Format: 1.7 Date: Fri, 17 Apr 2009 08:13:48 -0400 Source: php5 Binary: php5 php5-common libapache2-mod-php5 php5-cgi php5-cli php5-dev php-pear php5-curl php5-gd php5-gmp php5-ldap php5-mhash php5-mysql php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl Architecture: sparc_translations sparc Version: 5.2.4-2ubuntu5.6 Distribution: hardy Urgency: low Maintainer: Ubuntu/sparc Build Daemon Changed-By: Marc Deslauriers Description: libapache2-mod-php5 - server-side, HTML-embedded scripting language (apache 2 module) php-pear - PEAR - PHP Extension and Application Repository php5 - server-side, HTML-embedded scripting language (meta-package) php5-cgi - server-side, HTML-embedded scripting language (CGI binary) php5-cli - command-line interpreter for the php5 scripting language php5-common - Common files for packages built from the php5 source php5-curl - CURL module for php5 php5-dev - Files for PHP5 module development php5-gd - GD module for php5 php5-gmp - GMP module for php5 php5-ldap - LDAP module for php5 php5-mhash - MHASH module for php5 php5-mysql - MySQL module for php5 php5-odbc - ODBC module for php5 php5-pgsql - PostgreSQL module for php5 php5-pspell - pspell module for php5 php5-recode - recode module for php5 php5-snmp - SNMP module for php5 php5-sqlite - SQLite module for php5 php5-sybase - Sybase / MS SQL Server module for php5 php5-tidy - tidy module for php5 php5-xmlrpc - XML-RPC module for php5 php5-xsl - XSL module for php5 Changes: php5 (5.2.4-2ubuntu5.6) hardy-security; urgency=low . * SECURITY UPDATE: cross-site scripting vulnerability when display_errors is enabled. - debian/patches/128_SECURITY_CVE-2008-5814.patch: don't print back cookie names or values in ext/standard/head.c. - CVE-2008-5814 * SECURITY UPDATE: mbstring.func_overload setting in .htaccess affects other virtual hosts. - debian/patches/129_SECURITY_CVE-2009-0754.patch: don't terminate on the first function that is not overloaded in ext/mbstring/mbstring.c. - CVE-2009-0754 * SECURITY UPDATE: denial of service via malformed string to the json_decode API function. - debian/patches/130_SECURITY_CVE-2009-1271.patch: add extra mode checks in ext/json/JSON_parser.c. Add test to ext/json/tests/001.phpt. - CVE-2009-1271 Files: 6839f76ab70f340ac0cc2641705d4e05 540 raw-translations - php5_5.2.4-2ubuntu5.6_sparc_translations.tar.gz 625ce804f9fbd4da8817d69f4b3435f0 315830 web optional php5-common_5.2.4-2ubuntu5.6_sparc.deb 1e89bb8cff4fd4373bcb7b8c12915f7c 2493438 web optional libapache2-mod-php5_5.2.4-2ubuntu5.6_sparc.deb dce31617b22cafe6d9700a091b740294 4881644 web optional php5-cgi_5.2.4-2ubuntu5.6_sparc.deb 4e74ea5ff8387a600ced25ae50e5f74d 2462378 web optional php5-cli_5.2.4-2ubuntu5.6_sparc.deb 205ec5f88b376da195bf644208ecab8a 364480 devel optional php5-dev_5.2.4-2ubuntu5.6_sparc.deb fcc4b03f4e2ec479a8d86322494bf3a3 24272 web optional php5-curl_5.2.4-2ubuntu5.6_sparc.deb 2aa0e0e88055d4f0ead55ecc0babb25d 33594 web optional php5-gd_5.2.4-2ubuntu5.6_sparc.deb 62e029eabc1ff5ec1e64ffcbc27a50e5 14148 web optional php5-gmp_5.2.4-2ubuntu5.6_sparc.deb c9e8ecf014ba9af5adb97663f2b239df 17700 web optional php5-ldap_5.2.4-2ubuntu5.6_sparc.deb 93fa6dae00c5d2a6e5b1365af448d7b6 5056 web optional php5-mhash_5.2.4-2ubuntu5.6_sparc.deb 23cf523e462dcdbbee3a8ffb93b33b62 63408 web optional php5-mysql_5.2.4-2ubuntu5.6_sparc.deb fa947696bbd085a58c67a3422bf0b97c 32420 web optional php5-odbc_5.2.4-2ubuntu5.6_sparc.deb 195849a4dc2d455a534eccb4b32ceb4c 49704 web optional php5-pgsql_5.2.4-2ubuntu5.6_sparc.deb 057a4c7f3cdd36a3f1b4292ab7ebd9ab 8482 web optional php5-pspell_5.2.4-2ubuntu5.6_sparc.deb 101927ae4a967681c6d557dc91a20e4b 4746 web optional php5-recode_5.2.4-2ubuntu5.6_sparc.deb d9b85d1f82419aeef459289aa071b5f0 11548 web optional php5-snmp_5.2.4-2ubuntu5.6_sparc.deb 2d36dcb94db977e68e44ec5a0dc4b1b1 32802 web optional php5-sqlite_5.2.4-2ubuntu5.6_sparc.deb 6a341385c94f3f1b6553ff9477b3ea53 24962 web optional php5-sybase_5.2.4-2ubuntu5.6_sparc.deb 45c5331857671e3f78e0eeac263f7d46 16344 web optional php5-tidy_5.2.4-2ubuntu5.6_sparc.deb 5daf0f54ca4a9ddf75c70f6ad2714f5f 34782 web optional php5-xmlrpc_5.2.4-2ubuntu5.6_sparc.deb 304a267c08184a0d5740689ad30bd284 12006 web optional php5-xsl_5.2.4-2ubuntu5.6_sparc.deb Original-Maintainer: Debian PHP Maintainers