--- php-net-ping-2.4.2.orig/debian/rules +++ php-net-ping-2.4.2/debian/rules @@ -0,0 +1,61 @@ +#!/usr/bin/make -f + +#export DH_VERBOSE=1 +PEAR ?= /usr/bin/pear +pear_pkg = $(shell ls | grep Net_Ping) +package = php-net-ping + +configure: configure-stamp +configure-stamp: + dh_testdir + touch configure-stamp + +build: build-stamp + +build-stamp: configure-stamp + dh_testdir + touch build-stamp + +clean: + dh_testdir + dh_testroot + if [ -f $(pear_pkg)/package.xml ]; then \ + rm $(pear_pkg)/package.xml; \ + fi + dh_clean build-stamp configure-stamp + +install: build + dh_testdir + dh_testroot + dh_clean -k + dh_installdirs + cp package.xml $(pear_pkg)/package.xml; + $(PEAR) install -f -n -R debian/$(package) $(pear_pkg)/package.xml + + rm -f debian/$(package)/usr/share/php/.filemap; + rm -f debian/$(package)/usr/share/php/.lock; + rm -rf debian/$(package)/usr/share/php/.channels; + rm -rf debian/$(package)/usr/share/php/.depdblock; + rm -rf debian/$(package)/usr/share/php/.depdb; + rm -rf debian/$(package)/usr/share/php/docs; + rm -rf debian/$(package)/usr/share/php/tests; + rm -rf debian/$(package)/usr/share/php/.registry/.channel.pecl.php.net; + rm -rf debian/$(package)/usr/share/php/.registry/.channel.__uri; + rm -rf debian/$(package)/tmp; + +binary-indep: build install +binary-arch: build install + dh_testdir + dh_testroot + dh_installdocs $(pear_pkg)/tests + dh_installexamples $(pear_pkg)/docs/examples/example.php + dh_installchangelogs + dh_compress + dh_fixperms + dh_installdeb + dh_gencontrol + dh_md5sums + dh_builddeb + +binary: binary-indep binary-arch +.PHONY: build clean binary-indep binary-arch binary install configure --- php-net-ping-2.4.2.orig/debian/changelog +++ php-net-ping-2.4.2/debian/changelog @@ -0,0 +1,35 @@ +php-net-ping (2.4.2-1+etch1build0.9.10.1) karmic-security; urgency=low + + * fake sync from Debian + + -- Marc Deslauriers Wed, 13 Jan 2010 13:43:34 -0500 + +php-net-ping (2.4.2-1+etch1) oldstable-security; urgency=high + + * Non-maintainer upload by the Security Team. + Fixes: + * CVE-2009-4024: Arbitrary command execution vulnerability. + * CVE id pending: argument injection vulnerability. + + -- Raphael Geissert Fri, 11 Dec 2009 12:45:52 -0600 + +php-net-ping (2.4.2-1) unstable; urgency=low + + * New upstream release. + + -- Thomas Goirand Mon, 13 Aug 2007 14:05:17 +0800 + +php-net-ping (2.4.1-2) unstable; urgency=low + + * Not using CDBS anymore (rewrote debian/rules). + * Now packaging the pear .reg file so pear install continues to work. + * The watch file now works. + * The debian/copyright is now consistent. + + -- Thomas Goirand Sun, 5 Aug 2007 16:42:02 +0800 + +php-net-ping (2.4.1-1) unstable; urgency=low + + * Initial release (Closes: #404661) + + -- Thomas Goirand Fri, 15 Dec 2006 01:34:04 +0100 --- php-net-ping-2.4.2.orig/debian/compat +++ php-net-ping-2.4.2/debian/compat @@ -0,0 +1 @@ +5 --- php-net-ping-2.4.2.orig/debian/copyright +++ php-net-ping-2.4.2/debian/copyright @@ -0,0 +1,86 @@ +This package was debianized by Thomas Goirand on +Sat, 12 Dec 2006 21:54:10 +0200. + +It was downloaded at: + http://download.pear.php.net/package/Net_Ping-0.4.tgz + +Upstream Author: + + Thomas V.V.Cox + +License: + + Copyright (C) 1997-2002 The PHP Group + This package and it's source file(s) is/are subject to version 2.02 of + the PHP license, that is available at through the world-wide-web at: + http://www.php.net/license/2_02.txt. + +Copyright notice: + +-------------------------------------------------------------------- + The PHP License, version 2.02 +Copyright (c) 1999 - 2002 The PHP Group. All rights reserved. +-------------------------------------------------------------------- + +Redistribution and use in source and binary forms, with or without +modification, is permitted provided that the following conditions are met: + + 1. Redistributions of source code must retain the above copyright notice, + this list of conditions and the following disclaimer. + + 