Format: 1.7
Date: Wed, 08 Feb 2012 17:31:25 -0800
Source: php5
Binary: php5 php5-common libapache2-mod-php5 php5-cgi php5-cli php5-dev php-pear php5-curl php5-gd php5-gmp php5-ldap php5-mhash php5-mysql php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl
Architecture: lpia_translations lpia
Version: 5.2.4-2ubuntu5.22
Distribution: hardy
Urgency: low
Maintainer: Ubuntu/i386 Build Daemon <buildd@molybdenum.buildd>
Changed-By: Steve Beattie <sbeattie@ubuntu.com>
Description: 
 libapache2-mod-php5 - server-side, HTML-embedded scripting language (apache 2 module)
 php-pear   - PEAR - PHP Extension and Application Repository
 php5       - server-side, HTML-embedded scripting language (meta-package)
 php5-cgi   - server-side, HTML-embedded scripting language (CGI binary)
 php5-cli   - command-line interpreter for the php5 scripting language
 php5-common - Common files for packages built from the php5 source
 php5-curl  - CURL module for php5
 php5-dev   - Files for PHP5 module development
 php5-gd    - GD module for php5
 php5-gmp   - GMP module for php5
 php5-ldap  - LDAP module for php5
 php5-mhash - MHASH module for php5
 php5-mysql - MySQL module for php5
 php5-odbc  - ODBC module for php5
 php5-pgsql - PostgreSQL module for php5
 php5-pspell - pspell module for php5
 php5-recode - recode module for php5
 php5-snmp  - SNMP module for php5
 php5-sqlite - SQLite module for php5
 php5-sybase - Sybase / MS SQL Server module for php5
 php5-tidy  - tidy module for php5
 php5-xmlrpc - XML-RPC module for php5
 php5-xsl   - XSL module for php5
Changes: 
 php5 (5.2.4-2ubuntu5.22) hardy-security; urgency=low
 .
   * SECURITY UPDATE: memory allocation failure denial of service
     - debian/patches/php5-CVE-2011-4153.patch: check result of
       zend_strdup() and calloc() for failed allocations
     - CVE-2011-4153
   * SECURITY UPDATE: predictable hash collision denial of service
     - debian/patches/php5-CVE-2011-4885.patch: add max_input_vars
       directive with default limit of 1000
     - ATTENTION: this update changes previous php5 behavior by
       limiting the number of external input variables to 1000.
       This may be increased by adding a "max_input_vars"
       directive to the php.ini configuration file. See
       http://www.php.net/manual/en/info.configuration.php#ini.max-input-vars
       for more information.
     - CVE-2011-4885
   * SECURITY UPDATE: remote code execution vulnerability introduced by
     the fix for CVE-2011-4885
     - debian/patches/php5-CVE-2012-0830.patch: return rather than
       continuing if max_input_vars limit is reached
     - CVE-2012-0830
   * SECURITY UPDATE: XSLT arbitrary file overwrite attack
     - debian/patches/php5-CVE-2012-0057.patch: add xsl.security_prefs
       ini option to define forbidden operations within XSLT stylesheets
     - CVE-2012-0057
   * SECURITY UPDATE: PDORow session denial of service
     - debian/patches/php5-CVE-2012-0788.patch: fail gracefully when
       attempting to serialize PDORow instances
     - CVE-2012-0788
   * SECURITY UPDATE: magic_quotes_gpc remote disable vulnerability
     - debian/patches/php5-CVE-2012-0831.patch: always restore
       magic_quote_gpc on request shutdown
     - CVE-2012-0831
Files: 
 4714da5c7c32f54bc29412e2d8d64362 541 raw-translations - php5_5.2.4-2ubuntu5.22_lpia_translations.tar.gz
 a7472c0c222c9a3cd6e5c114468bd91d 319980 web optional php5-common_5.2.4-2ubuntu5.22_lpia.deb
 868e3a2704af5c2cf8bdb73e960fa433 2454952 web optional libapache2-mod-php5_5.2.4-2ubuntu5.22_lpia.deb
 186c88af0d288f6b738c0643e93f19e7 4881522 web optional php5-cgi_5.2.4-2ubuntu5.22_lpia.deb
 52ded71156f20d38602a8e48fffd39b1 2463178 web optional php5-cli_5.2.4-2ubuntu5.22_lpia.deb
 4616a92abe07f7e789f0f20b535c8711 364824 devel optional php5-dev_5.2.4-2ubuntu5.22_lpia.deb
 4ff5d9aee309a8d751489b77a90e4297 23282 web optional php5-curl_5.2.4-2ubuntu5.22_lpia.deb
 bbe04c0fdef9b8b3b6fa484b4452bcd3 33140 web optional php5-gd_5.2.4-2ubuntu5.22_lpia.deb
 cd10eb657f2b90473573921d5dec0e54 15024 web optional php5-gmp_5.2.4-2ubuntu5.22_lpia.deb
 69a460378972303f2cfa33b5137233d3 18098 web optional php5-ldap_5.2.4-2ubuntu5.22_lpia.deb
 6eb253096d797ab3f44989091d7a2af6 5098 web optional php5-mhash_5.2.4-2ubuntu5.22_lpia.deb
 84f644bb2d6672dbff3021755a960d85 64308 web optional php5-mysql_5.2.4-2ubuntu5.22_lpia.deb
 1943b0e65cf1090d7aa9458ecc374333 33944 web optional php5-odbc_5.2.4-2ubuntu5.22_lpia.deb
 13912b8f1d4f7d06a5f8c323dfd3251e 50858 web optional php5-pgsql_5.2.4-2ubuntu5.22_lpia.deb
 475fa1111afd11fb4c3770ff07241c4b 8636 web optional php5-pspell_5.2.4-2ubuntu5.22_lpia.deb
 b665b4582a835212d4d30a2b38d851be 4718 web optional php5-recode_5.2.4-2ubuntu5.22_lpia.deb
 a6490584eeb381c5fee2b7e2e5a50a38 11572 web optional php5-snmp_5.2.4-2ubuntu5.22_lpia.deb
 ae9b01f815bebf725bc5a56a29ecad9b 33744 web optional php5-sqlite_5.2.4-2ubuntu5.22_lpia.deb
 be67db387c151d8a1129eea97d8c67e5 26166 web optional php5-sybase_5.2.4-2ubuntu5.22_lpia.deb
 2f9727a2b2cf58776b14ff7fb4541243 16054 web optional php5-tidy_5.2.4-2ubuntu5.22_lpia.deb
 67ee5ea46c938cf08520c69f6353cbb8 35464 web optional php5-xmlrpc_5.2.4-2ubuntu5.22_lpia.deb
 dc214a01554d60a35f8652480a908420 13090 web optional php5-xsl_5.2.4-2ubuntu5.22_lpia.deb
Original-Maintainer: Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>