Format: 1.8 Date: Thu, 28 Apr 2011 05:37:29 -0700 Source: php5 Binary: php5 php5-common libapache2-mod-php5 libapache2-mod-php5filter php5-cgi php5-cli php5-dev php5-dbg php-pear php5-curl php5-gd php5-gmp php5-ldap php5-mhash php5-mysql php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl Architecture: sparc sparc_translations Version: 5.2.10.dfsg.1-2ubuntu6.9 Distribution: karmic Urgency: low Maintainer: Ubuntu/sparc Build Daemon Changed-By: Steve Beattie Description: libapache2-mod-php5 - server-side, HTML-embedded scripting language (Apache 2 module) libapache2-mod-php5filter - server-side, HTML-embedded scripting language (apache 2 filter mo php-pear - PEAR - PHP Extension and Application Repository php5 - server-side, HTML-embedded scripting language (metapackage) php5-cgi - server-side, HTML-embedded scripting language (CGI binary) php5-cli - command-line interpreter for the php5 scripting language php5-common - Common files for packages built from the php5 source php5-curl - CURL module for php5 php5-dbg - Debug symbols for PHP5 php5-dev - Files for PHP5 module development php5-gd - GD module for php5 php5-gmp - GMP module for php5 php5-ldap - LDAP module for php5 php5-mhash - MHASH module for php5 php5-mysql - MySQL module for php5 php5-odbc - ODBC module for php5 php5-pgsql - PostgreSQL module for php5 php5-pspell - pspell module for php5 php5-recode - recode module for php5 php5-snmp - SNMP module for php5 php5-sqlite - SQLite module for php5 php5-sybase - Sybase / MS SQL Server module for php5 php5-tidy - tidy module for php5 php5-xmlrpc - XML-RPC module for php5 php5-xsl - XSL module for php5 Changes: php5 (5.2.10.dfsg.1-2ubuntu6.9) karmic-security; urgency=low . * SECURITY UPDATE: arbitrary files removal via cronjob - debian/php5-common.php5.cron.d: take greater care when removing session files. - http://git.debian.org/?p=pkg-php%2Fphp.git;a=commitdiff_plain;h=d09fd04ed7bfcf7f008360c6a42025108925df09 - CVE-2011-0441 * SECURITY UPDATE: symlink tmp races in pear install - debian/patches/php5-pear-CVE-2011-1072.patch: improved tempfile handling. - debian/rules: apply patch manually after unpacking PEAR phar archive. - CVE-2011-1072 * SECURITY UPDATE: more symlink races in pear install - debian/patches/php5-pear-CVE-2011-1144.patch: add TOCTOU save file handler. - debian/rules: apply patch manually after unpacking PEAR phar archive. - CVE-2011-1144 * SECURITY UPDATE: use-after-free vulnerability - debian/patches/php5-CVE-2010-4697.patch: retain reference to object until getter/setter are done. - CVE-2010-4697 * SECURITY UPDATE: denial of service through application crash with invalid images - debian/patches/php5-CVE-2010-4698.patch: verify anti-aliasing steps are either 4 or 16. - CVE-2010-4698 * SECURITY UPDATE: denial of service through application crash - debian/patches/php5-CVE-2011-0421.patch: fail operation gracefully when handling zero sized zipfile with the FL_UNCHANGED argument - CVE-2011-0421 * SECURITY UPDATE: denial of service through application crash when handling images with invalid exif tags - debian/patches/php5-CVE-2011-0708.patch: stricter exif checking - CVE-2011-0708 * SECURITY UPDATE: denial of service and possible data disclosure through integer overflow - debian/patches/php5-CVE-2011-1092.patch: better boundary condition checks in shmop_read() - CVE-2011-1092 * SECURITY UPDATE: use-after-free vulnerability - debian/patches/php5-CVE-2011-1148.patch: improve reference counting - CVE-2011-1148 * SECURITY UPDATE: denial of service through buffer overflow crash (code execution mitigated by compilation with Fortify Source) - debian/patches/php5-CVE-2011-1464.patch: limit amount of precision to ensure fitting within MAX_BUF_SIZE - CVE-2011-1464 * SECURITY UPDATE: denial of service through application crash via integer overflow. - debian/patches/php5-CVE-2011-1466.patch: improve boundary condition checking in SdnToJulian() - CVE-2011-1466 * SECURITY UPDATE: denial of service through application crash when using HTTP proxy with the FTP wrapper - debian/patches/php5-CVE-2011-1469.patch: improve pointer handling - CVE-2011-1469 * SECURITY UPDATE: denial of service through application crash when handling ziparchive streams - debian/patches/php5-CVE-2011-1470.patch: set necessary elements of the meta data structure - CVE-2011-1470 * SECURITY UPDATE: denial of service through