2. Redistributions in binary form must reproduce the above copyright + notice, this list of conditions and the following disclaimer in the + documentation and/or other materials provided with the distribution. + + 3. The name "PHP" must not be used to endorse or promote products derived + from this software without prior permission from the PHP Group. This does + not apply to add-on libraries or tools that work in conjunction with PHP. + In such a case the PHP name may be used to indicate that the product + supports PHP. + + 4. The PHP Group may publish revised and/or new versions of the license from + time to time. Each version will be given a distinguishing version number. + Once covered code has been published under a particular version of the + license, you may always continue to use it under the terms of that + version. You may also choose to use such covered code under the terms of + any subsequent version of the license published by the PHP Group. No one + other than the PHP Group has the right to modify the terms applicable to + covered code created under this License. + + 5. Redistributions of any form whatsoever must retain the following + acknowledgment: "This product includes PHP, freely available from + http://www.php.net/". + + 6. The software incorporates the Zend Engine, a product of Zend Technologies, + Ltd. ("Zend"). The Zend Engine is licensed to the PHP Association + (pursuant to a grant from Zend that can be found at + http://www.php.net/license/ZendGrant/) for distribution to you under this + license agreement, only as a part of PHP. In the event that you separate + the Zend Engine (or any portion thereof) from the rest of the software, or + modify the Zend Engine, or any portion thereof, your use of the separated + or modified Zend Engine software shall not be governed by this license, + and instead shall be governed by the license set forth at + http://www.zend.com/license/ZendLicense/. + + + +THIS SOFTWARE IS PROVIDED BY THE PHP DEVELOPMENT TEAM ``AS IS'' AND ANY +EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED +WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE +DISCLAIMED. IN NO EVENT SHALL THE PHP DEVELOPMENT TEAM OR ITS CONTRIBUTORS BE +LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR +CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE +GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) +HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT +LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT +OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + +-------------------------------------------------------------------- + +This software consists of voluntary contributions made by many individuals on +behalf of the PHP Group. + +The PHP Group can be contacted via Email at group@php.net. + +For more information on the PHP Group and the PHP project, please see +. --- php-net-ping-2.4.2.orig/debian/watch +++ php-net-ping-2.4.2/debian/watch @@ -0,0 +1,2 @@ +version=3 +http://pear.php.net/package/Net_Ping/download http://download.pear.php.net/package/Net_Ping-(.*).tgz --- php-net-ping-2.4.2.orig/debian/control +++ php-net-ping-2.4.2/debian/control @@ -0,0 +1,14 @@ +Source: php-net-ping +Section: web +Priority: optional +Maintainer: Thomas Goirand +Build-Depends: debhelper (>= 5), php-pear +Standards-Version: 3.7.2 + +Package: php-net-ping +Architecture: all +Depends: php-pear +Description: Execute ping + OS independet wrapper class for executing ping calls + . + Homepage: http://pear.php.net/package/Net_Ping --- php-net-ping-2.4.2.orig/Net_Ping-2.4.2/Ping.php +++ php-net-ping-2.4.2/Net_Ping-2.4.2/Ping.php @@ -376,7 +376,7 @@ } $argList = $this->_createArgList(); - $cmd = $this->_ping_path." ".$argList['pre']." ".$host." ".$argList['post']; + $cmd = $this->_ping_path." ".$argList['pre']." ".escapeshellarg($host)." ".$argList['post']; // since we return a new instance of Net_Ping_Result (on // success), users may call the ping() method repeatedly to