Format: 1.8 Date: Thu, 28 Apr 2011 05:37:29 -0700 Source: php5 Binary: php5 php5-common libapache2-mod-php5 libapache2-mod-php5filter php5-cgi php5-cli php5-dev php5-dbg php-pear php5-curl php5-gd php5-gmp php5-ldap php5-mhash php5-mysql php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl Architecture: ia64 ia64_translations Version: 5.2.10.dfsg.1-2ubuntu6.9 Distribution: karmic Urgency: low Maintainer: Ubuntu/ia64 Build Daemon Changed-By: Steve Beattie Description: libapache2-mod-php5 - server-side, HTML-embedded scripting language (Apache 2 module) libapache2-mod-php5filter - server-side, HTML-embedded scripting language (apache 2 filter mo php-pear - PEAR - PHP Extension and Application Repository php5 - server-side, HTML-embedded scripting language (metapackage) php5-cgi - server-side, HTML-embedded scripting language (CGI binary) php5-cli - command-line interpreter for the php5 scripting language php5-common - Common files for packages built from the php5 source php5-curl - CURL module for php5 php5-dbg - Debug symbols for PHP5 php5-dev - Files for PHP5 module development php5-gd - GD module for php5 php5-gmp - GMP module for php5 php5-ldap - LDAP module for php5 php5-mhash - MHASH module for php5 php5-mysql - MySQL module for php5 php5-odbc - ODBC module for php5 php5-pgsql - PostgreSQL module for php5 php5-pspell - pspell module for php5 php5-recode - recode module for php5 php5-snmp - SNMP module for php5 php5-sqlite - SQLite module for php5 php5-sybase - Sybase / MS SQL Server module for php5 php5-tidy - tidy module for php5 php5-xmlrpc - XML-RPC module for php5 php5-xsl - XSL module for php5 Changes: php5 (5.2.10.dfsg.1-2ubuntu6.9) karmic-security; urgency=low . * SECURITY UPDATE: arbitrary files removal via cronjob - debian/php5-common.php5.cron.d: take greater care when removing session files. - http://git.debian.org/?p=pkg-php%2Fphp.git;a=commitdiff_plain;h=d09fd04ed7bfcf7f008360c6a42025108925df09 - CVE-2011-0441 * SECURITY UPDATE: symlink tmp races in pear install - debian/patches/php5-pear-CVE-2011-1072.patch: improved tempfile handling. - debian/rules: apply patch manually after unpacking PEAR phar archive. - CVE-2011-1072 * SECURITY UPDATE: more symlink races in pear install - debian/patches/php5-pear-CVE-2011-1144.patch: add TOCTOU save file handler. - debian/rules: apply patch manually after unpacking PEAR phar archive. - CVE-2011-1144 * SECURITY UPDATE: use-after-free vulnerability - debian/patches/php5-CVE-2010-4697.patch: retain reference to object until getter/setter are done. - CVE-2010-4697 * SECURITY UPDATE: denial of service through application crash with invalid images - debian/patches/php5-CVE-2010-4698.patch: verify anti-aliasing steps are either 4 or 16. - CVE-2010-4698 * SECURITY UPDATE: denial of service through application crash - debian/patches/php5-CVE-2011-0421.patch: fail operation gracefully when handling zero sized zipfile with the FL_UNCHANGED argument - CVE-2011-0421 * SECURITY UPDATE: denial of service through application crash when handling images with invalid exif tags - debian/patches/php5-CVE-2011-0708.patch: stricter exif checking - CVE-2011-0708 * SECURITY UPDATE: denial of service and possible data disclosure through integer overflow - debian/patches/php5-CVE-2011-1092.patch: better boundary condition checks in shmop_read() - CVE-2011-1092 * SECURITY UPDATE: use-after-free vulnerability - debian/patches/php5-CVE-2011-1148.patch: improve reference counting - CVE-2011-1148 * SECURITY UPDATE: denial of service through buffer overflow crash (code execution mitigated by compilation with Fortify Source) - debian/patches/php5-CVE-2011-1464.patch: limit amount of precision to ensure fitting within MAX_BUF_SIZE - CVE-2011-1464 * SECURITY UPDATE: denial of service through application crash via integer overflow. - debian/patches/php5-CVE-2011-1466.patch: improve boundary condition checking in SdnToJulian() - CVE-2011-1466 * SECURITY UPDATE: denial of service through application crash when using HTTP proxy with the FTP wrapper - debian/patches/php5-CVE-2011-1469.patch: improve pointer handling - CVE-2011-1469 * SECURITY UPDATE: denial of service through application crash when handling ziparchive streams - debian/patches/php5-CVE-2011-1470.patch: set necessary elements of the meta data structure - CVE-2011-1470 * SECURITY