Format: 1.8 Date: Thu, 28 Apr 2011 05:37:29 -0700 Source: php5 Binary: php5 php5-common libapache2-mod-php5 libapache2-mod-php5filter php5-cgi php5-cli php5-dev php5-dbg php-pear php5-curl php5-gd php5-gmp php5-ldap php5-mhash php5-mysql php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl Architecture: powerpc powerpc_translations Version: 5.2.10.dfsg.1-2ubuntu6.9 Distribution: karmic Urgency: low Maintainer: Ubuntu/powerpc Build Daemon Changed-By: Steve Beattie Description: libapache2-mod-php5 - server-side, HTML-embedded scripting language (Apache 2 module) libapache2-mod-php5filter - server-side, HTML-embedded scripting language (apache 2 filter mo php-pear - PEAR - PHP Extension and Application Repository php5 - server-side, HTML-embedded scripting language (metapackage) php5-cgi - server-side, HTML-embedded scripting language (CGI binary) php5-cli - command-line interpreter for the php5 scripting language php5-common - Common files for packages built from the php5 source php5-curl - CURL module for php5 php5-dbg - Debug symbols for PHP5 php5-dev - Files for PHP5 module development php5-gd - GD module for php5 php5-gmp - GMP module for php5 php5-ldap - LDAP module for php5 php5-mhash - MHASH module for php5 php5-mysql - MySQL module for php5 php5-odbc - ODBC module for php5 php5-pgsql - PostgreSQL module for php5 php5-pspell - pspell module for php5 php5-recode - recode module for php5 php5-snmp - SNMP module for php5 php5-sqlite - SQLite module for php5 php5-sybase - Sybase / MS SQL Server module for php5 php5-tidy - tidy module for php5 php5-xmlrpc - XML-RPC module for php5 php5-xsl - XSL module for php5 Changes: php5 (5.2.10.dfsg.1-2ubuntu6.9) karmic-security; urgency=low . * SECURITY UPDATE: arbitrary files removal via cronjob - debian/php5-common.php5.cron.d: take greater care when removing session files. - http://git.debian.org/?p=pkg-php%2Fphp.git;a=commitdiff_plain;h=d09fd04ed7bfcf7f008360c6a42025108925df09 - CVE-2011-0441 * SECURITY UPDATE: symlink tmp races in pear install - debian/patches/php5-pear-CVE-2011-1072.patch: improved tempfile handling. - debian/rules: apply patch manually after unpacking PEAR phar archive. - CVE-2011-1072 * SECURITY UPDATE: more symlink races in pear install - debian/patches/php5-pear-CVE-2011-1144.patch: add TOCTOU save file handler. - debian/rules: apply patch manually after unpacking PEAR phar archive. - CVE-2011-1144 * SECURITY UPDATE: use-after-free vulnerability - debian/patches/php5-CVE-2010-4697.patch: retain reference to object until getter/setter are done. - CVE-2010-4697 * SECURITY UPDATE: denial of service through application crash with invalid images - debian/patches/php5-CVE-2010-4698.patch: verify anti-aliasing steps are either 4 or 16. - CVE-2010-4698 * SECURITY UPDATE: denial of service through application crash - debian/patches/php5-CVE-2011-0421.patch: fail operation gracefully when handling zero sized zipfile with the FL_UNCHANGED argument - CVE-2011-0421 * SECURITY UPDATE: denial of service through application crash when handling images with invalid exif tags - debian/patches/php5-CVE-2011-0708.patch: stricter exif checking - CVE-2011-0708 * SECURITY UPDATE: denial of service and possible data disclosure through integer overflow - debian/patches/php5-CVE-2011-1092.patch: better boundary condition checks in shmop_read() - CVE-2011-1092 * SECURITY UPDATE: use-after-free vulnerability - debian/patches/php5-CVE-2011-1148.patch: improve reference counting - CVE-2011-1148 * SECURITY UPDATE: denial of service through buffer overflow crash (code execution mitigated by compilation with Fortify Source) - debian/patches/php5-CVE-2011-1464.patch: limit amount of precision to ensure fitting within MAX_BUF_SIZE - CVE-2011-1464 * SECURITY UPDATE: denial of service through application crash via integer overflow. - debian/patches/php5-CVE-2011-1466.patch: improve boundary condition checking in SdnToJulian() - CVE-2011-1466 * SECURITY UPDATE: denial of service through application crash when using HTTP proxy with the FTP wrapper - debian/patches/php5-CVE-2011-1469.patch: improve pointer handling - CVE-2011-1469 * SECURITY UPDATE: denial of service through application crash when handling ziparchive streams - debian/patches/php5-CVE-2011-1470.patch: set necessary elements of the meta data structure - CVE-2011-1470 * SECURITY