Format: 1.8 Date: Tue, 26 Apr 2011 08:34:26 -0700 Source: php5 Binary: php5 php5-common libapache2-mod-php5 libapache2-mod-php5filter php5-cgi php5-cli php5-fpm php5-dev php5-dbg php-pear php5-curl php5-enchant php5-gd php5-gmp php5-intl php5-ldap php5-mysql php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl Architecture: amd64 amd64_translations Version: 5.3.5-1ubuntu7.1 Distribution: natty Urgency: low Maintainer: Ubuntu/amd64 Build Daemon Changed-By: Steve Beattie Description: libapache2-mod-php5 - server-side, HTML-embedded scripting language (Apache 2 module) libapache2-mod-php5filter - server-side, HTML-embedded scripting language (apache 2 filter mo php-pear - PEAR - PHP Extension and Application Repository php5 - server-side, HTML-embedded scripting language (metapackage) php5-cgi - server-side, HTML-embedded scripting language (CGI binary) php5-cli - command-line interpreter for the php5 scripting language php5-common - Common files for packages built from the php5 source php5-curl - CURL module for php5 php5-dbg - Debug symbols for PHP5 php5-dev - Files for PHP5 module development php5-enchant - Enchant module for php5 php5-fpm - server-side, HTML-embedded scripting language (FPM-CGI binary) php5-gd - GD module for php5 php5-gmp - GMP module for php5 php5-intl - internationalisation module for php5 php5-ldap - LDAP module for php5 php5-mysql - MySQL module for php5 php5-odbc - ODBC module for php5 php5-pgsql - PostgreSQL module for php5 php5-pspell - pspell module for php5 php5-recode - recode module for php5 php5-snmp - SNMP module for php5 php5-sqlite - SQLite module for php5 php5-sybase - Sybase / MS SQL Server module for php5 php5-tidy - tidy module for php5 php5-xmlrpc - XML-RPC module for php5 php5-xsl - XSL module for php5 Changes: php5 (5.3.5-1ubuntu7.1) natty-security; urgency=low . * SECURITY UPDATE: arbitrary files removal via cronjob - debian/php5-common.php5.cron.d: take greater care when removing session files. - http://git.debian.org/?p=pkg-php%2Fphp.git;a=commitdiff_plain;h=d09fd04ed7bfcf7f008360c6a42025108925df09 - CVE-2011-0441 * SECURITY UPDATE: symlink tmp races in pear install - debian/patches/php5-pear-CVE-2011-1072.patch: improved tempfile handling. - debian/rules: apply patch manually after unpacking PEAR phar archive. - CVE-2011-1072 * SECURITY UPDATE: more symlink races in pear install - debian/patches/php5-pear-CVE-2011-1144.patch: add TOCTOU save file handler. - debian/rules: apply patch manually after unpacking PEAR phar archive. - CVE-2011-1144 * SECURITY UPDATE: denial of service through application crash with invalid images - debian/patches/php5-CVE-2010-4698.patch: verify anti-aliasing steps are either 4 or 16. - CVE-2010-4698 * SECURITY UPDATE: denial of service through application crash - debian/patches/php5-CVE-2011-0420.patch: improve grapheme_extract() argument validation. - CVE-2011-0420 * SECURITY UPDATE: denial of service through application crash - debian/patches/php5-CVE-2011-0421.patch: fail operation gracefully when handling zero sized zipfile with the FL_UNCHANGED argument - CVE-2011-0421 * SECURITY UPDATE: denial of service through application crash when handling images