-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 18 Mar 2011 18:34:11 -0600 Source: php5 Binary: php5 php5-common libapache2-mod-php5 libapache2-mod-php5filter php5-cgi php5-cli php5-dev php5-dbg php-pear php5-curl php5-gd php5-gmp php5-imap php5-interbase php5-ldap php5-mcrypt php5-mhash php5-mysql php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl Architecture: alpha Version: 5.2.6.dfsg.1-1+lenny10 Distribution: lenny-security Urgency: high Maintainer: Debian Build Daemon Changed-By: Raphael Geissert Description: libapache2-mod-php5 - server-side, HTML-embedded scripting language (Apache 2 module) libapache2-mod-php5filter - server-side, HTML-embedded scripting language (apache 2 filter mo php-pear - PEAR - PHP Extension and Application Repository php5 - server-side, HTML-embedded scripting language (metapackage) php5-cgi - server-side, HTML-embedded scripting language (CGI binary) php5-cli - command-line interpreter for the php5 scripting language php5-common - Common files for packages built from the php5 source php5-curl - CURL module for php5 php5-dbg - Debug symbols for PHP5 php5-dev - Files for PHP5 module development php5-gd - GD module for php5 php5-gmp - GMP module for php5 php5-imap - IMAP module for php5 php5-interbase - interbase/firebird module for php5 php5-ldap - LDAP module for php5 php5-mcrypt - MCrypt module for php5 php5-mhash - MHASH module for php5 php5-mysql - MySQL module for php5 php5-odbc - ODBC module for php5 php5-pgsql - PostgreSQL module for php5 php5-pspell - pspell module for php5 php5-recode - recode module for php5 php5-snmp - SNMP module for php5 php5-sqlite - SQLite module for php5 php5-sybase - Sybase / MS SQL Server module for php5 php5-tidy - tidy module for php5 php5-xmlrpc - XML-RPC module for php5 php5-xsl - XSL module for php5 Changes: php5 (5.2.6.dfsg.1-1+lenny10) lenny-security; urgency=high . [ Ondřej Surý ] * Include upstream's fix for CVE-2010-1128: Weak seed for the Linear Congruential Generator (LCG) * Fix CVE-2010-3709: NULL pointer dereference in ZipArchive::getArchiveComment * Fix CVE-2010-3710: stack consumption when using the FILTER_VALIDATE_EMAIL filter * Fix CVE-2010-3870: incorrect handling of ill-formed subsequences in UTF-8 data * Fix CVE-2010-4150: Double free in imap_do_open * Fix a NULL pointer dereference in the zip extract method . [ Raphael Geissert ] * Include a test for CVE-2010-4645 * Fix CVE-2011-0441: arbitrary files removal via cronjob (Closes #618489) Checksums-Sha1: e45c14b84bbffaa2c43aa86ad3524c0415398811 370762 php5-common_5.2.6.dfsg.1-1+lenny10_alpha.deb 