Format: 1.8 Date: Fri, 10 Feb 2017 10:32:09 -0500 Source: php5 Binary: php5 php5-common libapache2-mod-php5 libapache2-mod-php5filter php5-cgi php5-cli php5-fpm php5-dev php5-dbg php-pear php5-curl php5-enchant php5-gd php5-gmp php5-intl php5-ldap php5-mysql php5-mysqlnd php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl Architecture: i386 i386_translations all Version: 5.3.10-1ubuntu3.26 Distribution: precise Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: libapache2-mod-php5 - server-side, HTML-embedded scripting language (Apache 2 module) libapache2-mod-php5filter - server-side, HTML-embedded scripting language (apache 2 filter mo php-pear - PEAR - PHP Extension and Application Repository php5 - server-side, HTML-embedded scripting language (metapackage) php5-cgi - server-side, HTML-embedded scripting language (CGI binary) php5-cli - command-line interpreter for the php5 scripting language php5-common - Common files for packages built from the php5 source php5-curl - CURL module for php5 php5-dbg - Debug symbols for PHP5 php5-dev - Files for PHP5 module development php5-enchant - Enchant module for php5 php5-fpm - server-side, HTML-embedded scripting language (FPM-CGI binary) php5-gd - GD module for php5 php5-gmp - GMP module for php5 php5-intl - internationalisation module for php5 php5-ldap - LDAP module for php5 php5-mysql - MySQL module for php5 php5-mysqlnd - MySQL module for php5 (Native Driver) php5-odbc - ODBC module for php5 php5-pgsql - PostgreSQL module for php5 php5-pspell - pspell module for php5 php5-recode - recode module for php5 php5-snmp - SNMP module for php5 php5-sqlite - SQLite module for php5 php5-sybase - Sybase / MS SQL Server module for php5 php5-tidy - tidy module for php5 php5-xmlrpc - XML-RPC module for php5 php5-xsl - XSL module for php5 Changes: php5 (5.3.10-1ubuntu3.26) precise-security; urgency=medium . * SECURITY UPDATE: overflow in locale_get_display_name - debian/patches/CVE-2014-9912.patch: check locale name length in ext/intl/locale/locale_methods.c, added test to ext/intl/tests/bug67397.phpt. - CVE-2014-9912 * SECURITY UPDATE: infinite loop via crafted serialized data - debian/patches/CVE-2016-7478-pre.patch: don't unset the default value in Zend/zend_exceptions.c, fix tests in ext/standard/tests/serialize/bug69152.phpt, ext/standard/tests/serialize/bug69793.phpt. - debian/patches/CVE-2016-7478-pre2.patch: fix test in ext/standard/tests/serialize/bug69793.phpt. - debian/patches/CVE-2016-7478-pre3.patch: add zend_unset_property() to Zend/zend_API.