[Bug 227464] Re: Please roll out security fixes from PHP 5.2.6

Jamie Strandboge jamie at ubuntu.com
Fri Jul 11 18:14:11 BST 2008


While the debdiff is much appreciated, there are several issues involved
beyond pushing out this debdiff:

1) updates need to be backported and tested for all for released versions (not just hardy)
2) the patches in the debdiff are not in line with Debian or other distributions, so they need to be investigated for correctness
3) several other CVEs not addressed in this debdiff will be included in the upcoming security upload
4) as Kees said, the vulnerabilities addressed in this debdiff are either hard to exploit or low risk

Please be assured that fixes for these CVEs (and others) are actively
being worked on.

-- 
Please roll out security fixes from PHP 5.2.6
https://bugs.launchpad.net/bugs/227464
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to php5 in ubuntu.



More information about the Ubuntu-server-bugs mailing list