9817449637e9a772a28596e75e9b7ba3f6eabd2d 2675080 libapache2-mod-php5_5.2.6.dfsg.1-1+lenny10_alpha.deb 27936d1747df70d16df464b39bdb4edc0698b84e 2674030 libapache2-mod-php5filter_5.2.6.dfsg.1-1+lenny10_alpha.deb a96ab1cfccbd0d06239ae6bd14f3ea1610c6b3d5 5166276 php5-cgi_5.2.6.dfsg.1-1+lenny10_alpha.deb b53de564a43c171ceae56bfe28693b023f23b6f4 2599452 php5-cli_5.2.6.dfsg.1-1+lenny10_alpha.deb 89323f03259107c107ef0077f45bfc818fbbcd86 362790 php5-dev_5.2.6.dfsg.1-1+lenny10_alpha.deb fcdbabe029c235ae40acf4858c6503bbf793b430 19518264 php5-dbg_5.2.6.dfsg.1-1+lenny10_alpha.deb 159f3d2d55ed993a1a29827dea0dd8e8c4b4ad89 24996 php5-curl_5.2.6.dfsg.1-1+lenny10_alpha.deb 69b1058c045533ce213ff83f488ae5cf9b2a65a0 37168 php5-gd_5.2.6.dfsg.1-1+lenny10_alpha.deb 6181077376cff3a2e01d1059116f50988c46939d 15828 php5-gmp_5.2.6.dfsg.1-1+lenny10_alpha.deb 2c138b2eedf9e11c6953e791ad9d86d7db375012 37508 php5-imap_5.2.6.dfsg.1-1+lenny10_alpha.deb d6bb5338f528929271ec236881aad653a18cbc8f 19682 php5-ldap_5.2.6.dfsg.1-1+lenny10_alpha.deb 94aaead3134fa84edbab81686ce9ea987e1c3f4b 13804 php5-mcrypt_5.2.6.dfsg.1-1+lenny10_alpha.deb b2bac29b45132687e54d352c29ee4cc2c06934d7 5420 php5-mhash_5.2.6.dfsg.1-1+lenny10_alpha.deb 54dc9ac7a411afb3112e929f8e3a8f96418c9171 71712 php5-mysql_5.2.6.dfsg.1-1+lenny10_alpha.deb 5185eaafff0dfcf67509112b3e0278a684bd19f0 36662 php5-odbc_5.2.6.dfsg.1-1+lenny10_alpha.deb 4260ee2084363c53ba31e59cb2871d4319936c1f 57884 php5-pgsql_5.2.6.dfsg.1-1+lenny10_alpha.deb c96cbdc2cf89bcc93b5732b63d5b09fb15aae51a 8930 php5-pspell_5.2.6.dfsg.1-1+lenny10_alpha.deb 6f951e6006a98d1e804596bb12e64f5a3603358d 5084 php5-recode_5.2.6.dfsg.1-1+lenny10_alpha.deb 2a7831d61952f336d261c8648570fccc31857100 12338 php5-snmp_5.2.6.dfsg.1-1+lenny10_alpha.deb 7173b6cf8346b699e69beaebe136fc278344c45d 39406 php5-sqlite_5.2.6.dfsg.1-1+lenny10_alpha.deb f0e8f74593ba688414dafab5ac6d9946196b1f62 28202 php5-sybase_5.2.6.dfsg.1-1+lenny10_alpha.deb 935f1acb801b0b0d3c595e8f4222a0fcaac4ea07 17676 php5-tidy_5.2.6.dfsg.1-1+lenny10_alpha.deb 5febc2d77f159591943fdb9c022946be89df390e 41630 php5-xmlrpc_5.2.6.dfsg.1-1+lenny10_alpha.deb e6616d015cbac8e3529b876a67481b2325f05494 14060 php5-xsl_5.2.6.dfsg.1-1+lenny10_alpha.deb Checksums-Sha256: ac73dbce639b99d6fb0c2f4b5ad5be52118e6ce44b0eb3b46741ebf4aa08f9ad 370762 php5-common_5.2.6.dfsg.1-1+lenny10_alpha.deb a846b70007e6086248686d37978b4d1a225cadd8155422bd70e804088b9003f8 2675080 libapache2-mod-php5_5.2.6.dfsg.1-1+lenny10_alpha.deb 9232e2006ef3c1c94e03e1977d0f693128d029e42b1ff97d6044aa8c56b440a3 2674030 libapache2-mod-php5filter_5.2.6.dfsg.1-1+lenny10_alpha.deb