*. - debian/patches/CVE-2016-7478.patch: fix memcpy in Zend/zend_exceptions.c, ext/bcmath/libbcmath/src/init.c, ext/bcmath/libbcmath/src/outofmem.c. - CVE-2016-7478 * SECURITY UPDATE: arbitrary code execution via crafted serialized data - debian/patches/CVE-2016-7479-pre.patch: fix null pointer dereference in ext/standard/var_unserializer.*, added test to standard/tests/serialize/bug68545.phpt. - debian/patches/CVE-2016-7479.patch: implement delayed __wakeup in ext/standard/var_unserializer.*. - CVE-2016-7479 * SECURITY UPDATE: denial of service via crafted wddxPacket XML document - debian/patches/CVE-2016-9934.patch: check objects in ext/wddx/wddx.c, ext/pdo/pdo_stmt.c, ext/wddx/tests/bug45901.phpt, ext/wddx/tests/bug72790.phpt, ext/wddx/tests/bug73331.phpt. - CVE-2016-9934 * SECURITY UPDATE: denial of service via crafted wddxPacket XML document - debian/patches/CVE-2016-9935-1.patch: fix memory leak in ext/wddx/wddx.c. - debian/patches/CVE-2016-9935-2.patch: fix leak in ext/wddx/wddx.c. - debian/patches/CVE-2016-9935-3.patch: fix leak in ext/wddx/wddx.c. - CVE-2016-9935 * SECURITY UPDATE: exif DoS via FPE - debian/patches/CVE-2016-10158.patch: fix integer size issue in ext/exif/exif.c. - CVE-2016-10158 * SECURITY UPDATE: integer overflow in phar_parse_pharfile - debian/patches/CVE-2016-10159.patch: fix overflows in ext/phar/phar.c. - CVE-2016-10159 * SECURITY UPDATE: off-by-one in phar_parse_pharfile - debian/patches/CVE-2016-10160.patch: handle length in ext/phar/phar.c. - CVE-2016-10160 * SECURITY UPDATE: denial of service via crafted serialized data - debian/patches/CVE-2016-10161.patch: fix out-of-bounds read in ext/standard/var_unserializer.*, added test to ext/standard/tests/serialize/bug73825.phpt. - CVE-2016-10161 * debian/control: Build-Depends on mysql-server-5.5 to work with recent MySQL security updates. Checksums-Sha1: 47e44a9d8b92b4498f3e77af2b02379a6041764c 166114 php5-common_5.3.10-1ubuntu3.26_i386.deb 30ac7ff6b81ef8587ca566a3e7220f4fd44733f2 3111074 libapache2-mod-php5_5.3.10-1ubuntu3.26_i386.deb 97cbd2e984d59fc158c845099bc9f9d20340b550 3110812 libapache2-mod-php5filter_5.3.10-1ubuntu3.26_i386.deb 8434b27debbe1c59237e909d2e8d6f0eb8025791 6185792 php5-cgi_5.3.10-1ubuntu3.26_i386.deb 68aef642f9d0926f93306705ba2a88b736a00989 3088474 php5-cli_5.3.10-1ubuntu3.26_i386.deb b6da1a9bbc857a506fd304539e4da55903eb8117 3137534 php5-fpm_5.3.10-1ubuntu3.26_i386.deb b838770e3045591af46ae1f97357df3501d2356f 422126 php5-dev_5.3.10-1ubuntu3.26_i386.deb c476365b0c6f451412ccb64cb26ba2e2a4a83c8d 13803398 php5-dbg_5.3.10-1ubuntu3.26_i386.deb 1b9b814ae85df10f1601a312892b60272f10c412 28030 php5-curl_5.3.10-1ubuntu3.26_i386.deb 8021eda5e9017a45dd040afbacd8157c21eb9ce3 8606 