UPDATE: denial of service through application crash when handling malformed zip files - debian/patches/php5-CVE-2011-1471.patch: correct integer signedness error when handling zip_fread() return value. - CVE-2011-1471 Checksums-Sha1: dbb2abd219047ddb3cbfd1a2c6c2588bb66cd08e 431624 php5-common_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 022211c7c6397730fdb3e78e42d5d3ad63cafcb8 2636436 libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 595d929c92a7ca564761fd0372e641fec1d56280 2635706 libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 728e6f4602226ac87ed0c8f39e179e5b8165c51d 5121030 php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 6580c44e81ac371d4d355e4a17402ba5790ce208 2586178 php5-cli_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 865383f793f1ac97b4e2367cae4a1264597847fa 367304 php5-dev_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb f1eefcd43cb5cd3239317fcda7ec0273f5da61be 8981618 php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb d0626197351950226580758b82acbd11478b1bfd 26346 php5-curl_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 514deebac34fc8a535bd5f064c7ced94d2ceddcd 36728 php5-gd_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 8e66fe7e5bde17fa0c8395201db8b4bb86723312 14718 php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 2eff14f3ffd04d843beab24ba21a42fe4d2d159d 20006 php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb c58493b7714ba42ff9c8bd8023dd3f1fa91d6092 5630 php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb c6fbfa4f51f8ef69abe5b3392a0ac0987d463eac 70036 php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 13808b5e7a34dc7a9d6ab5837d38b5f56981c49d 36874 php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb d8e798e054641d19dec5dbe9a540755cb8d6a748 56880 php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 7e80c00d2a59d11426673c55ef2685053ebe1d7d 9338 php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 6b364b0f6161aaf1e49521103b6071b8c3ffeacd 5208 php5-recode_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb ede0e4d084651435443811a3de552567dc18fc20 12388 php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb f8c3ac7b4ab7a8669a63a07fa0d330cf58cfc1fc 37658 php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb fb04a2155c915256d3e78041c715f235ea8ae76b 27486 php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 2ccb07ea6750ee2d111c214cda979e3f13263dc8 17964 php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 0e11ded5378f729e31d72c80b436fb9a6ff65efb 38490 php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 96c525e1cb7804252b2ee37360cf5c08375fdfe6 13858 php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb ab0fd99680d35e09f95a6e68865fe6008272c722 540 php5_5.2.10.dfsg.1-2ubuntu6.9_powerpc_translations.tar.gz Checksums-Sha256: b14843cad1c63c9135c155f8543019b9f9a57f10f5e63a6a217bbe8442a7c2aa 431624 php5-common_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 0874b244c7c3744821a5f0ff6ff765d8a90cb6f6238f89364d9d8e7608e03811 2636436 libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb c653fcb978a1e9a2b8700c84ac08ed284f18a4b01a0988530bdbca78cfb43373 2635706 libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb fe2dad546ce706fe6a7ca5f7f1d810fa3b3cc100b5ccd11b711c7a15e0066d29 5121030 php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 30720b2f253b613d018823845d3cf7fff1085398b7aa7589311449358a2ff09b 2586178 php5-cli_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 9122296ca7417d2d1afe8dcb99623d5d6240875d162c431d1b8bae9855456199 367304 php5-dev_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 7c25a0817f62e0d8c5293f41165235c454a5d6352cf82b86c4da7ecaf91eab54 8981618 php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb c5eb23ecfb8e5a8c87c6d68f1416e81ec455e66d51dafb8c6d0a3f308d1f085b 26346 php5-curl_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb f4cf53f5fa85a3b2c541e47346c5fbdbed9f50758e94abd1ce0548fe42cd6568 36728 php5-gd_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 10ba0f0b29965741b2a1c2c79bbed3deb2fcf2c33d33276028ba7ea0ea0557da 14718 php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb c945dfcfd22f382ba46d0f6281842b6ad139219f3dfc903419ff09732d3afddc 20006 php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 456e87cc3f244b88411dce5e75bca81bb52adb843cbc8ee8f3cf5350f96a7bd0 5630 