UPDATE: denial of service through application crash when handling malformed zip files - debian/patches/php5-CVE-2011-1471.patch: correct integer signedness error when handling zip_fread() return value. - CVE-2011-1471 Checksums-Sha1: aefc38e1e1d031cb22a60e7a33d6c0892302d6ad 445180 php5-common_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 1141e8dcbfa0ca955d8ad2c93bf3860058b26617 3439444 libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 2461ffdc3723b218f0ca9f7943c7d900f0d9e5f3 3437890 libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb a281dfffe5f71e458f78e4b2ae8143316eb269ec 6758616 php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 69f38e29ea8809f7bf4641c9bb6754d67353566c 3404134 php5-cli_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb e82456dffe2ccfb9d63553ce25724f0bac33366e 367276 php5-dev_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 2f26d34d56a68cc742b896ba8ad754245ca699e6 18290958 php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 189d6475572be15e1512bb0da0c8c462786f5d66 34220 php5-curl_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb cb6301904ca1c686423f9c03d85a0b5d7cae7e94 51482 php5-gd_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 106c8a257f54eb5616017dbe112041febe44bb3f 20358 php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 7e7a4326fe2f68e55706c318ecebdf95ca3f8bb1 27308 php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 904f64e8cd8babed10f18e6f52188cbd81e35ebc 6620 php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 47ff16eb9b9b45c8833b7066d134c65efafd6ffd 97236 php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb fb9ede844c1533022349ec5bb60a974e4d618fe2 53716 php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 8758f97c1b03034d0a5703f650f6b3f3ca83fa58 81744 php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 09b112e58b1a9742c424722c0119e61cbb198f8c 12492 php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb b0e60fb95e9f2bf498e051a820a13bda1de77d40 6336 php5-recode_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 3bd2424dac96a5db0d469a0021b65532aa0ab15c 16312 php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 0b59c9da06a1bdfb442a79a6213e8315ebeefb11 55560 php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb c2a4dde36bea24b27b74d9aad5ffcd9205373a8e 39596 php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 38a60ab90325b46678122595611b99c73ec555ac 24644 php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 72382570dabe477fe2a3f68249379f76e5349b43 53748 php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 07a1ba9901eb85076683110650d13aee00a8f85a 18680 php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 84cf9016b1b8464f33bd9a6e24d423cdc1b72818 541 php5_5.2.10.dfsg.1-2ubuntu6.9_ia64_translations.tar.gz Checksums-Sha256: 6f7de457117b313deb98fdcfc54c3e2f5c9d7792b8784659a7fe9551c69d8b9f 445180 php5-common_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 5845279d45f28b2deb2f5b56800cd8679152e0a8da234a03df49bd944b1bdd34 3439444 libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 2c779798db2fdbfc9a741e098564c5278b5e2437401c6e9de2feef1064aabafe 3437890 libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb c3db8b1418f86bd4dc42457f0f0d7a8e98c218a9ac7862db8991502eb3b9f74d 6758616 php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 59c3d7c692db7045eae50441ebdaff556a462c1392831de1406de153a0b7d62d 3404134 php5-cli_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 34f8fd90b1972843bcef8345359c243e44cea6ff0c5336f7998c82cad9f20beb 367276 php5-dev_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 698e8bf558b7b758b0d6058d669b65d4d6722007dcab20d5d047e97070dde3ba 18290958 php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb bb95b10b077cfe1b86e1f2fabf9ec943a5dd74ac2ea7c57ff9f6681e3a2447b7 34220 php5-curl_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 2196fd7d708d8c4f7006c1755a9736dced6fc06a795811f14ec4cc79433ec28d 51482 php5-gd_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb a9e802592c839abb01e342c73782ad9c35ebc3d65e12b1e39e8bcd60dae96948 20358 php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb a531467e9cf623eacf1a95086d741cb8f71573f8734af0de8f402bb01a33eebb 27308 php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 6b80926ffc0a0182b258ff970a756b2e9d9c2ec8de92236fd05f2046152d5455 6620 