php5-enchant_5.3.10-1ubuntu3.26_i386.deb 6295bc3bd6abd6ecae53e9c0a6531a5cd86fadd5 37594 php5-gd_5.3.10-1ubuntu3.26_i386.deb 866443617fc86172f43feec9f32e45c62e559daa 15234 php5-gmp_5.3.10-1ubuntu3.26_i386.deb b282b29acc2c101d48fffff13469cc7e9bfa3da7 60106 php5-intl_5.3.10-1ubuntu3.26_i386.deb 8785e16305a79e73dd76877c682b87f7ebf2415c 18470 php5-ldap_5.3.10-1ubuntu3.26_i386.deb 786fc4b149b4ebdc43a4654536e92d980cfd5d00 73450 php5-mysql_5.3.10-1ubuntu3.26_i386.deb 88c4d06e14840ade074934fd9de26ba42554da68 140372 php5-mysqlnd_5.3.10-1ubuntu3.26_i386.deb a2ddc15dd4973028d2e213f307bfd16f30e31d91 34790 php5-odbc_5.3.10-1ubuntu3.26_i386.deb 1b260014c027d0e661edffc765abb21c1abf9d9f 57148 php5-pgsql_5.3.10-1ubuntu3.26_i386.deb 501001f95d701755fc6dc3420c1ae8fca3e0aaba 8082 php5-pspell_5.3.10-1ubuntu3.26_i386.deb 3b6798ecb240607c229ffc5728c83c2ac38c6b21 4296 php5-recode_5.3.10-1ubuntu3.26_i386.deb 90b140da0c825fb3c3f0b86fe1a088255ed4bb56 10478 php5-snmp_5.3.10-1ubuntu3.26_i386.deb e7c8dbecc3670dd49353868c40205bcfa5572615 26482 php5-sqlite_5.3.10-1ubuntu3.26_i386.deb ef4164256446683a09d9a599afa0750e762032c3 25340 php5-sybase_5.3.10-1ubuntu3.26_i386.deb d4fe0eaae9fb33cee0869d494590a7b80115c207 17898 php5-tidy_5.3.10-1ubuntu3.26_i386.deb 232a78c35ab2cac45b75438d670a6390aeb3fc70 35878 php5-xmlrpc_5.3.10-1ubuntu3.26_i386.deb 42dfa6ee5f853cfac7d2d8c2e6130fde60300dd4 13584 php5-xsl_5.3.10-1ubuntu3.26_i386.deb 52a7f134053fc1e3d78972f47366452a5815b3cd 85388 php5-intl-dbgsym_5.3.10-1ubuntu3.26_i386.ddeb 39880a714baf257d9fdd52d1255d9e2cef57e564 815 php5_5.3.10-1ubuntu3.26_i386_translations.tar.gz 672b2be01b5c4e238a716af7dba343ba9eebab0c 1076 php5_5.3.10-1ubuntu3.26_all.deb 3071f658b8640b14512e18dd1f76e29ba7027aff 369362 php-pear_5.3.10-1ubuntu3.26_all.deb Checksums-Sha256: 2ea45e159a7ebff2aff1b055367ba09dfd4397948592a1d5ae64a431f46f699a 166114 php5-common_5.3.10-1ubuntu3.26_i386.deb 4f849f76db96f3a1fb9bf35e4cb41b8eeee4c01aa1351001869d3df5d8b0f964 3111074 libapache2-mod-php5_5.3.10-1ubuntu3.26_i386.deb 94f6719497480012560e5a094826e650ce2a474246f86af92c7a3a8f92dd206d 3110812 libapache2-mod-php5filter_5.3.10-1ubuntu3.26_i386.deb 0d2aecca94af9bb29abe8c1b6d820711dab861cefc7f6a5723a622e1ab3925f5 6185792 php5-cgi_5.3.10-1ubuntu3.26_i386.deb 0ec0fa9ff4f0cf4ac13a7bd07f4c5b46e0ed24732d976780d22d9bc4c7b6aeec 3088474 php5-cli_5.3.10-1ubuntu3.26_i386.deb f5d8882a4450cf7a138ca582d980df50e9c45ed5fda5ab34e6b0c345a144b23a 3137534 php5-fpm_5.3.10-1ubuntu3.26_i386.deb cf8a4a5b12f3d0ae3f2e8ca9566456e586cf9bdd9046face1c6f5e66f563c9a0 422126 php5-dev_5.3.10-1ubuntu3.26_i386.deb 9c079d1e2e9162f64e860e12293a16d253fb7254fd9dfcbbd6d963032562895f 13803398 