Publishing details
Changelog
php5 (5.5.9+dfsg-1ubuntu4.29) trusty-security; urgency=medium
* SECURITY UPDATE: Unauthorized users access
- debian/patches/CVE-2019-9637.patch: fix in
main/streams/plain_wrapper.c.
- CVE-2019-9637
* SECURITY UPDATE: Invalid read in exif_process_IFD_MAKERNOTE
- debian/patches/CVE-2019-9638-and-CVE-2019-9639-*.patch: fix in
ext/exif/exif.c, added tests in ext/exif/tests/bug77563.jpg,
ext/exif/tests/bug77563.phpt.
- CVE-2019-9638
- CVE-2019-9639
* SECURITY UPDATE: Invalid read
- debian/patches/CVE-2019-9640.patch: fix in
ext/exif/exif.c, added tests in ext/exif/tests/bug77540.jpg,
ext/exif/tests/bug77540.phpt.
- CVE-2019-9640
* SECURITY UPDATE: Unitialized read
- debian/patches/CVE-2019-9641.patch: fix in ext/exif/exif.c.
- CVE-2019-9641
* SECURITY UPDATE: Buffer overflow
- debian/patches/CVE-2019-9675.patch: fix in
ext/phar/tar.c, added tests, ext/phar/tests/bug77586,phpt,
ext/phar/tests/bug77586/files/*.
- CVE-2019-9675
* Changed the way MAKERNOTE is handled in case we do not have a matching
signature, in order to support tests CVE-2019-9638 and CVE-2019-9639.
- debian/patches/Changed-the-way-MAKERNOTE-is-handled-in-case.patch: fix
it changing the behavior in order to continue the parse in
ext/exif/exif.c
* SECURITY UPDATE: buffer over-read in dns_get_record
- debian/patches/CVE-2019-9022.patch: check length in
ext/standard/dns.c.
- CVE-2019-9022
-- <email address hidden> (Leonidas S. Barbosa) Mon, 22 Apr 2019 14:39:52 -0300
Builds
Built packages
-
libapache2-mod-php5
server-side, HTML-embedded scripting language (Apache 2 module)
-
libapache2-mod-php5-dbgsym
debug symbols for package libapache2-mod-php5
-
libapache2-mod-php5filter
server-side, HTML-embedded scripting language (apache 2 filter module)
-
libapache2-mod-php5filter-dbgsym
debug symbols for package libapache2-mod-php5filter
-
libphp5-embed
HTML-embedded scripting language (Embedded SAPI library)
-
libphp5-embed-dbgsym
debug symbols for package libphp5-embed
-
php-pear
PEAR - PHP Extension and Application Repository
-
php5
server-side, HTML-embedded scripting language (metapackage)
-
php5-cgi
server-side, HTML-embedded scripting language (CGI binary)
-
php5-cgi-dbgsym
debug symbols for package php5-cgi
-
php5-cli
command-line interpreter for the php5 scripting language
-
php5-cli-dbgsym
debug symbols for package php5-cli
-
php5-common
Common files for packages built from the php5 source
-
php5-common-dbgsym
debug symbols for package php5-common
-
php5-curl
CURL module for php5
-
php5-curl-dbgsym
debug symbols for package php5-curl
-
php5-dbg
Debug symbols for PHP5
-
php5-dev
Files for PHP5 module development
-
php5-dev-dbgsym
debug symbols for package php5-dev
-
php5-enchant
Enchant module for php5
-
php5-enchant-dbgsym
debug symbols for package php5-enchant
-
php5-fpm
server-side, HTML-embedded scripting language (FPM-CGI binary)
-
php5-fpm-dbgsym
debug symbols for package php5-fpm
-
php5-gd
GD module for php5
-
php5-gd-dbgsym
debug symbols for package php5-gd
-
php5-gmp
GMP module for php5
-
php5-gmp-dbgsym
debug symbols for package php5-gmp
-
php5-intl
internationalisation module for php5
-
php5-intl-dbgsym
debug symbols for package php5-intl
-
php5-ldap
LDAP module for php5
-
php5-ldap-dbgsym
debug symbols for package php5-ldap
-
php5-mysql
MySQL module for php5
-
php5-mysql-dbgsym
debug symbols for package php5-mysql
-
php5-mysqlnd
MySQL module for php5 (Native Driver)
-
php5-mysqlnd-dbgsym
debug symbols for package php5-mysqlnd
-
php5-odbc
ODBC module for php5
-
php5-odbc-dbgsym
debug symbols for package php5-odbc
-
php5-pgsql
PostgreSQL module for php5
-
php5-pgsql-dbgsym
debug symbols for package php5-pgsql
-
php5-pspell
pspell module for php5
-
php5-pspell-dbgsym
debug symbols for package php5-pspell
-
php5-readline
Readline module for php5
-
php5-readline-dbgsym
debug symbols for package php5-readline
-
php5-recode
recode module for php5
-
php5-recode-dbgsym
debug symbols for package php5-recode
-
php5-snmp
SNMP module for php5
-
php5-snmp-dbgsym
debug symbols for package php5-snmp
-
php5-sqlite
SQLite module for php5
-
php5-sqlite-dbgsym
debug symbols for package php5-sqlite
-
php5-sybase
Sybase / MS SQL Server module for php5
-
php5-sybase-dbgsym
debug symbols for package php5-sybase
-
php5-tidy
tidy module for php5
-
php5-tidy-dbgsym
debug symbols for package php5-tidy
-
php5-xmlrpc
XML-RPC module for php5
-
php5-xmlrpc-dbgsym
debug symbols for package php5-xmlrpc
-
php5-xsl
XSL module for php5
-
php5-xsl-dbgsym
debug symbols for package php5-xsl
Package files