application crash when handling malformed zip files - debian/patches/php5-CVE-2011-1471.patch: correct integer signedness error when handling zip_fread() return value. - CVE-2011-1471 Checksums-Sha1: 057181f5fadcb4a545c0fe16fdd22b97caa7383e 428112 php5-common_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 2d431660853d326e65fb4b485f946f1274b39955 2494532 libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb fff44cc9cb39a8d6a7779d93633c3abeaa194395 2493288 libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 55f5824b1b54bccfc43a0021e0d579ffdac91c1d 4886370 php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 8bf1a029810e829d81c0240beab674c202a3428f 2461912 php5-cli_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 1e17714c2f9b8c46d8dd62d447b8ca303763c0c6 367276 php5-dev_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb fe2e28d7bda17d659bb9bc93c24156a8d0a514b8 8369462 php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb de8a819f36a7aa356248c24596d3a7ecabd30c29 24560 php5-curl_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 564cf52fd25096a6b361874977d055ebe1c39cba 33206 php5-gd_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 6b717334679f31e140415d3c5a7dffefbd9d4be5 13322 php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 628c5fc16b30fcc33dc2bd6f9922b3354402dadb 17916 php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 2a4e0fcf76bfab6b804a75e595c672dce04a7b1f 5174 php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 43b56873ac7d9a44a1f6f03655a7a8b447c87a5e 62926 php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 6a8c28cab49a955b05bc5e29317bed40ef234f66 33386 php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 45ae7c9e2f55404c64f67bdddfd9e65e14066cf1 50236 php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 6206ec4d73de226807d9f1050873d1cbf55592f5 8616 php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 3d77affd7b01675b49c327622e57901fc28ef35f 4834 php5-recode_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 2e953ecbeffe7a6861a38a7f918c9a1c0771f647 11966 php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 93b2d32b1f034adc68a21a9dacf3f306f689bb61 32610 php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb cda83e41a07675c0eaef617a97d1f9052e7d0d38 24974 php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb b85e333ee00d0817817166c10b99c4c3668aff39 16578 php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb d9989ade977d22ffd1dc931e412f9c28eb1efdfa 34984 php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 0879b2cd2dec5cb7bcbab8cd37139332cfc80fda 12376 php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 42cd117e144ac21443f860ff304ea898682b7861 542 php5_5.2.10.dfsg.1-2ubuntu6.9_sparc_translations.tar.gz Checksums-Sha256: 02484cd3da6417f4a09793c9af6a24dcc31e78321c102dad25306c605b2cdabe 428112 php5-common_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 812f8932a4a61adf4289c236b721819b5b8de2d57a4daad8c75112c80ce99f14 2494532 libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb b258e9d4c3ff2e0c1c635dfc25fc0b6dd5b8e6e45b81950c92074072d5670222 2493288 libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb a3016bdb18041fe2751bc2d5102ce3bf0e096d02072369a14bf31c7cefd60a5c 4886370 php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 94181f929557c00c8048f3d02858988d9bcc1b5c500364e26b3c9695303b022a 2461912 php5-cli_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 3ab57d5646f631867fb0445316aea90f4268c2825b611d6d41f1586ca60d9244 367276 php5-dev_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 955e7dfae71eb9eca5cf1cd1d6144297904fdb48b7333f8059e9651c0c518768 8369462 php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb d54d41eafc564ba4e8d9c954219e07755654f15b010168be79cc7a02261e62b0 24560 php5-curl_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb c95006746fefe67f22b1b0949ff6e3563b033de5432217f325db99128d2b70e1 33206 php5-gd_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb bfce098f066765d4a18be091836fdaa46dbc10f3f3fff1c576830a7e185f29a0 13322 php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb ef05eb6e8ec770a6dda1a2ba49b1a2a99bfcd725f02a373cf6918875e299b802 17916 php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb dd524ba56579f142df6b16ce4087c61476fa3fd364dd06a3ded1c00b8aa6d223 5174 php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 