Ubuntu
php-pear package

php-pear 1:1.10.9+submodules+notgz-1.1ubuntu1 source package in Ubuntu

Changelog

php-pear (1:1.10.9+submodules+notgz-1.1ubuntu1) hirsute; urgency=medium

  * SECURITY UPDATE: directory traversal attack in Archive_Tar
    - debian/patches/CVE-2020-36193-1.patch: disallow symlinks to
      out-of-path filenames in submodules/Archive_Tar/Archive/Tar.php.
    - debian/patches/CVE-2020-36193-2.patch: fix out-of-path check for
      virtual relative symlink in submodules/Archive_Tar/Archive/Tar.php.
    - debian/patches/CVE-2020-36193-3.patch: PHP compat fix in
      submodules/Archive_Tar/Archive/Tar.php..
    - CVE-2020-36193

 -- Marc Deslauriers <email address hidden>  Thu, 04 Feb 2021 10:30:44 -0500

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Hirsute
Original maintainer:
Ubuntu Developers
Architectures:
all
Section:
php
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Hirsute: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
php-pear_1.10.9+submodules+notgz.orig.tar.gz 2.1 MiB d138578f93aaf595846e92b5bf5e1b65a5113c823d6fb9ee43138e55cd426c91
php-pear_1.10.9+submodules+notgz-1.1ubuntu1.debian.tar.xz 9.3 KiB d4ae7151958c24baa016759b3debf3b50de17f5da8e3e740603c0ad54fec9dcb
php-pear_1.10.9+submodules+notgz-1.1ubuntu1.dsc 2.1 KiB 68367fc32e3d8134cf39a3d90a4b17ae44dbe89948f73e8387589d273edc4722

View changes file

Binary packages built by this source

php-pear: No summary available for php-pear in ubuntu impish.

No description available for php-pear in ubuntu impish.