Accepted php5 5.1.2-1ubuntu3.7 (source)
Ubuntu Installer
archive at ubuntu.com
Fri Apr 27 10:34:21 BST 2007
Accepted:
OK: php5_5.1.2-1ubuntu3.7.dsc
-> Component: main Section: web
OK: php5_5.1.2-1ubuntu3.7.diff.gz
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 23 Apr 2007 16:38:58 -0700
Source: php5
Binary: php5-mysqli php5-gd php5-ldap php5 php5-xmlrpc libapache2-mod-php5 php5-xsl php5-cgi php-pear php5-pgsql php5-cli php5-recode php5-mhash php5-sybase php5-curl php5-odbc php5-mysql php5-common php5-dev php5-snmp php5-sqlite
Architecture: source
Version: 5.1.2-1ubuntu3.7
Distribution: dapper-security
Urgency: low
Maintainer: Debian PHP Maintainers <pkg-php-maint at lists.alioth.debian.org>
Changed-By: Kees Cook <kees at ubuntu.com>
Description:
libapache2-mod-php5 - server-side, HTML-embedded scripting language (apache 2.0 module)
php-pear - PEAR - PHP Extension and Application Repository
php5 - server-side, HTML-embedded scripting language (meta-package)
php5-cgi - server-side, HTML-embedded scripting language (CGI binary)
php5-cli - command-line interpreter for the php5 scripting language
php5-common - Common files for packages built from the php5 source
php5-curl - CURL module for php5
php5-dev - Files for PHP5 module development
php5-gd - GD module for php5
php5-ldap - LDAP module for php5
php5-mhash - MHASH module for php5
php5-mysql - MySQL module for php5
php5-mysqli - MySQL Improved module for php5
php5-odbc - ODBC module for php5
php5-pgsql - PostgreSQL module for php5
php5-recode - recode module for php5
php5-snmp - SNMP module for php5
php5-sqlite - SQLite module for php5
php5-sybase - Sybase / MS SQL Server module for php5
php5-xmlrpc - XML-RPC module for php5
php5-xsl - XSL module for php5
Changes:
php5 (5.1.2-1ubuntu3.7) dapper-security; urgency=low
.
* SECURITY UPDATE: multiple security vulnerabilities fixed. Thanks to
Moritz Muehlenhoff and Sean Finney.
* MOPB-10.patch: php_binary Session Deserialization Information Leak
(CVE-2007-1380)
* MOPB-14.patch: substr_compare() Information Leak (CVE-2007-1375)
* MOPB-15.patch: shmop Functions Resource Verification (CVE-2007-1376)
* MOPB-22.patch: session_regenerate_id() Double Free (CVE-2007-1521)
* MOPB-24.patch: array_user_key_compare() Double DTOR (CVE-2007-1484)
* MOPB-26.patch: mb_parse_str() register_globals Activation
(CVE-2007-1583)
* MOPB-30.patch: _SESSION unset() (CVE-2007-1700)
* MOPB-34.patch: mail() Header Injection (CVE-2007-1718)
* MOPB-41.patch: sqlite_udf_decode_binary() Buffer Overflow
(CVE-2007-1887 CVE-2007-1888)
* MOPB-42.patch: php_stream_filter_create() Off By One (CVE-2007-1824)
Files:
427fffd561dd912abb032c73db855677 1766 web optional php5_5.1.2-1ubuntu3.7.dsc
97145052f56b881e5bdcd933194a391d 117479 web optional php5_5.1.2-1ubuntu3.7.diff.gz
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGLl9DH/9LqRcGPm0RAlASAKChZJeQaL3N2cLUcMtY7fk2KE2i2wCfSADJ
6sxgaT87AZRK8mxRLNNFz6s=
=/RmP
-----END PGP SIGNATURE-----
More information about the dapper-changes
mailing list