Format: 1.7 Date: Mon, 10 Jan 2011 04:34:48 -0800 Source: php5 Binary: php5-mysqli php5-gd php5-ldap php5 php5-xmlrpc libapache2-mod-php5 php5-xsl php5-cgi php-pear php5-pgsql php5-cli php5-recode php5-mhash php5-sybase php5-curl php5-odbc php5-mysql php5-common php5-dev php5-snmp php5-sqlite Architecture: ia64 Version: 5.1.2-1ubuntu3.20 Distribution: dapper Urgency: low Maintainer: Ubuntu/ia64 Build Daemon Changed-By: Steve Beattie Description: libapache2-mod-php5 - server-side, HTML-embedded scripting language (apache 2.0 module) php5-cgi - server-side, HTML-embedded scripting language (CGI binary) php5-cli - command-line interpreter for the php5 scripting language php5-common - Common files for packages built from the php5 source php5-curl - CURL module for php5 php5-dev - Files for PHP5 module development php5-gd - GD module for php5 php5-ldap - LDAP module for php5 php5-mhash - MHASH module for php5 php5-mysql - MySQL module for php5 php5-mysqli - MySQL Improved module for php5 php5-odbc - ODBC module for php5 php5-pgsql - PostgreSQL module for php5 php5-recode - recode module for php5 php5-snmp - SNMP module for php5 php5-sqlite - SQLite module for php5 php5-sybase - Sybase / MS SQL Server module for php5 php5-xmlrpc - XML-RPC module for php5 php5-xsl - XSL module for php5 Changes: php5 (5.1.2-1ubuntu3.20) dapper-security; urgency=low . * SECURITY UPDATE: overflow leading to xml decode bypass - ext/xml/xml.c: convert short to int to prevent overflow in bit operations - http://svn.php.net/viewvc/?view=revision&revision=287790 - CVE-2009-5016 * SECURITY UPDATE: xml decode bypass - ext/xml/xml.c: improve utf8 decoding - ext/xml/tests/bug49687.phpt: add testcase - http://svn.php.net/viewvc/?view=revision&revision=304959 - CVE-2010-3780 * SECURITY UPDATE: open_basedir bypass - main/fopen_wrappers.c: more strict checking in php_check_specific_open_basedir() - http://svn.php.net/viewvc?view=revision&revision=303824 - CVE-2010-3436 * SECURITY UPDATE: infinite loop/denial of service when dealing with certain textual forms of MAX_FLOAT (LP: #697181) - Zend/zend_strtod.c: treat local doubles as volatile to avoid x87 registers in zend_strtod() - http://svn.php.net/viewvc?view=revision&revision=263637 - http://svn.php.net/viewvc?view=revision&revision=307095 - CVE-2010-4645 Files: 9a9a5f33b4d2501c7bbf7b127c9d9da4 137966 web optional php5-common_5.1.2-1ubuntu3.20_ia64.deb b0c09709e6c9348dd30a5197d93983c9 3164142 web optional libapache2-mod-php5_5.1.2-1ubuntu3.20_ia64.deb 21e75b5e4ee77828ed95348d408fad3b 6229194 web optional php5-cgi_5.1.2-1ubuntu3.20_ia64.deb 0a1650cc6f4f00bda658de4a5c65cac9 3125168 web optional php5-cli_5.1.2-1ubuntu3.20_ia64.deb bc41c44e3d898603756bc771494a965c 312642 devel optional php5-dev_5.1.2-1ubuntu3.20_ia64.deb 1689a49b00c0b70f7ec81e29e031e68c 32546 web optional php5-curl_5.1.2-1ubuntu3.20_ia64.deb 68f6236b3dd42148074c2d4422d6f801 50644 web optional php5-gd_5.1.2-1ubuntu3.20_ia64.deb 51287f6500eb7d4639787a45cf65a1b5 28718 web optional php5-ldap_5.1.2-1ubuntu3.20_ia64.deb 8c8cb0a3f206c77287f96b86287efec9 9968 web optional php5-mhash_5.1.2-1ubuntu3.20_ia64.deb b4289c48da64d96bf00d2e03c9c4c290 32256 web optional php5-mysql_5.1.2-1ubuntu3.20_ia64.deb 172abcc829736abfa34b91361bb116d0 56898 web optional php5-mysqli_5.1.2-1ubuntu3.20_ia64.deb 71930f03a08706fbc6150e9fcd07ab28 40054 web optional php5-odbc_5.1.2-1ubuntu3.20_ia64.deb 72848104c28778564b17b16ffddb982d 61228 web optional php5-pgsql_5.1.2-1ubuntu3.20_ia64.deb 7e092f71a2291bd7a12bd7c3404109d1 9578 web optional php5-recode_5.1.2-1ubuntu3.20_ia64.deb 67ecc3fff795ac671003ce40e0bba6cf 18766 web optional php5-snmp_5.1.2-1ubuntu3.20_ia64.deb 6a6969107b5000f019abef121baa63f8 39686 web optional php5-sqlite_5.1.2-1ubuntu3.20_ia64.deb 455199c69b9c37476f1a0f8e2f087b05 30828 web optional php5-sybase_5.1.2-1ubuntu3.20_ia64.deb 0265a1abac205fff9761510f5406fee4 58016 web optional php5-xmlrpc_5.1.2-1ubuntu3.20_ia64.deb fcca0703abe3e3ea626ca3c8bed8cce1 21294 web optional php5-xsl_5.1.2-1ubuntu3.20_ia64.deb