-
Committer:
Package Import Robot
-
Author(s):
Steve Beattie, Angel Abad, Steve Beattie
-
Date:
2011-10-14 20:10:17 UTC
-
Revision ID:
package-import@ubuntu.com-20111014201017-6eyquxhn0vu0umuz
Tags: 5.2.4-2ubuntu5.18
[ Angel Abad ]
* SECURITY UPDATE: File path injection vulnerability in RFC1867 File
upload filename (LP: #813115)
- debian/patches/php5-CVE-2011-2202.patch:
- CVE-2011-2202
[ Steve Beattie ]
* SECURITY UPDATE: DoS due to failure to check for memory allocation errors
- debian/patches/php5-CVE-2011-3182.patch: check the return values
of the malloc, calloc, and realloc functions
- CVE-2011-3182
* SECURITY UPDATE: Information leak via strchr interrupt (LP: #852865)
- debian/patches/php5-CVE-2010-2484.patch: grab references before
converting to string
- CVE-2010-2484