fc04ca930660e6c268ed001f6ed4a69ddfa89bb1579a9df56d1ada2ae050fa3d 5166276 php5-cgi_5.2.6.dfsg.1-1+lenny10_alpha.deb 2f7fc000143f34cf30d19d02c29d048c2ee2500271e26397779dc38175133d74 2599452 php5-cli_5.2.6.dfsg.1-1+lenny10_alpha.deb a9a4bdab7606f9ba18f44ff9cc326fa6a8ac8bd42828f4881274ec8f88f12a02 362790 php5-dev_5.2.6.dfsg.1-1+lenny10_alpha.deb 8749406a07787a822cc9ba2551cd45b37bd5f12f5635d09da134e8b76c90a752 19518264 php5-dbg_5.2.6.dfsg.1-1+lenny10_alpha.deb 5692d5c879931f10ba96fe1882da3786a252ef0a9a076d56fd6093f7d8253c35 24996 php5-curl_5.2.6.dfsg.1-1+lenny10_alpha.deb 0c1d66bc1200697ab5f71da5fd1fbdb4ea00a9adf934dd9ef26e7f523d876dd9 37168 php5-gd_5.2.6.dfsg.1-1+lenny10_alpha.deb 58a3d4c4aa7c6dd84e6a025e2f8cc8f27ce38c1a2f33dce3e79f811e84aca2ca 15828 php5-gmp_5.2.6.dfsg.1-1+lenny10_alpha.deb 69500c06791ee64d087407ac0eeaee2a9ee8a20df8662add00e13d3d1dff5312 37508 php5-imap_5.2.6.dfsg.1-1+lenny10_alpha.deb 1f1d12def124544ac66414a31d8f2300858f8c6cccdea693f10cc19029289f15 19682 php5-ldap_5.2.6.dfsg.1-1+lenny10_alpha.deb 5d12cca20b042a4ef014dd7450ad5477f783ee2bf2c2d6e819d6270f733f52b7 13804 php5-mcrypt_5.2.6.dfsg.1-1+lenny10_alpha.deb cd5e85148847e3a6667c33e7a6b23bf2de5e6dd973df33295e0b3794d74c4abc 5420 php5-mhash_5.2.6.dfsg.1-1+lenny10_alpha.deb 4321de7157ffc01fbd9d49bf81b1c42f72243b147d7ef549366aa70bdc0e0c70 71712 php5-mysql_5.2.6.dfsg.1-1+lenny10_alpha.deb 69aff07060f3bb0a119765e3b6ef47a809f0c963e5dda567a3ac378baf10477f 36662 php5-odbc_5.2.6.dfsg.1-1+lenny10_alpha.deb afce4e9ed7034d8df7398f5dbbc3b4d545ae5d2db17049d5803997037852bbc8 57884 php5-pgsql_5.2.6.dfsg.1-1+lenny10_alpha.deb b2cf4f6b5e9af92f5ef86f90520c51c0c9c8b0c26320b979d5b810e359e773ea 8930 php5-pspell_5.2.6.dfsg.1-1+lenny10_alpha.deb d6f35da6b69fb514a71fb78201333d7408be3143a53b8bf184226a19de4c7ebe 5084 php5-recode_5.2.6.dfsg.1-1+lenny10_alpha.deb bf782871f298c18614025d2eea9a889434e4dd0d8cd785da53bef96e7014d03b 12338 php5-snmp_5.2.6.dfsg.1-1+lenny10_alpha.deb e5d321ddb90341d4c9966502c0f1443cc4c219348c97dd3c155829ab17c2566e 39406 php5-sqlite_5.2.6.dfsg.1-1+lenny10_alpha.deb 63433d85bd981041b06c54469e4d73199f0fb1c8077ffdba7efbac45ad42624b 28202 php5-sybase_5.2.6.dfsg.1-1+lenny10_alpha.deb 26ffc38a5c7acffa22c4a36d3562a071c43893b19c3c6712055051041cd92a26 17676 php5-tidy_5.2.6.dfsg.1-1+lenny10_alpha.deb addbe48607e9b50fbd7d33d6618bbeb22fd763fb4e6d100bde14783282f86249 41630 php5-xmlrpc_5.2.6.dfsg.1-1+lenny10_alpha.deb 7a5391341c5e8656d838ae523d2a35ba9ca62b528bb84ea5f430aa764a1ad91f 14060 php5-xsl_5.2.6.dfsg.1-1+lenny10_alpha.deb Files: 870088e221dd9777cf044a15bc027d7a 