php5-dbg_5.3.10-1ubuntu3.26_i386.deb 6b0731b50e13c750dcc502af35b4909bc0ed3898033dc5c5c1633c406c5dc832 28030 php5-curl_5.3.10-1ubuntu3.26_i386.deb b579af6396c4e495d8d052fb60f430424273745edd0c2400a19d5d8b90b2c17d 8606 php5-enchant_5.3.10-1ubuntu3.26_i386.deb 1cdc337a9bb8eae2f9984bb67388d548cca9f132e36d8fbb9fd3ed875a5554f8 37594 php5-gd_5.3.10-1ubuntu3.26_i386.deb efa098aa82a9d60efbb51c57d54644d1b1a0dc0493c975f2171454e093b0cc57 15234 php5-gmp_5.3.10-1ubuntu3.26_i386.deb cd647249626ff440c019dbd63c1ad73764167480281e96101c8bee2cdc674ce0 60106 php5-intl_5.3.10-1ubuntu3.26_i386.deb 775bc0fed71e69988c3dbf23815b50f34f1628b9030714924e6e0845a7d85bb2 18470 php5-ldap_5.3.10-1ubuntu3.26_i386.deb 6099e14d075a11f9c8f4743044a950b7021b0e8215caef7f4176c4b1baf6a89b 73450 php5-mysql_5.3.10-1ubuntu3.26_i386.deb dd4b41ed1222a0397bdb1dd018c55b9e033e3cd259c13683d8736d6f7fc45661 140372 php5-mysqlnd_5.3.10-1ubuntu3.26_i386.deb c55fda765027845251b765c19b6213e879fac2745547f9e1ceb75068b1f0936d 34790 php5-odbc_5.3.10-1ubuntu3.26_i386.deb 89b8df6de2b1db57340a7d16d281d13c0ce15849c80e322daba1a20d4df104e7 57148 php5-pgsql_5.3.10-1ubuntu3.26_i386.deb 0fb6246343e69ce847cebe83e4c6a22812926414fe36461fad94d39380f507aa 8082 php5-pspell_5.3.10-1ubuntu3.26_i386.deb dd96653cff2466132262e8f9a67e29a55a20214b86cae72276ddf5ecc67eef8c 4296 php5-recode_5.3.10-1ubuntu3.26_i386.deb 9fd628d13e83b281db64d8525b7831ffbdcf50deb1f3606654d981e2dcc9605e 10478 php5-snmp_5.3.10-1ubuntu3.26_i386.deb 795bdb0c769dca666f087e0082619d11bc3617e8b84ffaf89d62cb8f99ec6637 26482 php5-sqlite_5.3.10-1ubuntu3.26_i386.deb 1ca56a99facc5b545b74be04e1b039b18e03b6bd9a6e93af5558002d94fdd925 25340 php5-sybase_5.3.10-1ubuntu3.26_i386.deb 0baf715ab65de1a1990b402a937f2ee16330e8167516728779d600baac426fec 17898 php5-tidy_5.3.10-1ubuntu3.26_i386.deb 8dd95bb900f7551ab337bb5bd1b4fcb910a17673f89370a93d401cbfd280fb4d 35878 php5-xmlrpc_5.3.10-1ubuntu3.26_i386.deb 503bd970df8dc7449ba540e6656b3c00c9d35326c0643b0cee796d339f9793c0 13584 php5-xsl_5.3.10-1ubuntu3.26_i386.deb 56b45a51ffe932b6ea99f24b81717860b8ba12b3e88ef1b905396b6a9145d1a8 85388 php5-intl-dbgsym_5.3.10-1ubuntu3.26_i386.ddeb 720e9034870b35b1f0b337b3065edf0f45d576ecb39e5dd24ec0654dd7b54a9c 815 php5_5.3.10-1ubuntu3.26_i386_translations.tar.gz 9a372f24c3b57f4d144c80fb7b8a7332bd6adbdeab1051b60e1ea862e70774c3 1076 php5_5.3.10-1ubuntu3.26_all.deb 3d49db1b38f57a2fefe65c49a72dd2812a50d3ea5ee9365d20a9d51b0d4addbd 369362 php-pear_5.3.10-1ubuntu3.26_all.deb Files: 2d3e5d21ce483bf3b9a73539d13531d2 166114 php optional php5-common_5.3.10-1ubuntu3.26_i386.deb 7f91ea5afdd337eeedab8e245a89e3d2 3111074 httpd optional