~ubuntu-branches/ubuntu/gutsy/php5/gutsy-security

From Revision 27 to 8

expand all

collapse all

Rev		Summary	Authors	Tags	Date	Diff	Files
27		* SECURITY UPDATE: denial of service and possible code execu... * SECURITY UPDATE: denial of service and possible code execution from   integer overflow in libgd. Although the system libgd was fixed in USN-557-1,   php5 would not gracefully handle the error return code, resulting in a   denial of service.   - debian/patches/119_SECURITY_CVE-2007-3996.patch: check return codes when     calling libgd in ext/gd/gd.c.   - CVE-2007-3996 * SECURITY UPDATE: php_admin_value and php_admin_flag restrictions bypass via   ini_set. (LP: #228095)   - debian/patches/120_SECURITY_CVE-2007-5900.patch: add new     zend_alter_ini_entry_ex() function that extends zend_alter_ini_entry() by     making sure the entry can be modified in Zend/zend_ini.{c,h},     Zend/zend_vm_def.h, and Zend/zend_vm_execute.h.   - CVE-2007-5900 * SECURITY UPDATE: denial of service and possible arbitrary code execution   via crafted font file. (LP: #286851)   - debian/patches/121_SECURITY_CVE-2008-3658.patch: make sure font->nchars,     font->h, and font->w don't cause overflows in ext/gd/gd.c. Also, add     test script ext/gd/tests/imageloadfont_invalid.phpt.   - CVE-2008-3658 * SECURITY UPDATE: denial of service and possible arbitrary code execution   via the delimiter argument to the explode function. (LP: #286851)   - debian/patches/122_SECURITY_CVE-2008-3659.patch: make sure needle_length     is sane in ext/standard/tests/strings/explode_bug.phpt. Also, add test     script ext/standard/tests/strings/explode_bug.phpt.   - CVE-2008-3659 * SECURITY UPDATE: denial of service via a request with multiple dots   preceding the extension. (ex: foo..php) (LP: #286851)   - debian/patches/123_SECURITY_CVE-2008-3660.patch: improve .. cleaning with     a new is_valid_path() function in sapi/cgi/cgi_main.c.   - CVE-2008-3660 * SECURITY UPDATE: mbstring extension arbitrary code execution via crafted   string containing HTML entity. (LP: #317672)   - debian/patches/124_SECURITY_CVE-2008-5557.patch: improve     mbfl_filt_conv_html_dec_flush() error handling in     ext/mbstring/libmbfl/filters/mbfilter_htmlent.c.   - CVE-2008-5557 * SECURITY UPDATE: safe_mode restriction bypass via unrestricted variable   settings.   - debian/patches/125_SECURITY_CVE-2008-5624.patch: make sure the page_uid     and page_gid get initialized properly in ext/standard/basic_functions.c.     Also, init server_context before processing config variables in     sapi/apache/mod_php5.c.   - CVE-2008-5624 * SECURITY UPDATE: arbitrary file write by placing a "php_value error_log"   entry in a .htaccess file.    - debian/patches/126_SECURITY_CVE-2008-5625.patch: enforce restrictions     when merging in dir entry in sapi/apache/mod_php5.c and     sapi/apache2handler/apache_config.c.   - CVE-2008-5625 * SECURITY UPDATE: arbitrary file overwrite from directory traversal via zip   file with dot-dot filenames.    - debian/patches/127_SECURITY_CVE-2008-5658.patch: clean up filename paths     in ext/zip/php_zip.c with new php_zip_realpath_r(),     php_zip_virtual_file_ex() and php_zip_make_relative_path() functions.   - CVE-2008-5658	Marc Deslauriers	5.2.3-1ubuntu6.5	15 years ago
26		* debian/patches/SECURITY_CVE-2008-2050.patch: possible stac... * debian/patches/SECURITY_CVE-2008-2050.patch: possible stack overflow and   sending of unitialized paddings * debian/patches/SECURITY_CVE-2008-2051.patch: properly address incomplete   multibyte chars inside escapeshellcmd() * debian/patches/SECURITY_CVE-2008-0599.patch: properly consider operator   precedence when calculating length of PATH_TRANSLATED * debian/patches/SECURITY_CVE-2007-4850.patch: fixed a safe_mode bypass in   cURL * Add debian/patches/SECURITY_CVE-2008-2829.patch: unsafe usage of   deprecated imap functions (patch from Debian) * Add debian/patches/SECURITY_CVE-2008-1384.patch: integer overflow in   printf() (patch from Debian) * Add debian/patches/SECURITY_CVE-2008-2107+2108.patch: weak random number   seed. * Add debian/patches/SECURITY_CVE-2007-4782.patch: DoS via long string in   the fnmatch functions * debian/patches/SECURITY_526-pcre_compile.patch: avoid stack overflow (fix   from pcre 7.6) * Update debian/patches/207-htmlentity-utf8-fix.patch: fail on improperly   finished UTF sequence * Add debian/patches/SECURITY_CVE-2008-2371.patch: buffer overflow.   Backported upstream patches. * References   CVE-2008-2050   CVE-2008-2051   CVE-2008-0599   CVE-2007-4850   CVE-2008-2829   CVE-2008-1384   CVE-2008-2107   CVE-2008-2108   CVE-2007-4782   CVE-2007-5898   CVE-2008-2371   LP: #227464	Jamie Strandboge	5.2.3-1ubuntu6.4	15 years ago