php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 491046bc2a478edd9e7379c94db6d99ebbb758fb27387238409cdf937bacd6b6 70036 php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 33323c8b6c9c7528c6ca9b62cdd93188aadd8ba162b77950e4e0ac77f1935d03 36874 php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 31f0d4c2245bad874017e66855eb3e51ada44b6765800d9ec9cabc263b7bddf5 56880 php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb d6bddc4d8532b84326d8eb002f9cb43c162e17be53776a542ecab2d403db7510 9338 php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb ac362fa0c04ed4452e785a133f1d55494ee404badd208b59a3f6e6ac42877528 5208 php5-recode_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 0c605ab120df30374c9beec6f8ea187912b66c57edcd7fb9e9b2619fc2f11c57 12388 php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb a67f5819fc4fa49ed34b1c5bc2f9d855b3d066e71d4e8a820fa46f963383c220 37658 php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 35681983c788a877f69e36dc508ecbf448f23cdeec61134bad72fffbf3ea4066 27486 php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb a1d3838cf25f232a4ae68b020180a11e9fcd1ded627ed0242f02f6d14c7b7316 17964 php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb fedac9244c22b4cea1e3ca05c9a0b800751b7a949dd7c66780598d91a25d1197 38490 php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb f240ef9d08c8e2a15b68d0f4307ed0335dfce9396184e7f501fe653e614605b3 13858 php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb d6fcc5ff9832d9679a149954bccb02f5be324c0327d3dbc64e0b827d740fd89e 540 php5_5.2.10.dfsg.1-2ubuntu6.9_powerpc_translations.tar.gz Files: fe8d0d35157764b6cbb27f83fd3e68c7 431624 php optional php5-common_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb bf8ab4adb5e7ac1aa968cd309ce86722 2636436 httpd optional libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb c89f191c673be460bfc84620d30cf3f9 2635706 httpd optional libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb cb7a251f1062c636b5c2c3e4bf736279 5121030 php optional php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 5a6e3306cfaafcbc8f87c20b1b7588e8 2586178 php optional php5-cli_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb a3942614db718bbd1d45f625f7948225 367304 php optional php5-dev_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb e87e66e246211aeced90e50147e0b3d5 8981618 debug extra php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 468cc69aaaa19111e73ab3b80dc38d92 26346 php optional php5-curl_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb f60b69986bc652cb43f54cfe00789172 36728 php optional php5-gd_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 0347523ee570687ef298c16c14fe7e72 14718 php optional php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb d15a04b8e43eb1d179d0ddf45d1c8fb7 20006 php optional php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb f2c13a1f6a43fd62754d09635a2e8a9c 5630 php optional php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 48f57b229ac578b2c9339dfb8d9a836d 70036 php optional php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 5bfb522af9c394603096613ef423cabb 36874 php optional php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb a9946d8d181032e9301bd6c8841eff40 56880 php optional php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb a72676f78c66adeabcb7b517a5a4098b 9338 php optional php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb e57e2a7095fd84c3949f42432542ff95 5208 php optional php5-recode_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 34592fc426bffe31ca71ab79d7ba5e80 12388 php optional php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb b8289b4fdf943641a7406624ebabfdda 37658 php optional php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb badd51b373bf41469c7cbea6ceb94a4f 27486 php optional php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 100e2655542361d1c579c8f9a9126092 17964 php optional php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 4be0ecda831d851c3f6d67f565088391 38490 php optional php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb bc33fb4e8c6faa25b621c1df4e8704af 13858 php optional php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_powerpc.deb 84c263dd513eb590dae30e3dade1864f 540 raw-translations - php5_5.2.10.dfsg.1-2ubuntu6.9_powerpc_translations.tar.gz Original-Maintainer: Debian PHP Maintainers