Ubuntu

“php5” 5.3.6-13ubuntu3.2 source package in The Oneiric Ocelot

Publishing history

5.3.6-13ubuntu3.2
SUPERSEDED: Oneiric pocket Updates in component main and section php
  • Removed from disk on 2011-12-15.
  • Removal requested on 2011-12-15.
  • Superseded on 2011-12-14 by php5 - 5.3.6-13ubuntu3.3
  • Published on 2011-10-17
  • Copied from ubuntu oneiric in Private PPA for Ubuntu Security Team by Steve Beattie
5.3.6-13ubuntu3.2
SUPERSEDED: Oneiric pocket Security in component main and section php
  • Removed from disk on 2011-12-15.
  • Removal requested on 2011-12-15.
  • Superseded on 2011-12-14 by php5 - 5.3.6-13ubuntu3.3
  • Published on 2011-10-17
  • Copied from ubuntu oneiric in Private PPA for Ubuntu Security Team by Steve Beattie

Builds

Changelog

php5 (5.3.6-13ubuntu3.2) oneiric-security; urgency=low

  * SECURITY UPDATE: DoS in zip handling due to addGlob() crashing
    on invalid flags
    - debian/patches/php5-CVE-2011-1657.patch: check for valid flags
    - CVE-2011-1657
  * SECURITY UPDATE: DoS due to failure to check for memory allocation errors
    - debian/patches/php5-CVE-2011-3182.patch: check the return values
      of the malloc, calloc, and realloc functions
    - CVE-2011-3182
  * SECURITY UPDATE:  DoS in errorlog() when passed NULL
    - debian/patches/php5-CVE-2011-3267.patch: fix NULL pointer crash in
      errorlog()
    - CVE-2011-3267
  * debian/control: enforce timestamp difference large enough for make
    to detect before editing configure.in, so that aclocal.m4 will be
    regenerated.
  * debian/patches/php5-CVE-2011-1938_fix.patch: fix the fix for
    CVE-2011-1938 to remove the extra argument.
 -- Steve Beattie <email address hidden>   Thu, 13 Oct 2011 13:42:19 -0700