Re: [CentOS] PHP FPM issue

2019-11-02 Thread Thomas Stephen Lee
RedHat has updated rh-php71-php and rh-php72-php. https://access.redhat.com/errata/RHSA-2019:3300 https://access.redhat.com/errata/RHSA-2019:3299 thanks --- Thomas Stephen Lee On Sat, Nov 2, 2019 at 12:45 AM Kenneth Porter wrote: > --On Friday, November 01, 2019 12:40 PM +0530 Thomas Stephen

Re: [CentOS] PHP FPM issue

2019-11-01 Thread Kenneth Porter
--On Friday, November 01, 2019 12:40 PM +0530 Thomas Stephen Lee wrote: yes, those who use software collections will have to wait longer for permanent fix i guess. Or it may arrive sooner, depending on the repo maintainer for each package. I use a COPR package of BackupPC 4 and the package

Re: [CentOS] PHP FPM issue

2019-10-31 Thread Thomas Stephen Lee
On Fri, Nov 1, 2019 at 5:08 AM Marius ROMAN wrote: > On 10/31/19 6:55 PM, Thomas Stephen Lee wrote: > > Hi Marius, > > Will make the changes and see how it goes. > > On the other hand > https://cbs.centos.org/koji/buildinfo?buildID=27138 > > if the above was released we could just install and mig

Re: [CentOS] PHP FPM issue

2019-10-31 Thread Thomas Stephen Lee
https://access.redhat.com/errata/RHSA-2019:3286 Looks like RedHat is updating PHP 5 packages. thanks --- Thomas Stephen Lee On Fri, Nov 1, 2019 at 5:08 AM Marius ROMAN wrote: > On 10/31/19 6:55 PM, Thomas Stephen Lee wrote: > > Hi Marius, > > Will make the changes and see how it goes. > > On

Re: [CentOS] PHP FPM issue

2019-10-31 Thread Marius ROMAN
On 10/31/19 6:55 PM, Thomas Stephen Lee wrote: Hi Marius, Will make the changes and see how it goes. On the other hand https://cbs.centos.org/koji/buildinfo?buildID=27138 if the above was released we could just install and migrate to rh-php73-php, which is not affected as per https://access.

Re: [CentOS] PHP FPM issue

2019-10-31 Thread Thomas Stephen Lee
Hi Marius, Will make the changes and see how it goes. On the other hand https://cbs.centos.org/koji/buildinfo?buildID=27138 if the above was released we could just install and migrate to rh-php73-php, which is not affected as per https://access.redhat.com/security/cve/cve-2019-11043 thanks -

Re: [CentOS] PHP FPM issue

2019-10-31 Thread Thomas Stephen Lee
Hi Jonathan and CentOS Team, Thanks for the link. https://cbs.centos.org/koji/buildinfo?buildID=27138 rh-php73-php seems to be ready and is not vulnerable according to the CVE. When will rh-php73-php be released to the repos? thanks --- Thomas Stephen Lee On Thu, Oct 31, 2019 at 8:40 PM Jona

Re: [CentOS] PHP FPM issue

2019-10-31 Thread Marius ROMAN
On 10/31/19 10:49 AM, Thomas Stephen Lee wrote: Hi, what is the workaround for this? https://www.nginx.com/blog/php-fpm-cve-2019-11043-vulnerability-nginx/ in either CentOS 7 or 8 ? thanks --- Thomas Stephen Lee ___ CentOS mailing list CentOS@cento

Re: [CentOS] PHP FPM issue

2019-10-31 Thread Jonathan Billings
On Thu, Oct 31, 2019 at 02:19:05PM +0530, Thomas Stephen Lee wrote: > > Hi, > > what is the workaround for this? > > https://www.nginx.com/blog/php-fpm-cve-2019-11043-vulnerability-nginx/ > > in either CentOS 7 or 8 ? https://access.redhat.com/security/cve/cve-2019-11043 -- Jonathan Billings

[CentOS] PHP FPM issue

2019-10-31 Thread Thomas Stephen Lee
Hi, what is the workaround for this? https://www.nginx.com/blog/php-fpm-cve-2019-11043-vulnerability-nginx/ in either CentOS 7 or 8 ? thanks --- Thomas Stephen Lee ___ CentOS mailing list CentOS@centos.org https://lists.centos.org/mailman/listinfo/ce