Format: 1.8 Date: Thu, 28 Apr 2011 05:37:29 -0700 Source: php5 Binary: php5 php5-common libapache2-mod-php5 libapache2-mod-php5filter php5-cgi php5-cli php5-dev php5-dbg php-pear php5-curl php5-gd php5-gmp php5-ldap php5-mhash php5-mysql php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl Architecture: armel armel_translations Version: 5.2.10.dfsg.1-2ubuntu6.9 Distribution: karmic Urgency: low Maintainer: Ubuntu/armel Build Daemon Changed-By: Steve Beattie Description: libapache2-mod-php5 - server-side, HTML-embedded scripting language (Apache 2 module) libapache2-mod-php5filter - server-side, HTML-embedded scripting language (apache 2 filter mo php-pear - PEAR - PHP Extension and Application Repository php5 - server-side, HTML-embedded scripting language (metapackage) php5-cgi - server-side, HTML-embedded scripting language (CGI binary) php5-cli - command-line interpreter for the php5 scripting language php5-common - Common files for packages built from the php5 source php5-curl - CURL module for php5 php5-dbg - Debug symbols for PHP5 php5-dev - Files for PHP5 module development php5-gd - GD module for php5 php5-gmp - GMP module for php5 php5-ldap - LDAP module for php5 php5-mhash - MHASH module for php5 php5-mysql - MySQL module for php5 php5-odbc - ODBC module for php5 php5-pgsql - PostgreSQL module for php5 php5-pspell - pspell module for php5 php5-recode - recode module for php5 php5-snmp - SNMP module for php5 php5-sqlite - SQLite module for php5 php5-sybase - Sybase / MS SQL Server module for php5 php5-tidy - tidy module for php5 php5-xmlrpc - XML-RPC module for php5 php5-xsl - XSL module for php5 Changes: php5 (5.2.10.dfsg.1-2ubuntu6.9) karmic-security; urgency=low . * SECURITY UPDATE: arbitrary files removal via cronjob - debian/php5-common.php5.cron.d: take greater care when removing session files. - http://git.debian.org/?p=pkg-php%2Fphp.git;a=commitdiff_plain;h=d09fd04ed7bfcf7f008360c6a42025108925df09 - CVE-2011-0441 * SECURITY UPDATE: symlink tmp races in pear install - debian/patches/php5-pear-CVE-2011-1072.patch: improved tempfile handling. - debian/rules: apply patch manually after unpacking PEAR phar archive. - CVE-2011-1072 * SECURITY UPDATE: more symlink races in pear install - debian/patches/php5-pear-CVE-2011-1144.patch: add TOCTOU save file handler. - debian/rules: apply patch manually after unpacking PEAR phar archive. - CVE-2011-1144 * SECURITY UPDATE: use-after-free vulnerability - debian/patches/php5-CVE-2010-4697.patch: retain reference to object until getter/setter are done. - CVE-2010-4697 * SECURITY UPDATE: denial of service through application crash with invalid images - debian/patches/php5-CVE-2010-4698.patch: verify anti-aliasing steps are either 4 or 16. - CVE-2010-4698 * SECURITY UPDATE: denial of service through application crash - debian/patches/php5-CVE-2011-0421.patch: fail operation gracefully when handling zero sized zipfile with the FL_UNCHANGED argument - CVE-2011-0421 * SECURITY UPDATE: denial of service through application crash when handling images with invalid exif tags - debian/patches/php5-CVE-2011-0708.patch: stricter exif checking - CVE-2011-0708 * SECURITY UPDATE: denial of service and possible data disclosure through integer overflow - debian/patches/php5-CVE-2011-1092.patch: better boundary condition checks in shmop_read() - CVE-2011-1092 * SECURITY UPDATE: use-after-free vulnerability - debian/patches/php5-CVE-2011-1148.patch: improve reference counting - CVE-2011-1148 * SECURITY UPDATE: denial of service through buffer overflow crash (code execution mitigated by compilation with Fortify Source) - debian/patches/php5-CVE-2011-1464.patch: limit amount of precision to ensure fitting within MAX_BUF_SIZE - CVE-2011-1464 * SECURITY UPDATE: denial of service through application crash via integer overflow. - debian/patches/php5-CVE-2011-1466.patch: improve boundary condition checking in SdnToJulian() - CVE-2011-1466 * SECURITY UPDATE: denial of service through application crash when using HTTP proxy with the FTP wrapper - debian/patches/php5-CVE-2011-1469.patch: improve pointer handling - CVE-2011-1469 * SECURITY UPDATE: denial of service through application crash when handling ziparchive streams - debian/patches/php5-CVE-2011-1470.patch: set necessary elements of the meta data structure - CVE-2011-1470 * SECURITY UPDATE: denial of