25		* SECURITY UPDATE: fix segfault in session management. * SECURITY UPDATE: fix segfault in session management. * Update 204-start-session-cookies.patch: thanks to Malcolm Scott. * References   https://launchpad.net/bugs/173043	Kees Cook	5.2.3-1ubuntu6.2	16 years ago
24		* SECURITY UPDATE: multiple vulnerabilities. Thanks to Sean... * SECURITY UPDATE: multiple vulnerabilities.  Thanks to Sean Finney for   help locating upstream fixes. * Add 200-string-wordwrap.patch: wordwrap function can be made to crash.   Backported upstream fixes (CVE-2007-3998). * Add 201-strspn-oob-read.patch: memory reading, possible crash via strspn.   chunk_split.  Backported upstream fixes (CVE-2007-4657). * Add 202-money-format-abuse.patch: money_format format string vulnerable.   Backported upstream fixes (CVE-2007-4658). * Add 203-openssl_make_REQ-overflow.patch: overflow in openssl_make_REQ.   Applied and corrected upstream fixes (CVE-2007-4662). * Add 204-start-session-cookies.patch: overwrite cookie values.   Applied upstream fixes (CVE-2007-3799). * Add 206-chunk_split-fixes.patch: memory reading, possible crash via   chunk_split.  Merged various upstream fixes (CVE-2007-2872, CVE-2007-4660,   CVE-2007-4661). * Add 206-cookie-nesting-fix.patch: corruption/crashes via deeply nested   variables.  Backported upstream fixes (CVE-2007-1285, CVE-2007-4670). * Add 207-htmlentity-utf8-fix.patch: don't accept partial utf8 sequences.   Backported upstream fixes (CVE-2007-5898). * Add 208-session-id-leak.patch: don't send session id to remote forms.   Backported upstream fixes (CVE-2007-5899). * References   http://www.php.net/releases/5_2_4.php   http://www.php.net/releases/5_2_5.php	Kees Cook	5.2.3-1ubuntu6.1	16 years ago
23		Trigger rebuild for hppa Trigger rebuild for hppa	LaMont Jones	5.2.3-1ubuntu6	16 years ago
22		* debian/rules: * debian/rules:   - Fix broken memory_limit mangling for php5-cli. (LP: #109079)   - Don't clean out debian/copyright. (iz soyuz bug..) * debian/php5-cli.postinst, debian/rules:   - Use same php.ini-dist for all flavours. The only difference used to be     cli having a higher memory_limit value, but upstream has changed this to     128MB, which is higher than both of the previous values.	Soren Hansen	5.2.3-1ubuntu5	16 years ago
21		debian/rules: Correctly mangle PHP5_* macros for lpia. debian/rules: Correctly mangle PHP5_* macros for lpia.	Matthias Klose	5.2.3-1ubuntu4	16 years ago
20		debian/rules: Correctly mangle PHP5_* macros for lpia. debian/rules: Correctly mangle PHP5_* macros for lpia.	Matthias Klose	5.2.3-1ubuntu3	16 years ago
19		Rebuild for the libcurl transition mess. Rebuild for the libcurl transition mess.	Steve Kowalik	5.2.3-1ubuntu2	16 years ago
18		* Merge from debian unstable, remaining changes: * Merge from debian unstable, remaining changes:  - debian/changelog: Add some missing CVEs.  - debian/control: DebianMaintainerField  - debian/control, debian/rules: Disable a few build dependencies and    accompanying binary packages which we do not want to support in main:    + firebird2-dev/php5-interbase (we have a separate php-interbase source)    + libc-client-dev/php5-imap (we have a separate php-imap source)    + libmcrypt-dev/php5-mcrypt (separate php-mcrypt source)	Soren Hansen	5.2.3-1ubuntu1	16 years ago
17		* Merge to Debian unstable; remaining Ubuntu changes: * Merge to Debian unstable; remaining Ubuntu changes:  - debian/changelog: Add some missing CVEs.  - debian/control, debian/rules: Disable a few build dependencies and    accompanying binary packages which we do not want to support in main:    + apache-dev/libapache-mod-php5 (die, Apache 1, die!)    + firebird2-dev/php5-interbase (we have a separate php-interbase source)    + libc-client-dev/php5-imap (we have a separate php-imap source)    + libmcrypt-dev/php5-mcrypt (separate php-mcrypt source)  - Add missing libsqlite3-dev build dependency.	Martin Pitt	5.2.2-1ubuntu1	16 years ago