libapache2-mod-php5_5.3.10-1ubuntu3.26_i386.deb e42b24562be4baedd87677a0a3201734 3110812 httpd extra libapache2-mod-php5filter_5.3.10-1ubuntu3.26_i386.deb 27aef89278590bbda666ba74a7c715ac 6185792 php optional php5-cgi_5.3.10-1ubuntu3.26_i386.deb a9c1f907417cf3d8c4eecc5b9230a041 3088474 php optional php5-cli_5.3.10-1ubuntu3.26_i386.deb a9284eca8e720b6c6d34cca391ce172b 3137534 php optional php5-fpm_5.3.10-1ubuntu3.26_i386.deb f678a7725d6110e61e4500054fe647fa 422126 php optional php5-dev_5.3.10-1ubuntu3.26_i386.deb 1f63639e040c8666a69e0e5edc7b497b 13803398 debug extra php5-dbg_5.3.10-1ubuntu3.26_i386.deb 4cbabb6bf4d3ae26ef846d552d2a1185 28030 php optional php5-curl_5.3.10-1ubuntu3.26_i386.deb b8a5ffb6fb7ba1a92477220b5dc43d4b 8606 php optional php5-enchant_5.3.10-1ubuntu3.26_i386.deb a2533e7967e4082a6f58994ffde90a45 37594 php optional php5-gd_5.3.10-1ubuntu3.26_i386.deb b6b1185e7e676a6617e7a16a662e272d 15234 php optional php5-gmp_5.3.10-1ubuntu3.26_i386.deb 9afd79166ee844665be1dc7ec5fc33de 60106 php optional php5-intl_5.3.10-1ubuntu3.26_i386.deb 05933dbaf77efb18da0d8da147adf78b 18470 php optional php5-ldap_5.3.10-1ubuntu3.26_i386.deb 8d033ffeaddf056360e3d65528a65cf0 73450 php optional php5-mysql_5.3.10-1ubuntu3.26_i386.deb 69b72a3610d44966f38187ee06d16a11 140372 php optional php5-mysqlnd_5.3.10-1ubuntu3.26_i386.deb 86ad51563ac39d9919b0788862c3fe24 34790 php optional php5-odbc_5.3.10-1ubuntu3.26_i386.deb d1f2f4fb902f23aacaf5d444963a2a62 57148 php optional php5-pgsql_5.3.10-1ubuntu3.26_i386.deb 55bf2ea2f817a328756d1eb464b49893 8082 php optional php5-pspell_5.3.10-1ubuntu3.26_i386.deb b8570a9d5c16bc56cdb7cd52aaddf5b8 4296 php optional php5-recode_5.3.10-1ubuntu3.26_i386.deb 62b8e7b5c0cfce1fe693f5fcb499d723 10478 php optional php5-snmp_5.3.10-1ubuntu3.26_i386.deb 06fca96f973cda14bfd0d9cfc11fe362 26482 php optional php5-sqlite_5.3.10-1ubuntu3.26_i386.deb d57e58d3ba6fee3f565513a117006d58 25340 php optional php5-sybase_5.3.10-1ubuntu3.26_i386.deb 2288f2a5c2b3e8c1af90f07a05fa5e06 17898 php optional php5-tidy_5.3.10-1ubuntu3.26_i386.deb c1faecc83ac06a1f1e3ac48f75012b60 35878 php optional php5-xmlrpc_5.3.10-1ubuntu3.26_i386.deb 6a7c9c009b9fb56cd1d95d970120f9a1 13584 php optional php5-xsl_5.3.10-1ubuntu3.26_i386.deb beb2b3641abaaf0f5fcab615e19b9a46 85388 php extra php5-intl-dbgsym_5.3.10-1ubuntu3.26_i386.ddeb 2df8ffba2a55ad87b629b416eb549252 815 raw-translations - php5_5.3.10-1ubuntu3.26_i386_translations.tar.gz 8adb3e076f35f3ceddf2540b7dba844c 1076 php optional php5_5.3.10-1ubuntu3.26_all.deb 7ed7933edae0b02bd89c982608b39015 369362 php optional php-pear_5.3.10-1ubuntu3.26_all.deb Original-Maintainer: Debian PHP Maintainers