file ext/dom/php_dom.c
patching file ext/exif/exif.c
patching file ext/xmlwriter/php_xmlwriter.c
patching file ext/sqlite/sqlite.c
patching file ext/soap/soap.c
patching file ext/soap/php_encoding.c
patching file ext/pdo_sqlite/sqlite_driver.c
patching file ext/xsl/php_xsl.h
patching file ext/xsl/xsltprocessor.c
patching file ext/xsl/php_xsl.c
patching file ext/pdo_mysql/mysql_statement.c
patching file ext/pdo/pdo_dbh.c
patching file ext/pdo/pdo_sql_parser.re
patching file ext/pdo/pdo_stmt.c
patching file ext/shmop/shmop.c
patching file ext/ftp/ftp.c
patching file ext/com_dotnet/com_variant.c
patching file ext/com_dotnet/php_com_dotnet_internal.h
patching file ext/com_dotnet/php_com_dotnet.h
patching file ext/com_dotnet/com_olechar.c
patching file ext/com_dotnet/com_wrapper.c
patching file ext/com_dotnet/com_persist.c
patching file ext/com_dotnet/com_misc.c
patching file ext/com_dotnet/com_typeinfo.c
patching file ext/curl/interface.c
patching file ext/tokenizer/tokenizer.c
patching file ext/date/php_date.c
patching file ext/date/lib/timezonedb.h
patching file ext/readline/readline.c
patching file ext/xmlreader/php_xmlreader.c
patching file ext/mbstring/libmbfl/mbfl/mbfilter.c
patching file ext/filter/logical_filters.c
patching file ext/filter/filter.c
patching file ext/filter/sanitizing_filters.c
patching file ext/dba/dba_flatfile.c
patching file ext/imap/php_imap.c
patching file ext/libxml/libxml.c
patching file ext/pdo_pgsql/config.m4
patching file ext/reflection/php_reflection.c
patching file ext/zip/lib/zip_dirent.c
patching file ext/zip/lib/zip_name_locate.c
patching file ext/zip/php_zip.c
patching file ext/zip/zip_stream.c
patching file ext/oci8/oci8.c
patching file ext/tidy/tidy.c
patching file ext/calendar/julian.c
patching file ext/sockets/sockets.c
patching file ext/interbase/php_ibase_includes.h
patching file ext/snmp/snmp.c
patching file Zend/zend_language_scanner.l
patching file Zend/zend_compile.c
patching file Zend/zend_API.c
patching file Zend/zend_exceptions.c
patching file Zend/zend_alloc.c
patching file Zend/zend_execute_API.c
$

httpdプロセスがzend_hash.cでSIGSEGVがおきる。

Last 20120808 full trunk patch (all bugfixes, maybe is not stable)
フル・パッチ(full trunk patch)は不安定なのでセキュリティ・ブランチ・パッチ(security branch patch)がお勧め。

$ patch -p1 <../php52-backports-security-20120808.patch
patching file main/php_variables.c
patching file main/php_globals.h
patching file main/rfc1867.c
patching file main/main.c
patching file main/streams/streams.c
patching file sapi/cgi/cgi_main.c
patching file ext/standard/string.c
patching file ext/standard/ftp_fopen_wrapper.c
patching file ext/exif/exif.c
patching file ext/sqlite/sqlite.c
patching file ext/pdo_sqlite/sqlite_driver.c
patching file ext/xsl/php_xsl.h
patching file ext/xsl/xsltprocessor.c
patching file ext/xsl/php_xsl.c
patching file ext/pdo/pdo_stmt.c
patching file ext/shmop/shmop.c
patching file ext/date/lib/timezonedb.h
patching file ext/zip/lib/zip_name_locate.c
patching file ext/zip/zip_stream.c
patching file ext/oci8/oci8.c
patching file ext/tidy/tidy.c
patching file ext/calendar/julian.c
patching file ext/sockets/sockets.c
$
zend_cacheがSIGSEGVを起こす問題はなくなった。

投稿されたコメント:

コメント
コメントは無効になっています。