16		* New upstream security/bugfix release: * New upstream security/bugfix release:   - safe_mode & open_basedir bypasses inside the session extension     [CVE-2007-0905]   - multiple buffer overflows in various extensions and functions     [CVE-2007-0906]   - underflow in the internal sapi_header_op() function [CVE-2007-0907]   - information disclosure in the wddx extension [CVE-2007-0908]   - string format vulnerability in *print() functions on 64 bit systems     [CVE-2007-0909]   - possible clobbering of super-globals in several code paths     [CVE-2007-0910] * Adapted patches to new upstream release:   - 006-debian_quirks.patch   - 034-apache2_umask_fix.patch   - 044-strtod_arm_fix.patch * Drop 109-libdb4.4.patch: Obsolete, upstream now checks for db 4.5 and 4.4. * Drop 114-zend_alloc.c_m68k_alignment.patch and   115-zend_alloc.c_memleak.patch: Applied upstream. * Add debian/patches/000upstream-str_ireplace_offbyone.patch:   - Fix off-by-one in str_ireplace(), a regression introduced in 5.2.1.   - Patch taken from upstream CVS:     http://cvs.php.net/viewvc.cgi/php-src/ext/standard/string.c?r1=1.630&r2=1.631   - CVE-2007-0911 * debian/control: Set Ubuntu maintainer.	Martin Pitt	5.2.1-0ubuntu1	17 years ago
15		No-change upload for the libpq4->libpq5 transition. No-change upload for the libpq4->libpq5 transition.	Martin Pitt	5.2.0-8ubuntu2	17 years ago
14		* Merge to Debian unstable. * Merge to Debian unstable. * Build against libapr1-dev and depend against apache2.2-common again, now   that we have it in Feisty. * Build against db 4.4 (like Debian), since Apache 2.2 now uses it, too. * Remaining Ubuntu changes:   - debian/control, debian/rules: Disable apache-dev build dependency and     remove libapache-mod-php5 package, since we do not support apache 1.3.   - debian/changelog: Add some missing CVEs.   - Remove firebird2-dev build dependency and php5-interbase package, since     we don't support Firebird and keep the separate php-interbase source.   - Remove libc-client-dev build dependency and php5-imap package, since     uw-imapd is in universe and we keep the separate php-imap source.   - Remove libmcrypt-dev build dependency and php5-mcrypt package, since     it is in universe and we keep the separate php-mcrypt source.   - Add missing libsqlite3-dev build dependency.	Martin Pitt	5.2.0-8ubuntu1	17 years ago
13		debian/control: Add missing build dependency libsqlite3-dev ... debian/control: Add missing build dependency libsqlite3-dev to fix FTBFS.	Martin Pitt	5.2.0-7ubuntu2	17 years ago
12		* Merge to Debian unstable; remaining Ubuntu changes: * Merge to Debian unstable; remaining Ubuntu changes:   - debian/control, debian/rules: Disable apache-dev build dependency and     remove libapache-mod-php5 package, since we do not support apache 1.3.   - debian/control: Build with db4.3, as long as our apache needs it.   - debian/changelog: Add some missing CVEs. * debian/control:   - Remove firebird2-dev build dependency and php5-interbase package, since     we don't support Firebird and keep the separate php-interbase source.   - Remove libc-client-dev build dependency and php5-imap package, since     uw-imapd is in universe and we keep the separate php-imap source.   - Remove libmcrypt-dev build dependency and php5-mcrypt package, since     it is in universe and we keep the separate php-mcrypt source.   - libapr1-dev -> libapr0-dev, as long as we still have Apache 2.0. * debian/rules: Disable above modules, and fix up dependency generation for   Apache 2.0 instead of 2.2.	Martin Pitt	5.2.0-7ubuntu1	17 years ago
11		Rebuild for ldbl128 change on powerpc and sparc. Rebuild for ldbl128 change on powerpc and sparc.	Matthias Klose	5.1.6-1ubuntu3	17 years ago
10		* SECURITY UPDATE: Safe mode bypass, remote arbitrary code e... * SECURITY UPDATE: Safe mode bypass, remote arbitrary code execution. * Fix/add CVE numbers in/to 5.1.4-0.1 and 5.1.6-1 changelogs. * Add debian/patches/CVE-2006-4625.patch:   - Fix open_basedir/safe_mode bypass with ini_restore().   - Ported from upstream CVS:     http://cvs.php.net/viewvc.cgi/ZendEngine2/zend_ini.c?r1=1.39.2.2&r2=1.39.2.3 * Add debian/patches/CVE-2006-4812.patch:   - Fix integer overflow in Zend's ecalloc().   - Ported from upstream CVS:     http://cvs.php.net/viewvc.cgi/ZendEngine2/zend_alloc.c?r1=1.161&r2=1.162	Martin Pitt	5.1.6-1ubuntu2	17 years ago
9		* Merge from Debian unstable, bringing in a myriad of securi... * Merge from Debian unstable, bringing in a myriad of security fixes. * Revert libdb4.3->libdb4.4 migration until we're ready to do this.	Adam Conrad	5.1.6-1ubuntu1	17 years ago
8		Merge from debian unstable. Merge from debian unstable.	Fabio M. Di Nitto	5.1.4-0.1ubuntu1	17 years ago

• Older »

Loggerhead is a web-based interface for Breezy
Version: 2.0.1