with invalid exif tags - debian/patches/php5-CVE-2011-0708.patch: stricter exif checking - CVE-2011-0708 * SECURITY UPDATE: denial of service and possible data disclosure through integer overflow - debian/patches/php5-CVE-2011-1092.patch: better boundary condition checks in shmop_read() - CVE-2011-1092 * SECURITY UPDATE: use-after-free vulnerability - debian/patches/php5-CVE-2011-1148.patch: improve reference counting - CVE-2011-1148 * SECURITY UPDATE: format string vulnerability - debian/patches/php5-CVE-2011-1153.patch: correctly quote format strings - CVE-2011-1153 * SECURITY UPDATE: denial of service through buffer overflow crash (code execution mitigated by compilation with Fortify Source) - debian/patches/php5-CVE-2011-1464.patch: limit amount of precision to ensure fitting within MAX_BUF_SIZE - CVE-2011-1464 * SECURITY UPDATE: denial of service through application crash - debian/patches/php5-CVE-2011-1467.patch: check for invalid attribute symbols in NumberFormatter::setSymbol() - CVE-2011-1467 * SECURITY UPDATE: denial of service through memory leak - debian/patches/php5-CVE-2011-1468.patch: fix memory leak of openssl contexts - CVE-2011-1468 * SECURITY UPDATE: denial of service through application crash when using HTTP proxy with the FTP wrapper - debian/patches/php5-CVE-2011-1469.patch: improve pointer handling - CVE-2011-1469 * SECURITY UPDATE: denial of service through application crash when handling ziparchive streams - debian/patches/php5-CVE-2011-1470.patch: set necessary elements of the meta data structure - CVE-2011-1470 * SECURITY UPDATE: denial of service through application crash when handling malformed zip files - debian/patches/php5-CVE-2011-1471.patch: correct integer signedness error when handling zip_fread() return value. - CVE-2011-1471 * debian/control: replace build-depends on mysql-server with mysql-server-core-5.1 and mysql-client-5.1 to avoid upstart and mysql-server-5.1 postinst confusion with starting up multiple mysqlds listening on the same port. Checksums-Sha1: ea6a9c18c8638a75c260a26eb35919b77f7bf556 430094 php5-common_5.3.5-1ubuntu7.1_amd64.deb 3116c2961af6867112b1bbd937292404f913d1d7 3139696 libapache2-mod-php5_5.3.5-1ubuntu7.1_amd64.deb 733fc5812a2b343ffb3bc76726e633522098c620 3139080 libapache2-mod-php5filter_5.3.5-1ubuntu7.1_amd64.deb 15b22429a69a308bedb5388245dd144ba04e9b56 6110406 php5-cgi_5.3.5-1ubuntu7.1_amd64.deb 7bd71c445e1daf58bd55b54b98fe47b8c50f0ca4 3053258 php5-cli_5.3.5-1ubuntu7.1_amd64.deb 2f15a76c91a8abe5f4b4db7e456f04166895a9c5 3083526 php5-fpm_5.3.5-1ubuntu7.1_amd64.deb eba999697b272ef717899c64d0206d1e5760bb85 421966 php5-dev_5.3.5-1ubuntu7.1_amd64.deb 0b7fcc918c0253cf861ef16d831486b839e44726 13003712 php5-dbg_5.3.5-1ubuntu7.1_amd64.deb 3bbeb147033b60105d0a927ae99cbc4f15cec471 26940 php5-curl_5.3.5-1ubuntu7.1_amd64.deb 81378584e58c1f9811434ce06e645c14e39c5929 9022 php5-enchant_5.3.5-1ubuntu7.1_amd64.deb 1ad6a595838ae4040feb6058d9bb576ee6f155d5 38830 php5-gd_5.3.5-1ubuntu7.1_amd64.deb cc43044ce78296c4a2890401927f295c06db9752 16366 php5-gmp_5.3.5-1ubuntu7.1_amd64.deb d223620e06b6bbc562f6d48453833b1c843972c2 59896 php5-intl_5.3.5-1ubuntu7.1_amd64.deb 310601fe7a27dc4158dfac14e92ba234006b1c4d 