Format: 1.7
Date: Thu, 29 Jan 2009 08:27:41 -0500
Source: php5
Binary: php5-gd php5-ldap php5 php5-xmlrpc php5-pspell libapache2-mod-php5 php5-xsl php5-cgi php-pear php5-tidy php5-pgsql php5-cli php5-recode php5-mhash php5-sybase php5-curl php5-odbc php5-mysql php5-common php5-dev php5-snmp php5-sqlite
Architecture: sparc_translations sparc
Version: 5.2.3-1ubuntu6.5
Distribution: gutsy
Urgency: low
Maintainer: Ubuntu/sparc Build Daemon <buildd@artigas.buildd>
Changed-By: Marc Deslauriers <marc.deslauriers@ubuntu.com>
Description: 
 libapache2-mod-php5 - server-side, HTML-embedded scripting language (apache 2 module)
 php5-cgi   - server-side, HTML-embedded scripting language (CGI binary)
 php5-cli   - command-line interpreter for the php5 scripting language
 php5-common - Common files for packages built from the php5 source
 php5-curl  - CURL module for php5
 php5-dev   - Files for PHP5 module development
 php5-gd    - GD module for php5
 php5-ldap  - LDAP module for php5
 php5-mhash - MHASH module for php5
 php5-mysql - MySQL module for php5
 php5-odbc  - ODBC module for php5
 php5-pgsql - PostgreSQL module for php5
 php5-pspell - pspell module for php5
 php5-recode - recode module for php5
 php5-snmp  - SNMP module for php5
 php5-sqlite - SQLite module for php5
 php5-sybase - Sybase / MS SQL Server module for php5
 php5-tidy  - tidy module for php5
 php5-xmlrpc - XML-RPC module for php5
 php5-xsl   - XSL module for php5
Launchpad-Bugs-Fixed: 228095 286851 286851 286851 317672
Changes: 
 php5 (5.2.3-1ubuntu6.5) gutsy-security; urgency=low
 .
   * SECURITY UPDATE: denial of service and possible code execution from
     integer overflow in libgd. Although the system libgd was fixed in USN-557-1,
     php5 would not gracefully handle the error return code, resulting in a
     denial of service.
     - debian/patches/119_SECURITY_CVE-2007-3996.patch: check return codes when
       calling libgd in ext/gd/gd.c.
     - CVE-2007-3996
   * SECURITY UPDATE: php_admin_value and php_admin_flag restrictions bypass via
     ini_set. (LP: #228095)
     - debian/patches/120_SECURITY_CVE-2007-5900.patch: add new
       zend_alter_ini_entry_ex() function that extends zend_alter_ini_entry() by
       making sure the entry can be modified in Zend/zend_ini.{c,h},
       Zend/zend_vm_def.h, and Zend/zend_vm_execute.h.
     - CVE-2007-5900
   * SECURITY UPDATE: denial of service and possible arbitrary code execution
     via crafted font file. (LP: #286851)
     - debian/patches/121_SECURITY_CVE-2008-3658.patch: make sure font->nchars,
       font->h, and font->w don't cause overflows in ext/gd/gd.c. Also, add
       test script ext/gd/tests/imageloadfont_invalid.phpt.
     - CVE-2008-3658
   * SECURITY UPDATE: denial of service and possible arbitrary code execution
     via the delimiter argument to the explode function. (LP: #286851)
     - debian/patches/122_SECURITY_CVE-2008-3659.patch: make sure needle_length
       is sane in ext/standard/tests/strings/explode_bug.phpt. Also, add test
       script ext/standard/tests/strings/explode_bug.phpt.
     - CVE-2008-3659
   * SECURITY UPDATE: denial of service via a request with multiple dots
     preceding the extension. (ex: foo..php) (LP: #286851)
     - debian/patches/123_SECURITY_CVE-2008-3660.patch: improve .. cleaning with
       a new is_valid_path() function in sapi/cgi/cgi_main.c.
     - CVE-2008-3660
   * SECURITY UPDATE: mbstring extension arbitrary code execution via crafted
     string containing HTML entity. (LP: #317672)
     - debian/patches/124_SECURITY_CVE-2008-5557.patch: improve
       mbfl_filt_conv_html_dec_flush() error handling in
       ext/mbstring/libmbfl/filters/mbfilter_htmlent.c.
