1
php5 (5.2.10.dfsg.1-2ubuntu6.9) karmic-security; urgency=low
3
* SECURITY UPDATE: arbitrary files removal via cronjob
4
- debian/php5-common.php5.cron.d: take greater care when removing
6
- http://git.debian.org/?p=pkg-php%2Fphp.git;a=commitdiff_plain;h=d09fd04ed7bfcf7f008360c6a42025108925df09
8
* SECURITY UPDATE: symlink tmp races in pear install
9
- debian/patches/php5-pear-CVE-2011-1072.patch: improved
11
- debian/rules: apply patch manually after unpacking PEAR phar
14
* SECURITY UPDATE: more symlink races in pear install
15
- debian/patches/php5-pear-CVE-2011-1144.patch: add TOCTOU save
17
- debian/rules: apply patch manually after unpacking PEAR phar
20
* SECURITY UPDATE: use-after-free vulnerability
21
- debian/patches/php5-CVE-2010-4697.patch: retain reference to
22
object until getter/setter are done.
24
* SECURITY UPDATE: denial of service through application crash with
26
- debian/patches/php5-CVE-2010-4698.patch: verify anti-aliasing
27
steps are either 4 or 16.
29
* SECURITY UPDATE: denial of service through application crash
30
- debian/patches/php5-CVE-2011-0421.patch: fail operation gracefully
31
when handling zero sized zipfile with the FL_UNCHANGED argument
33
* SECURITY UPDATE: denial of service through application crash when
34
handling images with invalid exif tags
35
- debian/patches/php5-CVE-2011-0708.patch: stricter exif checking
37
* SECURITY UPDATE: denial of service and possible data disclosure
38
through integer overflow
39
- debian/patches/php5-CVE-2011-1092.patch: better boundary
40
condition checks in shmop_read()
42
* SECURITY UPDATE: use-after-free vulnerability
43
- debian/patches/php5-CVE-2011-1148.patch: improve reference
46
* SECURITY UPDATE: denial of service through buffer overflow crash
47
(code execution mitigated by compilation with Fortify Source)
48
- debian/patches/php5-CVE-2011-1464.patch: limit amount of precision
49
to ensure fitting within MAX_BUF_SIZE
51
* SECURITY UPDATE: denial of service through application crash via
53
- debian/patches/php5-CVE-2011-1466.patch: improve boundary
54
condition checking in SdnToJulian()
56
* SECURITY UPDATE: denial of service through application crash
57
when using HTTP proxy with the FTP wrapper
58
- debian/patches/php5-CVE-2011-1469.patch: improve pointer handling
60
* SECURITY UPDATE: denial of service through application crash when
61
handling ziparchive streams
62
- debian/patches/php5-CVE-2011-1470.patch: set necessary elements of
63
the meta data structure
65
* SECURITY UPDATE: denial of service through application crash when
66
handling malformed zip files
67
- debian/patches/php5-CVE-2011-1471.patch: correct integer
68
signedness error when handling zip_fread() return value.
71
-- Steve Beattie <sbeattie@ubuntu.com> Thu, 28 Apr 2011 05:37:29 -0700
1
73
php5 (5.2.10.dfsg.1-2ubuntu6.7) karmic-security; urgency=low
3
75
* debian/patches/php5-CVE-2010-3436-regression.patch: update