19582 php5-ldap_5.3.5-1ubuntu7.1_amd64.deb aac5301fc82f42b13b7781d420eb424646404df0 76226 php5-mysql_5.3.5-1ubuntu7.1_amd64.deb 77273c0916ec66f45c53ebb77b9cf8097f2b7ad7 35920 php5-odbc_5.3.5-1ubuntu7.1_amd64.deb 01bb3bebb9f3c50b3b4ccbb0c61392273c1094dc 59180 php5-pgsql_5.3.5-1ubuntu7.1_amd64.deb f6167a4971a66b0152afb130621a2a8883f1df16 8290 php5-pspell_5.3.5-1ubuntu7.1_amd64.deb baddad56b590d8a7e6cc9b454eb3169e6a59aca7 4278 php5-recode_5.3.5-1ubuntu7.1_amd64.deb 5c005a9ec8b46f4fe730c00cbe8c4bf5a7be4123 10962 php5-snmp_5.3.5-1ubuntu7.1_amd64.deb f52fbd983028bebb9b2f6c15a57ee9fb4389d08b 55458 php5-sqlite_5.3.5-1ubuntu7.1_amd64.deb ad60fc8106385550c4783a120a7dbc1e8c60df7c 26092 php5-sybase_5.3.5-1ubuntu7.1_amd64.deb 6c3f4324f4bae8628c0c7ef4b17b9f57777e5a59 18038 php5-tidy_5.3.5-1ubuntu7.1_amd64.deb e24d63c7a71b4590ee1313991ab07079812b6dcf 35244 php5-xmlrpc_5.3.5-1ubuntu7.1_amd64.deb 9feb18e498d639b31c168ca3364281a4eb2c179d 13138 php5-xsl_5.3.5-1ubuntu7.1_amd64.deb 22e83a09f02a3074163c08ecc6bb01568615af0a 816 php5_5.3.5-1ubuntu7.1_amd64_translations.tar.gz Checksums-Sha256: cb08f1397615deecb1b08e783123f45d94a381c787bf2f8b993671684bc1fcfd 430094 php5-common_5.3.5-1ubuntu7.1_amd64.deb 1da6545e6b9d72d9099476e61b384fc00e2127d64276f7848fb7892d6eff107a 3139696 libapache2-mod-php5_5.3.5-1ubuntu7.1_amd64.deb 2f0368fd21f0cf6fcf0074dfcbbf92de207da804df397adc4d7c6daf807a3e7a 3139080 libapache2-mod-php5filter_5.3.5-1ubuntu7.1_amd64.deb beb287e3d6f4d4ebff57db27c1f761d2d850ed2576f6533acc8520494cd531ff 6110406 php5-cgi_5.3.5-1ubuntu7.1_amd64.deb cc37fef696825473907cdb7e9a6c441d2d18097d7402e4f9be0ad3ee60f8d620 3053258 php5-cli_5.3.5-1ubuntu7.1_amd64.deb e2fb988d3fe82725af74928179f79ce0a96b3c0b35071145fffac4ac8fb55b8a 3083526 php5-fpm_5.3.5-1ubuntu7.1_amd64.deb 2675370fd43ee9d6d70781d0ebfc5cdaa3a14e2762310326763efb9b0a66272d 421966 php5-dev_5.3.5-1ubuntu7.1_amd64.deb 5bab0b6e6cd8b51fb481b206d0ab09affd847244041121e4ac3010e21631c90e 13003712 php5-dbg_5.3.5-1ubuntu7.1_amd64.deb 3da6910da71d029ca9b94612925686572bb6d4dab63e1fe0f3f3453daf29c6ee 26940 php5-curl_5.3.5-1ubuntu7.1_amd64.deb ea84a012414ab4b62f6960f5026fac9f9ed6e86b8466ce537f3f9aad49ba4f17 9022 php5-enchant_5.3.5-1ubuntu7.1_amd64.deb 4bb0d2a01b2aaeeeef6b8ecfaebfb1ada646efa638b995eb4fd89a776f9d3bba 38830 php5-gd_5.3.5-1ubuntu7.1_amd64.deb 25fd0f4fe8a750b4ea837174d5e1d814c161b6bf9223eb1795cebee61cab2d54 16366 php5-gmp_5.3.5-1ubuntu7.1_amd64.deb b36eeeb264b08e30060bf0ee7b50aa936d446a6f69a898e34788da4906f3077e 59896 php5-intl_5.3.5-1ubuntu7.1_amd64.deb 1b35c992a23b021907855a665678e37a8e04b9c0edbf44821668235d9bd5c9c3 19582 php5-ldap_5.3.5-1ubuntu7.1_amd64.deb 241d6ae2932a4e74d9e247dbd54f940d5506478298a35c7e8f9b63d740110ac4 76226 php5-mysql_5.3.5-1ubuntu7.1_amd64.deb f23250a499d65588927a318f8ffffe32f0449795592b008c41aa185330e53334 35920 php5-odbc_5.3.5-1ubuntu7.1_amd64.deb 4a8aeb77d885b405e0a4b244b2aa08504d991b001663e06340c3f7c7002ab1fb 59180 php5-pgsql_5.3.5-1ubuntu7.1_amd64.deb c70f8ebddbbf850d0451a53f632c16dbf2a8b49328a02dcb39aafac3ae5cb63b 8290 php5-pspell_5.3.5-1ubuntu7.1_amd64.deb f23dde81c082f4a1051e3102b15d31e30e575e09fb2b13e43317a336cd11c605 4278 php5-recode_5.3.5-1ubuntu7.1_amd64.deb