     - CVE-2008-5557
   * SECURITY UPDATE: safe_mode restriction bypass via unrestricted variable
     settings.
     - debian/patches/125_SECURITY_CVE-2008-5624.patch: make sure the page_uid
       and page_gid get initialized properly in ext/standard/basic_functions.c.
       Also, init server_context before processing config variables in
       sapi/apache/mod_php5.c.
     - CVE-2008-5624
   * SECURITY UPDATE: arbitrary file write by placing a "php_value error_log"
     entry in a .htaccess file.
     - debian/patches/126_SECURITY_CVE-2008-5625.patch: enforce restrictions
       when merging in dir entry in sapi/apache/mod_php5.c and
       sapi/apache2handler/apache_config.c.
     - CVE-2008-5625
   * SECURITY UPDATE: arbitrary file overwrite from directory traversal via zip
     file with dot-dot filenames.
     - debian/patches/127_SECURITY_CVE-2008-5658.patch: clean up filename paths
       in ext/zip/php_zip.c with new php_zip_realpath_r(),
       php_zip_virtual_file_ex() and php_zip_make_relative_path() functions.
     - CVE-2008-5658
Files: 
 b3f0d7d8ad24235445c7cade4c14c5fc 540 raw-translations - php5_5.2.3-1ubuntu6.5_sparc_translations.tar.gz
 2acbc470a4bba4aa7e403ab15b65ca35 220416 web optional php5-common_5.2.3-1ubuntu6.5_sparc.deb
 7ea7640bacd789e581d1812701ecc776 2578692 web optional libapache2-mod-php5_5.2.3-1ubuntu6.5_sparc.deb
 966afc68f53811dda0e23cfe0c43d9ae 5025314 web optional php5-cgi_5.2.3-1ubuntu6.5_sparc.deb
 ddcfc3b266c738398fb2547e0e719b2a 2531546 web optional php5-cli_5.2.3-1ubuntu6.5_sparc.deb
 649e23a1ff372176d8ff34635a77f00d 355126 devel optional php5-dev_5.2.3-1ubuntu6.5_sparc.deb
 8c81b59c47ca1b656a8e6035003a3878 24548 web optional php5-curl_5.2.3-1ubuntu6.5_sparc.deb
 46ce1e1ac7b553ebd64c50a0bf9ab5c4 34486 web optional php5-gd_5.2.3-1ubuntu6.5_sparc.deb
 2aa44972f95ec31f72e37aea5cd92020 17994 web optional php5-ldap_5.2.3-1ubuntu6.5_sparc.deb
 337cee5b22ba77f286891a226ae339b2 5098 web optional php5-mhash_5.2.3-1ubuntu6.5_sparc.deb
 a0e45caccb804175301a582c57955ac0 64830 web optional php5-mysql_5.2.3-1ubuntu6.5_sparc.deb
 0f2d42f799c5e737356cdeb7ad5b5943 32904 web optional php5-odbc_5.2.3-1ubuntu6.5_sparc.deb
 ce65842fdeaaea84970c95c86ae8f30e 50188 web optional php5-pgsql_5.2.3-1ubuntu6.5_sparc.deb
 971786ab8ead2717e6f35950edcd90e8 8644 web optional php5-pspell_5.2.3-1ubuntu6.5_sparc.deb
 35f9d16a979431aed5c71e8be44dd88c 4782 web optional php5-recode_5.2.3-1ubuntu6.5_sparc.deb
 026e2624d20d67a5997a54f0f284413d 11456 web optional php5-snmp_5.2.3-1ubuntu6.5_sparc.deb
 1e8e3c2597f33d2b64f93089f210f23c 33308 web optional php5-sqlite_5.2.3-1ubuntu6.5_sparc.deb
 8b673521ad7c379fd0f5f9c41575403c 17950 web optional php5-sybase_5.2.3-1ubuntu6.5_sparc.deb
 82a7e8f4c202addd6d7c3c24ac48f94b 16524 web optional php5-tidy_5.2.3-1ubuntu6.5_sparc.deb
 f28d18bc4eb5f8a6a52ed231f1aa79a0 36608 web optional php5-xmlrpc_5.2.3-1ubuntu6.5_sparc.deb
 c049c8846cb22c610338b3d945a9b1aa 11984 web optional php5-xsl_5.2.3-1ubuntu6.5_sparc.deb
Original-Maintainer: Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>