-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Fri, 18 Mar 2011 18:34:11 -0600 Source: php5 Binary: php5 php5-common libapache2-mod-php5 libapache2-mod-php5filter php5-cgi php5-cli php5-dev php5-dbg php-pear php5-curl php5-gd php5-gmp php5-imap php5-interbase php5-ldap php5-mcrypt php5-mhash php5-mysql php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl Architecture: armel Version: 5.2.6.dfsg.1-1+lenny10 Distribution: lenny-security Urgency: high Maintainer: armel Build Daemon (alain) Changed-By: Raphael Geissert Description: libapache2-mod-php5 - server-side, HTML-embedded scripting language (Apache 2 module) libapache2-mod-php5filter - server-side, HTML-embedded scripting language (apache 2 filter mo php-pear - PEAR - PHP Extension and Application Repository php5 - server-side, HTML-embedded scripting language (metapackage) php5-cgi - server-side, HTML-embedded scripting language (CGI binary) php5-cli - command-line interpreter for the php5 scripting language php5-common - Common files for packages built from the php5 source php5-curl - CURL module for php5 php5-dbg - Debug symbols for PHP5 php5-dev - Files for PHP5 module development php5-gd - GD module for php5 php5-gmp - GMP module for php5 php5-imap - IMAP module for php5 php5-interbase - interbase/firebird module for php5 php5-ldap - LDAP module for php5 php5-mcrypt - MCrypt module for php5 php5-mhash - MHASH module for php5 php5-mysql - MySQL module for php5 php5-odbc - ODBC module for php5 php5-pgsql - PostgreSQL module for php5 php5-pspell - pspell module for php5 php5-recode - recode module for php5 php5-snmp - SNMP module for php5 php5-sqlite - SQLite module for php5 php5-sybase - Sybase / MS SQL Server module for php5 php5-tidy - tidy module for php5 php5-xmlrpc - XML-RPC module for php5 php5-xsl - XSL module for php5 Changes: php5 (5.2.6.dfsg.1-1+lenny10) lenny-security; urgency=high . [ Ondřej Surý ] * Include upstream's fix for CVE-2010-1128: Weak seed for the Linear Congruential Generator (LCG) * Fix CVE-2010-3709: NULL pointer dereference in ZipArchive::getArchiveComment * Fix CVE-2010-3710: stack consumption when using the FILTER_VALIDATE_EMAIL filter * Fix CVE-2010-3870: incorrect handling of ill-formed subsequences in UTF-8 data * Fix CVE-2010-4150: Double free in imap_do_open * Fix a NULL pointer dereference in the zip extract method . [ Raphael Geissert ] * Include a test for CVE-2010-4645 * Fix CVE-2011-0441: arbitrary files removal via cronjob (Closes #618489) Checksums-Sha1: 8114e8b85ce52457323e68048119690f1b46f3fa 366444 php5-common_5.2.6.dfsg.1-1+lenny10_armel.deb 84e743889925aa37d00efdbd824b6b4dc4d09cea 2449464 libapache2-mod-php5_5.2.6.dfsg.1-1+lenny10_armel.deb f3f7214233ff80417fee7ab78bc6f844f9cfa3a5 2448390 libapache2-mod-php5filter_5.2.6.dfsg.1-1+lenny10_armel.deb 2783fb8ea4b4892f3973999da3b0b9a4c7b2f1b1 4849080 php5-cgi_5.2.6.dfsg.1-1+lenny10_armel.deb 4170d35154bb29c5dd1f89c72768c6832cf2fe8e 2440770 php5-cli_5.2.6.dfsg.1-1+lenny10_armel.deb 70084858ef6165a45de8cbfd4ae1df519e91116d 365980 php5-dev_5.2.6.dfsg.1-1+lenny10_armel.deb ceaa34284dbec53ed87e39f6eabf3597631ce708 12627388 php5-dbg_5.2.6.dfsg.1-1+lenny10_armel.deb 56561b3095151543ef579ba6a1ef779af5bffa30 24430 php5-curl_5.2.6.dfsg.1-1+lenny10_armel.deb 2a171d355556410679ab35e80dad811ea3f7fd23 35818 php5-gd_5.2.6.dfsg.1-1+lenny10_armel.deb bc2b82fcc612e67bac4bfdb6fc0712a84490bb3f 14698 