d45458311f9a60734aa53d317910cc3554ad7067647661ccced6f26c28fd021d 10962 php5-snmp_5.3.5-1ubuntu7.1_amd64.deb 096df442df211b02b888dadb98c8c7e4cda00826891b3ed34ff024607dbc7c9f 55458 php5-sqlite_5.3.5-1ubuntu7.1_amd64.deb 96286ef03bd5e8ff403300454243561bfdf5dbb58406b76e68e48750ed06c26c 26092 php5-sybase_5.3.5-1ubuntu7.1_amd64.deb 2b7fc4c9e1b6a14a5ce7a086cfd24de2647a7ef09d6d7144e03660809df61a51 18038 php5-tidy_5.3.5-1ubuntu7.1_amd64.deb 28242bdd64e175cf981b658efabd83daec3f821130e208ec66ad6585bbdf3cf1 35244 php5-xmlrpc_5.3.5-1ubuntu7.1_amd64.deb 87646bfba279b151c4fd91ac6c2457db9503ec5916cfa88720f4d57516d5b9e0 13138 php5-xsl_5.3.5-1ubuntu7.1_amd64.deb 6bfb55f1ba37ca3181b5df918c0e7f20880bce6d283f981e899feb75d3b78191 816 php5_5.3.5-1ubuntu7.1_amd64_translations.tar.gz Files: 89008d8bb1837fc8d8bc5344cdc475ba 430094 php optional php5-common_5.3.5-1ubuntu7.1_amd64.deb edcdb5e011bd35fb708584c94395ae49 3139696 httpd optional libapache2-mod-php5_5.3.5-1ubuntu7.1_amd64.deb 8e435debc2334ff48a11132ff758808c 3139080 httpd optional libapache2-mod-php5filter_5.3.5-1ubuntu7.1_amd64.deb ea6e9bd9c1b36544877278e93e153408 6110406 php optional php5-cgi_5.3.5-1ubuntu7.1_amd64.deb f6cc512342e828a678e3198c9c85f209 3053258 php optional php5-cli_5.3.5-1ubuntu7.1_amd64.deb 78660d6c2bb80e32deffdc85fa6d2929 3083526 php optional php5-fpm_5.3.5-1ubuntu7.1_amd64.deb 42ce1ca68d6a54d74a263fe91bc9c1ed 421966 php optional php5-dev_5.3.5-1ubuntu7.1_amd64.deb 70a7e28f175c4238463ea25c0cb69f64 13003712 debug extra php5-dbg_5.3.5-1ubuntu7.1_amd64.deb 26f4ee8b41a81110cac9d460391e4c59 26940 php optional php5-curl_5.3.5-1ubuntu7.1_amd64.deb 41788690c8a00671d8aab37b9511d517 9022 php optional php5-enchant_5.3.5-1ubuntu7.1_amd64.deb e63b7f840cc259b18339c12d08518a78 38830 php optional php5-gd_5.3.5-1ubuntu7.1_amd64.deb d2234b2d9b985d8794b0d81437256eca 16366 php optional php5-gmp_5.3.5-1ubuntu7.1_amd64.deb a507532b870011abfe9ffa7e6b42d0db 59896 php optional php5-intl_5.3.5-1ubuntu7.1_amd64.deb 7828e5f7f756ee0dc44f1d3dcef0a33c 19582 php optional php5-ldap_5.3.5-1ubuntu7.1_amd64.deb 2667f5d2035e7102ad1be3375d242a5d 76226 php optional php5-mysql_5.3.5-1ubuntu7.1_amd64.deb da007fc4020c9292fa6da0c0b18e4253 35920 php optional php5-odbc_5.3.5-1ubuntu7.1_amd64.deb 121ca9a68ddc8e2a3b271b53c70528b7 59180 php optional php5-pgsql_5.3.5-1ubuntu7.1_amd64.deb 3693fd1d88566eca7d0a5c0fc1685289 8290 php optional php5-pspell_5.3.5-1ubuntu7.1_amd64.deb 164535a88b6b392795abb1e9feb38733 4278 php optional php5-recode_5.3.5-1ubuntu7.1_amd64.deb c8fe299c36f8024873c3da42dcc3b30e 10962 php optional php5-snmp_5.3.5-1ubuntu7.1_amd64.deb 524faabec5392212b5eba59cefc96a92 55458 php optional php5-sqlite_5.3.5-1ubuntu7.1_amd64.deb a40c2f7abc37c621e2cc31ff0bbe84f3 26092 php optional php5-sybase_5.3.5-1ubuntu7.1_amd64.deb a43744fb6c1af8cbcf09b2381c369daa 18038 php optional php5-tidy_5.3.5-1ubuntu7.1_amd64.deb 3bc7c8563b58dd1b43e490c42a4470ae 35244 php optional php5-xmlrpc_5.3.5-1ubuntu7.1_amd64.deb 96185f9fae70ebc651a8b6f5c7700bf4 13138 php optional php5-xsl_5.3.5-1ubuntu7.1_amd64.deb 7a54640a1832e426af17dea4648ae97b 816 raw-translations - php5_5.3.5-1ubuntu7.1_amd64_translations.tar.gz Original-Maintainer: Debian PHP Maintainers