[ubuntu/precise-security] php5 5.3.10-1ubuntu3.7 (Accepted)
Marc Deslauriers
marc.deslauriers at canonical.com
Tue Jul 16 12:03:21 UTC 2013
php5 (5.3.10-1ubuntu3.7) precise-security; urgency=low
* SECURITY UPDATE: denial of service and possible code execution via xml
parser heap overflow
- debian/patches/CVE-2013-4113.patch: check against XML_MAXLEVEL in
ext/xml/xml.c, add test to ext/xml/tests/bug65236.phpt.
- CVE-2013-4113
* SECURITY UPDATE: denial of service via overflow in SdnToJewish
- debian/patches/CVE-2013-4635.patch: check value in
ext/calendar/jewish.c, add test to
ext/calendar/tests/jdtojewish64.phpt.
- CVE-2013-4635
Date: 2013-07-15 17:40:20.884860+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
https://launchpad.net/ubuntu/precise/+source/php5/5.3.10-1ubuntu3.7
-------------- next part --------------
Sorry, changesfile not available.
More information about the Precise-changes
mailing list