-
Committer:
Package Import Robot
-
Author(s):
Steve Beattie
-
Date:
2011-10-13 13:42:19 UTC
-
Revision ID:
package-import@ubuntu.com-20111013134219-j8o5tnymcfnr4lc7
Tags: 5.3.6-13ubuntu3.2
* SECURITY UPDATE: DoS in zip handling due to addGlob() crashing
on invalid flags
- debian/patches/php5-CVE-2011-1657.patch: check for valid flags
- CVE-2011-1657
* SECURITY UPDATE: DoS due to failure to check for memory allocation errors
- debian/patches/php5-CVE-2011-3182.patch: check the return values
of the malloc, calloc, and realloc functions
- CVE-2011-3182
* SECURITY UPDATE: DoS in errorlog() when passed NULL
- debian/patches/php5-CVE-2011-3267.patch: fix NULL pointer crash in
errorlog()
- CVE-2011-3267
* debian/control: enforce timestamp difference large enough for make
to detect before editing configure.in, so that aclocal.m4 will be
regenerated.
* debian/patches/php5-CVE-2011-1938_fix.patch: fix the fix for
CVE-2011-1938 to remove the extra argument.