370762 web optional php5-common_5.2.6.dfsg.1-1+lenny10_alpha.deb bcb80c23191e577c1987cf3279ba5afb 2675080 web optional libapache2-mod-php5_5.2.6.dfsg.1-1+lenny10_alpha.deb 3ee25096c014ec6926e88a33dddae2ca 2674030 web optional libapache2-mod-php5filter_5.2.6.dfsg.1-1+lenny10_alpha.deb 64f53f4287c4c480d08a336e37c153c9 5166276 web optional php5-cgi_5.2.6.dfsg.1-1+lenny10_alpha.deb 8aae7bf361ed66791afaf4b2a06246b7 2599452 web optional php5-cli_5.2.6.dfsg.1-1+lenny10_alpha.deb 6e78d203dadd3c4f7720a110b4d4c0d7 362790 devel optional php5-dev_5.2.6.dfsg.1-1+lenny10_alpha.deb 85a0fac170dd72dbefd459c28897f050 19518264 devel extra php5-dbg_5.2.6.dfsg.1-1+lenny10_alpha.deb 7c88d2185d12607bfffae2aa378e0dde 24996 web optional php5-curl_5.2.6.dfsg.1-1+lenny10_alpha.deb 20c92b06be9fb767c7b8a192ac74246e 37168 web optional php5-gd_5.2.6.dfsg.1-1+lenny10_alpha.deb 069d7dcbb51f71f1f17210ba62d2848e 15828 web optional php5-gmp_5.2.6.dfsg.1-1+lenny10_alpha.deb b322de9b84671121bd03f70f30e6ad3d 37508 web optional php5-imap_5.2.6.dfsg.1-1+lenny10_alpha.deb 93772030cba9d101639fccc2465226da 19682 web optional php5-ldap_5.2.6.dfsg.1-1+lenny10_alpha.deb a68e50659cba0f9077280424e9809329 13804 web optional php5-mcrypt_5.2.6.dfsg.1-1+lenny10_alpha.deb 536e7b224fe712512f34316145ef2141 5420 web optional php5-mhash_5.2.6.dfsg.1-1+lenny10_alpha.deb 486994fe850cc0c7344b866450fb9a0d 71712 web optional php5-mysql_5.2.6.dfsg.1-1+lenny10_alpha.deb 94ddba05c0032f961c1b59d0ccd4e28d 36662 web optional php5-odbc_5.2.6.dfsg.1-1+lenny10_alpha.deb eb5311da94b6df13260f3122646ae881 57884 web optional php5-pgsql_5.2.6.dfsg.1-1+lenny10_alpha.deb 94a6b2649a220d3f7af76012f9eae433 8930 web optional php5-pspell_5.2.6.dfsg.1-1+lenny10_alpha.deb 7858ef29b9160e70e6d2826b8a472696 5084 web optional php5-recode_5.2.6.dfsg.1-1+lenny10_alpha.deb b312702196a4fd36700a57631c41b0aa 12338 web optional php5-snmp_5.2.6.dfsg.1-1+lenny10_alpha.deb 147f9a9d054b95121f7f239267118a06 39406 web optional php5-sqlite_5.2.6.dfsg.1-1+lenny10_alpha.deb 4e014bac7ab9026b4053f7e4a5d70e45 28202 web optional php5-sybase_5.2.6.dfsg.1-1+lenny10_alpha.deb 5b8292bac513b93edf70a1f30ba83b8f 17676 web optional php5-tidy_5.2.6.dfsg.1-1+lenny10_alpha.deb e524ad533e1ddd0317060ca984e1bc57 41630 web optional php5-xmlrpc_5.2.6.dfsg.1-1+lenny10_alpha.deb a62401c39d04ca94d42d160842cb7637 14060 web optional php5-xsl_5.2.6.dfsg.1-1+lenny10_alpha.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iEYEARECAAYFAk2E6n4ACgkQYy49rUbZzlqsgQCgnskKmLRCu2Kyz+AxlZiVpbom 1VgAmQH2UBo/nAe2e8J9FeiNHw8n1Px8 =1ILS -----END PGP SIGNATURE-----