service through application crash when handling malformed zip files - debian/patches/php5-CVE-2011-1471.patch: correct integer signedness error when handling zip_fread() return value. - CVE-2011-1471 Checksums-Sha1: b5534a8c65310dbb2892d241b4315f40475acf11 427744 php5-common_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 7a98ce9e9ce641e215c5bc9c60b9106d4a8f8bc8 2459210 libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_armel.deb f336370a28c6c9be6b8046635c9cffbcc5401caa 2457558 libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_armel.deb ddd079c1e22a881e746a18998122f638ac7a9499 4876154 php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 38bce3132eb17b1bf3ecc9df94d26244d68a51ad 2455394 php5-cli_5.2.10.dfsg.1-2ubuntu6.9_armel.deb dfb35aa3ae92aec09c26daff4bdac97527ae4b30 370530 php5-dev_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 4e2fb918b132865862550a43c67e0377a3d6e371 8950450 php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 981ec3b924ac8edf03b6f339cddde58459ef9aac 23988 php5-curl_5.2.10.dfsg.1-2ubuntu6.9_armel.deb d5e4283016744c690ea24be4620dbd2b9e9cabad 32562 php5-gd_5.2.10.dfsg.1-2ubuntu6.9_armel.deb ce5c51cb5f6b5bc1e57bc408c1b2495ed0a4bb7d 13592 php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 5b0b9ae7799bd7cc40cdeab8899b50d5217ae559 18398 php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_armel.deb a5b164d6adc1677d65116eecfc3ee0345a130c12 5130 php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 6de903545a88b39f691a72b70d21ac9ae8ac45a4 63046 php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 5eb3a18189d5d6e63323ae9659bd66a33d06c14d 35240 php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 8ddb6faaad449bdd6beae1e99787a1ca41f27334 51438 php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 467e16606e8f3bc16a8a57272e003c058cb909d6 8722 php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 1bcd156a6687793fdf80067a66c74ffa51a39c65 4784 php5-recode_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 49400ba3812d57c80142747c73d15c47fe1d7bc9 11868 php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_armel.deb d5415136e28d06ed5588d2675d499ff117c5639c 33958 php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 29c4527b244ec64362b06bc72ff782345b6c9e64 25776 php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 15b5385849ccda24e3eae1f97a32d8e122fef4a4 16168 php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_armel.deb deaece102cea57ee9084f71d14c90d1e9c6a2898 33730 php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_armel.deb f783405c113362a080524f6842e20d050175ee1d 12478 php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 0a3fcc61e2ac722d2d895651128509d29d64d821 540 php5_5.2.10.dfsg.1-2ubuntu6.9_armel_translations.tar.gz Checksums-Sha256: 8128c892e55fe3507aab7320c77fd82d6f086795de80bdb8ad6e1470cf85cc84 427744 php5-common_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 71507b4805d2e2068567b3316a2886d212d2a5d5b2a61c716c0f559f2ae29c60 2459210 libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_armel.deb d14dd00ca8511287b345b9c906533cc26762951da092746021692444bd27337a 2457558 libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 881ac16d297489251594768c625ff4e5a1c75d876f9c4e51a52f6ed4b5edb719 4876154 php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 383dce161d8f2c81ab7cc6fba6584292b3030ee8446a75cf8bc0e39280e8bbd6 2455394 php5-cli_5.2.10.dfsg.1-2ubuntu6.9_armel.deb b8085959d62a899da7649c56acbb159cfb1d133c5919859e260edf441feb24b0 370530 php5-dev_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 73527ff1ff2bbbed0409925fb27a76065b59e66adf4394a8879c739e96847f41 8950450 php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_armel.deb f0c1a7f338f90fe0bc869b74135859a873746e4a6a554d2392febd83bd079a51 23988 php5-curl_5.2.10.dfsg.1-2ubuntu6.9_armel.deb f90e8642efeeab6db8aa4ca95f8c19409fdfb75ad254190447996a987c1dc87e 32562 php5-gd_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 4aadb49fbb08c2ce0fa82230a9a69057401c14671650e7e4442031cc8db3bfc4 13592 php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_armel.deb e4918b970b360147b6a31dbab775745fe16730e72d91e8e285da0a73ba79d51b 18398 php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_armel.deb d15c086558be36e4e58f69db76f5e2117900d64a451b9b04ab9106906280d2de 5130 php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 