27
|
|
* SECURITY UPDATE: denial of service and possible code execution from integer overflow in libgd. Although the system libgd was fixed in USN-557-1, php5 would not gracefully handle the error return code, resulting in a denial of service. - debian/patches/119_SECURITY_CVE-2007-3996.patch: check return codes when calling libgd in ext/gd/gd.c. - CVE-2007-3996 * SECURITY UPDATE: php_admin_value and php_admin_flag restrictions bypass via ini_set. (LP: #228095) - debian/patches/120_SECURITY_CVE-2007-5900.patch: add new zend_alter_ini_entry_ex() function that extends zend_alter_ini_entry() by making sure the entry can be modified in Zend/zend_ini.{c,h}, Zend/zend_vm_def.h, and Zend/zend_vm_execute.h. - CVE-2007-5900 * SECURITY UPDATE: denial of service and possible arbitrary code execution via crafted font file. (LP: #286851) - debian/patches/121_SECURITY_CVE-2008-3658.patch: make sure font->nchars, font->h, and font->w don't cause overflows in ext/gd/gd.c. Also, add test script ext/gd/tests/imageloadfont_invalid.phpt. - CVE-2008-3658 * SECURITY UPDATE: denial of service and possible arbitrary code execution via the delimiter argument to the explode function. (LP: #286851) - debian/patches/122_SECURITY_CVE-2008-3659.patch: make sure needle_length is sane in ext/standard/tests/strings/explode_bug.phpt. Also, add test script ext/standard/tests/strings/explode_bug.phpt. - CVE-2008-3659 * SECURITY UPDATE: denial of service via a request with multiple dots preceding the extension. (ex: foo..php) (LP: #286851) - debian/patches/123_SECURITY_CVE-2008-3660.patch: improve .. cleaning with a new is_valid_path() function in sapi/cgi/cgi_main.c. - CVE-2008-3660 * SECURITY UPDATE: mbstring extension arbitrary code execution via crafted string containing HTML entity. (LP: #317672) - debian/patches/124_SECURITY_CVE-2008-5557.patch: improve mbfl_filt_conv_html_dec_flush() error handling in ext/mbstring/libmbfl/filters/mbfilter_htmlent.c. - CVE-2008-5557 * SECURITY UPDATE: safe_mode restriction bypass via unrestricted variable settings. - debian/patches/125_SECURITY_CVE-2008-5624.patch: make sure the page_uid and page_gid get initialized properly in ext/standard/basic_functions.c. Also, init server_context before processing config variables in sapi/apache/mod_php5.c. - CVE-2008-5624 * SECURITY UPDATE: arbitrary file write by placing a "php_value error_log" entry in a .htaccess file. - debian/patches/126_SECURITY_CVE-2008-5625.patch: enforce restrictions when merging in dir entry in sapi/apache/mod_php5.c and sapi/apache2handler/apache_config.c. - CVE-2008-5625 * SECURITY UPDATE: arbitrary file overwrite from directory traversal via zip file with dot-dot filenames. - debian/patches/127_SECURITY_CVE-2008-5658.patch: clean up filename paths in ext/zip/php_zip.c with new php_zip_realpath_r(), php_zip_virtual_file_ex() and php_zip_make_relative_path() functions. - CVE-2008-5658
|
Marc Deslauriers |
5.2.3-1ubuntu6.5 |
15 years ago
|
|
|
26
|
|
|
Jamie Strandboge |
5.2.3-1ubuntu6.4 |
15 years ago
|
|
|
25
|
|
|
Kees Cook |
5.2.3-1ubuntu6.2 |
16 years ago
|
|
|
24
|
|
|
Kees Cook |
5.2.3-1ubuntu6.1 |
16 years ago
|
|
|
23
|
|
|
LaMont Jones |
5.2.3-1ubuntu6 |
16 years ago
|
|
|
22
|
|
|
Soren Hansen |
5.2.3-1ubuntu5 |
16 years ago
|
|
|
21
|
|
|
Matthias Klose |
5.2.3-1ubuntu4 |
16 years ago
|
|
|
20
|
|
|
Matthias Klose |
5.2.3-1ubuntu3 |
16 years ago
|
|
|
19
|
|
|
Steve Kowalik |
5.2.3-1ubuntu2 |
16 years ago
|
|
|
18
|
|
|
Soren Hansen |
5.2.3-1ubuntu1 |
16 years ago
|
|
|
17
|
|
|
Martin Pitt |
5.2.2-1ubuntu1 |
16 years ago
|
|
|
16
|
|
|
Martin Pitt |
5.2.1-0ubuntu1 |
17 years ago
|
|
|
15
|
|
|
Martin Pitt |
5.2.0-8ubuntu2 |
17 years ago
|
|
|
14
|
|
|
Martin Pitt |
5.2.0-8ubuntu1 |
17 years ago
|
|
|
13
|
|
|
Martin Pitt |
5.2.0-7ubuntu2 |
17 years ago
|
|
|
12
|
|
|
Martin Pitt |
5.2.0-7ubuntu1 |
17 years ago
|
|
|
11
|
|
|
Matthias Klose |
5.1.6-1ubuntu3 |
17 years ago
|
|
|
10
|
|
|
Martin Pitt |
5.1.6-1ubuntu2 |
17 years ago
|
|
|
9
|
|
|
Adam Conrad |
5.1.6-1ubuntu1 |
17 years ago
|
|
|
8
|
|
|
Fabio M. Di Nitto |
5.1.4-0.1ubuntu1 |
17 years ago
|
|
|