File tree 3 files changed +6
-4
lines changed
3 files changed +6
-4
lines changed Original file line number Diff line number Diff line change @@ -25,7 +25,7 @@ PHP NEWS
2525 . Fix bug #64498 ($phar->buildFromDirectory can't compress file with an accent
2626 in its name). (PR #588)
2727
28- ?? ??? 2014, PHP 5.4.28
28+ 01 May 2014, PHP 5.4.28
2929
3030- Core:
3131 . Fixed bug #61019 (Out of memory on command stream_get_contents). (Mike)
@@ -55,6 +55,8 @@ PHP NEWS
5555
5656- FPM:
5757 . Fixed bug #66482 (unknown entry 'priority' in php-fpm.conf).
58+ . Fixed bug #67060 (sapi/fpm: possible privilege escalation due to insecure
59+ default configuration) (CVE-2014-0185). (Stas)
5860
5961- JSON:
6062 . Fixed bug #66021 (Blank line inside empty array/object when
Original file line number Diff line number Diff line change @@ -35,7 +35,7 @@ int fpm_unix_resolve_socket_premissions(struct fpm_worker_pool_s *wp) /* {{{ */
3535 /* uninitialized */
3636 wp -> socket_uid = -1 ;
3737 wp -> socket_gid = -1 ;
38- wp -> socket_mode = 0666 ;
38+ wp -> socket_mode = 0660 ;
3939
4040 if (!c ) {
4141 return 0 ;
Original file line number Diff line number Diff line change @@ -166,10 +166,10 @@ listen = 127.0.0.1:9000
166166; permissions must be set in order to allow connections from a web server. Many
167167; BSD-derived systems allow connections regardless of permissions.
168168; Default Values: user and group are set as the running user
169- ; mode is set to 0666
169+ ; mode is set to 0660
170170;listen.owner = @php_fpm_user@
171171;listen.group = @php_fpm_group@
172- ;listen.mode = 0666
172+ ;listen.mode = 0660
173173
174174; List of ipv4 addresses of FastCGI clients which are allowed to connect.
175175; Equivalent to the FCGI_WEB_SERVER_ADDRS environment variable in the original
You can’t perform that action at this time.
0 commit comments