2ac362a510c54527bc25ba0bf5affaa51237c6c37dd9c981110f695397cbc6a3 63046 php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 2c410d08fd0daa9112b7313a68f6d2ce37fd1354c48c0fe9aa7f63b927280abb 35240 php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 4ab1f2d8276a23bd6885f55f097906e9b2407fb9730b8f9db25ace1f85bc829a 51438 php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_armel.deb fd21f08dd2f8dcea9f4190442731de644ec10042b1dfe7f3d37829f1395ac72b 8722 php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_armel.deb d9fb6eefcda56625e9f3bf784df081335b99868e039805b51f341793652de448 4784 php5-recode_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 18f3b7122860de3d56450e4f86e6dd1a5f66c66d71ca41268e0112e76e785465 11868 php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 5b61eed316159ec06f3a68ef71a3bc4e83342f203c150b70037d03368b8b38cc 33958 php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 2ec16ca8d194f29dd2579ea88bedc2d707f81c10e0031e31784731b4d27dd1e0 25776 php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_armel.deb bc81d61dde21dbccf359a39a68bc623175103ff3243c0d874f632030893c1969 16168 php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 4e28b32ea04f8dfa704b4006507eb776a27c5541a0c7e416537c695c03d53eb5 33730 php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 19ff2f107edfad991a578db8035ebf4abc8f48f170115ec58109f2555c768aa8 12478 php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 0d9129a2668650add1a8986a2ae5f8e8a1da3f2b796db5eaffd08af0e1426b08 540 php5_5.2.10.dfsg.1-2ubuntu6.9_armel_translations.tar.gz Files: 9fd701f7228203bd8b1b860a248e2af4 427744 php optional php5-common_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 52f2e375b6ac437b702ed34eb438d5d7 2459210 httpd optional libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 0b1abdd53cf59af3adde1d1d93d0bb7e 2457558 httpd optional libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_armel.deb ef421e59b89ed55c75164a262e598634 4876154 php optional php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 190a1d7784552e936c4ef8f6f46033e2 2455394 php optional php5-cli_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 0e6bca2012e82666606ec622fc12abf4 370530 php optional php5-dev_5.2.10.dfsg.1-2ubuntu6.9_armel.deb e65f98d4c3ea74005d4406e667f5872a 8950450 debug extra php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_armel.deb ab8608d3a2dd05dfef91d12f472151d3 23988 php optional php5-curl_5.2.10.dfsg.1-2ubuntu6.9_armel.deb a0e49cbeada78aa9287da488e15bdef5 32562 php optional php5-gd_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 585532ba2773feccfb6d34bc23adf804 13592 php optional php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_armel.deb d0fad67f635f68d5bb50899e744d070d 18398 php optional php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 7914a10b9675e9d9f0f5c032e8d4303b 5130 php optional php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_armel.deb c3488428840c8f8784bdd93de62452c7 63046 php optional php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 267be176b37c9b707b4bd09765eea17d 35240 php optional php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_armel.deb b538a86bd303e75d66acca7f51a3e9b5 51438 php optional php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_armel.deb f775fbc263f8d6c86245a28d7d2a0217 8722 php optional php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_armel.deb d43398eaf690341e6714d7416284b1ce 4784 php optional php5-recode_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 39f8e2a929a754ea6d2080819e91b963 11868 php optional php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 1de15617ae6b320c0d015a6ca9ad603a 33958 php optional php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 7fc60e3a57c8b742b0a8f4bc3873d24c 25776 php optional php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_armel.deb f229aea35cca37c2162695da81b4fbb4 16168 php optional php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_armel.deb d7f16b1c298f919b76ffa0c78143e099 33730 php optional php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_armel.deb b84f6bc562c817d4530876d8aad6970a 12478 php optional php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_armel.deb 5b43d6ec948ef621e4704a5a3a0b3525 540 raw-translations - php5_5.2.10.dfsg.1-2ubuntu6.9_armel_translations.tar.gz Original-Maintainer: Debian PHP Maintainers