4e7732f342922e4498ff306a7e98d1dc51fa526e6c051a97fc9508a4092de788 62926 php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb a6790802c1f268cb798806603ebb736a2a91b16e4097484292e3cc4e3f1e07d2 33386 php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 8de30a1954feecdb6770858b7294c68cec43073354d5af2c29801e59bb0b8237 50236 php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 85f4488c10ebd78fe81452296aba8539c56e65d65b45d4e15dda948d4b30e5fd 8616 php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 0617802e028dd3eef63c862d2775fa315b549515726e544676afe0dc5780a654 4834 php5-recode_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 5a0020c503cd3a49e8125a7d78f1d8f733885844be58264b6c62ad3cb80a29bd 11966 php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 9fca6a64deac81ba6d20851d1361a547bfc58653bc97201503d4fa9a2d8de9fb 32610 php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb a61b7935759ed4f60d0fa257b034e1f25738661b5198d496609f24db1f8d865d 24974 php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb a16e97a8de74f1be6fabbd46813648e00ee95e5882a7c3240c9de7bab47a4d25 16578 php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 7c30e47e5ef26e7cce0c4b3e91dee11c7fbe6ee76c3665be6a6b2f9ed8ece7d4 34984 php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb f9091151cf708518ee43c357f8c5bf30c4bfd3572512f2794dd8205ff6f8f728 12376 php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb de1998038a80ad2eaa33ae2ae47fe7d1a1381260f292e1e302b836b3d08e9f5d 542 php5_5.2.10.dfsg.1-2ubuntu6.9_sparc_translations.tar.gz Files: 16d16e745f835ccc4a928b5f6fe8ad81 428112 php optional php5-common_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 3a57988b516b6244453cbd68fa19cf81 2494532 httpd optional libapache2-mod-php5_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 1c011b180a217d6f167cacff771d2888 2493288 httpd optional libapache2-mod-php5filter_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 9c200d880921a703455b32d820bec61e 4886370 php optional php5-cgi_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb d23edf3ac101eaddadbd1b55c8a2959d 2461912 php optional php5-cli_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb ffcae68ecd5dc9670fbc95fe9494f579 367276 php optional php5-dev_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 19fd6888501113a4d824745aaac29881 8369462 debug extra php5-dbg_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb f33c197d6116444535e574d6da5e07aa 24560 php optional php5-curl_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb d2be4e4400d5de1816db2ee5665c2c62 33206 php optional php5-gd_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb d0446a97a21af92c77a229c80a025417 13322 php optional php5-gmp_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 12f5ed78d4039497f8beadb9ecdf5591 17916 php optional php5-ldap_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 7f939e9f437ff99a9643732f0165a313 5174 php optional php5-mhash_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 11d254cba3211ed8e9b3230504124a51 62926 php optional php5-mysql_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 5d28018b3a02d6e3fffb6728b20e9770 33386 php optional php5-odbc_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 963d16ba9c0afcb52c56d6e8ca0ee930 50236 php optional php5-pgsql_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb f23237f55363f12948ead63981089421 8616 php optional php5-pspell_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 83d9a72d036900543a14b98f1298bcee 4834 php optional php5-recode_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 41a0d3491628a0d9371b60fe0a7d0e42 11966 php optional php5-snmp_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 6b4520f5ba256b9747f863f47a813fef 32610 php optional php5-sqlite_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 1e658c626b602130bf3b6645a21cee57 24974 php optional php5-sybase_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb e633df98948b9e6af3fc34bc20f9f398 16578 php optional php5-tidy_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 228d4446f619ff44e6f3aeb19ebd1382 34984 php optional php5-xmlrpc_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb 48620f3741f4c6a96bb3decfdd8e5237 12376 php optional php5-xsl_5.2.10.dfsg.1-2ubuntu6.9_sparc.deb ff92da4b1b22f0c98fe59cc96dbb9085 542 raw-translations - php5_5.2.10.dfsg.1-2ubuntu6.9_sparc_translations.tar.gz Original-Maintainer: Debian PHP Maintainers