php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 362856f134a3bc9dfc97c432c88725471f18e4f687716291eaff28e2378f80ef 97236 php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 6e6c5a3c33a62b49bd597088aca0ee726dfc270982069e6d6cfb0b6fa1b21c44 53716 php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb de09194dbde8a1bdcd4d0f5bcb6a4b54b0075fa903cf35d6c212738f4e327035 81744 php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 41a31be751317b5688d92a76b47fd58097845ef201fa340c40940b7cc9b1f8e7 12492 php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb fde47cf953a9f8e9b3487ed698020d49fac6e8e60f12a80e7ab3196a8603bc19 6336 php5-recode_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 06c6648e94e93960798100b082aa2c2bbc046cd104f3d04cf42abd8f9fb51084 16312 php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb cd2effd19f8b4dd0339ddc9ad0d65ca25e27cfefe51fb8ce6c97eb4508c752a5 55560 php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 370de21a4773a918f14f6296dd95747d24fb4d52dab0376c55bd405abb7c9399 39596 php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb d7abc1ec8cdab3cc66d69606ca8a6167bf0c479881bbb7004701229d03ac8d30 24644 php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb a8bf4a34bbe698b6fe67ff3b66c0934d1a34d552c4ddc6772b27d8d24a1fa152 53748 php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 7c1a9335a9b0bedeefbd5530171e7482e4f74fc3a4dbd5a735c4b947ba20c3ad 18680 php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 370d87b56d312d2955fe1c821f6c2a6f1a33b5293869c12a3fb7117aea532dd6 541 php5_5.2.10.dfsg.1-2ubuntu6.9_ia64_translations.tar.gz Files: 497d3a4ad373c415de60c45d50d8a004 445180 php optional php5-common_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 7694e1766e940667436332868c87963d 3439444 httpd optional libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 91e42bd8a6fa117fd093f8473b8fb197 3437890 httpd optional libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 2c9a7e65c669bc953067d9669b4efc21 6758616 php optional php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 31881ad3fb663b3198d6d25946d43277 3404134 php optional php5-cli_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 68b7fea073f2d2b526df9deb72980b26 367276 php optional php5-dev_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb efc4284b14b734cffd427414ffa0c613 18290958 debug extra php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb f8b12d23031aa70632eb70ea5128a74c 34220 php optional php5-curl_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 9cdbb4010b20ffa72b228c92e1781a88 51482 php optional php5-gd_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 879815d01f851bdf0f26336791be34ff 20358 php optional php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 826557dad8741d247dbe4b5d30eccb48 27308 php optional php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb a1494df48c0aff4204bbaaecb1756ea6 6620 php optional php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 5c08839a6525a6a45025b5d081155623 97236 php optional php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb ae48e296fe0f3210e7b66012e936b8f0 53716 php optional php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb d99083bcce974b9d6c1baf59d400b2ab 81744 php optional php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 19a149f291b6700e6b689eb17410e4d8 12492 php optional php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb ecf65e45b9fcbbdda6adc6d92a4b51bb 6336 php optional php5-recode_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 822f6da0e99a2d5d708a21ac6ad8ec3c 16312 php optional php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb eb19eb8c62d820ad1ce1a02a9d088052 55560 php optional php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 824fa66a17c478157c2d4e6353a2b448 39596 php optional php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 5802ee069d2edde17b38513ded8eecb7 24644 php optional php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb 25419242b5325193a9d1b3308dce39a5 53748 php optional php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb a8a6cd55572453fb9f23f7b406e03717 18680 php optional php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_ia64.deb c314396591d7bfb68caad5fdebe3ff87 541 raw-translations - php5_5.2.10.dfsg.1-2ubuntu6.9_ia64_translations.tar.gz Original-Maintainer: Debian PHP Maintainers