php-pear 1:1.10.9+submodules+notgz-1ubuntu0.20.10.2 source package in Ubuntu

Changelog

php-pear (1:1.10.9+submodules+notgz-1ubuntu0.20.10.2) groovy-security; urgency=medium

  * SECURITY UPDATE: directory traversal attack in Archive_Tar
    - debian/patches/CVE-2020-36193-1.patch: disallow symlinks to
      out-of-path filenames in submodules/Archive_Tar/Archive/Tar.php.
    - debian/patches/CVE-2020-36193-2.patch: fix out-of-path check for
      virtual relative symlink in submodules/Archive_Tar/Archive/Tar.php.
    - debian/patches/CVE-2020-36193-3.patch: PHP compat fix in
      submodules/Archive_Tar/Archive/Tar.php..
    - CVE-2020-36193

 -- Marc Deslauriers <email address hidden>  Thu, 04 Feb 2021 10:36:47 -0500

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Groovy
Original maintainer:
Ubuntu Developers
Architectures:
all
Section:
php
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Groovy: [FULLYBUILT] amd64

Downloads

File Size SHA-256 Checksum
php-pear_1.10.9+submodules+notgz.orig.tar.gz 2.1 MiB d138578f93aaf595846e92b5bf5e1b65a5113c823d6fb9ee43138e55cd426c91
php-pear_1.10.9+submodules+notgz-1ubuntu0.20.10.2.debian.tar.xz 9.2 KiB bf62d06df0ba87a9f32d52ffe36652a4904d8f30fba252f4ce4d76b244f8abb5
php-pear_1.10.9+submodules+notgz-1ubuntu0.20.10.2.dsc 2.2 KiB 982cc553beda5b87b83d9b5bdd8e7e1a19613077bceb09ed24a2ba4dc7c85ff0

View changes file

Binary packages built by this source

php-pear: No summary available for php-pear in ubuntu groovy.

No description available for php-pear in ubuntu groovy.