php5-gmp_5.2.6.dfsg.1-1+lenny10_armel.deb 79d1787e014f981e9a76ccf176dfe9efca470a85 34450 php5-imap_5.2.6.dfsg.1-1+lenny10_armel.deb 37db50316f83b44231a10498a61ba86061721beb 18086 php5-ldap_5.2.6.dfsg.1-1+lenny10_armel.deb 68c6dbe18ffd8cf0dcb88fedd0cee09091206e88 14356 php5-mcrypt_5.2.6.dfsg.1-1+lenny10_armel.deb 5c288ed01f23b3ec84ceec43a94a21e4e6c6f5b5 4938 php5-mhash_5.2.6.dfsg.1-1+lenny10_armel.deb f74a8a95940d02a9f6ebe215649b719758049719 63358 php5-mysql_5.2.6.dfsg.1-1+lenny10_armel.deb c61121b176e92f5f605764e0e8b3229037594fe2 34312 php5-odbc_5.2.6.dfsg.1-1+lenny10_armel.deb d81c11d4e44321b889d350413aa49b036ab56625 51060 php5-pgsql_5.2.6.dfsg.1-1+lenny10_armel.deb 8dd28a3be9b23468105fb1b9ce0e8cea09943d39 8370 php5-pspell_5.2.6.dfsg.1-1+lenny10_armel.deb 952ad22e1ba0b853fed670c8d24d2353acfa3974 4706 php5-recode_5.2.6.dfsg.1-1+lenny10_armel.deb e2b5b928775db56adce2352934880b890ccf219b 11296 php5-snmp_5.2.6.dfsg.1-1+lenny10_armel.deb 70cfc289357cf51d676cab0c31e9ddf1dddaa7b3 36564 php5-sqlite_5.2.6.dfsg.1-1+lenny10_armel.deb 435b45dd27f3e37fd881471b8dbc85f7373d37ee 26400 php5-sybase_5.2.6.dfsg.1-1+lenny10_armel.deb dd1b561a66294411a897fcad93b5de48247f382e 16078 php5-tidy_5.2.6.dfsg.1-1+lenny10_armel.deb ed3fd63bdd8d61c02bd56b13337b247a3e4c0472 33922 php5-xmlrpc_5.2.6.dfsg.1-1+lenny10_armel.deb 33a7420020de0232a42638f02fd2639ac873a953 12302 php5-xsl_5.2.6.dfsg.1-1+lenny10_armel.deb Checksums-Sha256: fba01503f50de4b65f430b8b8f4393f7ffdebaf4bcb21a71d8bc6243f20c2f0a 366444 php5-common_5.2.6.dfsg.1-1+lenny10_armel.deb 9da510dfd854ca5cb67158638b9e82b626497d98edc067b443117eec845e7398 2449464 libapache2-mod-php5_5.2.6.dfsg.1-1+lenny10_armel.deb 434e712690761a1ad7b9b0eb953efd2c8df814a16fa1a827c3b724c5672c218f 2448390 libapache2-mod-php5filter_5.2.6.dfsg.1-1+lenny10_armel.deb b6849e78be94aed57d0ff4dd50119561bc1ee305d1015986daf26864ff99cef4 4849080 php5-cgi_5.2.6.dfsg.1-1+lenny10_armel.deb f7cd9fd5d37bfe2e55ce217d44c26f3010842f14f59c39cc9c458a82ff3dcc12 2440770 php5-cli_5.2.6.dfsg.1-1+lenny10_armel.deb 8ba83972e0b7ade67a5fee36e9d5aa216986600221d31289da8c04c8b35a8483 365980 php5-dev_5.2.6.dfsg.1-1+lenny10_armel.deb 298377320ccffdb1c7976a2c65be13517deb9a6ec028de6631286b9a357c89a2 12627388 php5-dbg_5.2.6.dfsg.1-1+lenny10_armel.deb c4aea39ac164f0b70386b8c5bd165201fc68b6ff8e5f1c78169b2fde1265238a 24430 php5-curl_5.2.6.dfsg.1-1+lenny10_armel.deb 0cf4a38d2169d733b83c67a530ba45176f443d086fa83f7eca1fa3f3f347c4a7 35818 php5-gd_5.2.6.dfsg.1-1+lenny10_armel.deb bbf67418dd4cb162067a69c4399c439f065875ff86b471dacca2f5a1d0c59a85 14698 php5-gmp_5.2.6.dfsg.1-1+lenny10_armel.deb 36a13da5222c995a03027c1e87cffc0ca74362a73ee8dabf0e696f9b09535dac 34450 php5-imap_5.2.6.dfsg.1-1+lenny10_armel.deb 209fa0118bb963f753a1d41388b65cb0a76a65dc25adf02a91342b942d37df53 18086 php5-ldap_5.2.6.dfsg.1-1+lenny10_armel.deb 98e56e1d4ce238af4b31a925fbab87ca93cc1d8474d75a191064d349640ac264 14356 php5-mcrypt_5.2.6.dfsg.1-1+lenny10_armel.deb 57c766c4a50067c85eb2285b561245dc739bb9f8df8135a7e70d982ded7c385d 4938 php5-mhash_5.2.6.dfsg.1-1+lenny10_armel.deb dc26ad5304601194ef43d864390d104f7c16df2a51aa9f245ebc438bb2662ea6 63358 php5-mysql_5.2.6.dfsg.1-1+lenny10_armel.deb 934ad4939463dd38fc129b8ffe541654d79eaaab45eaabc03f5d6c58f765b984 34312 php5-odbc_5.2.6.dfsg.1-1+lenny10_armel.deb fc14f09663c352942120d3e45aef1f133b7f72ca20bf3dde2182cf776a7ebd05 51060 php5-pgsql_5.2.6.dfsg.1-1+lenny10_armel.deb 2282242e3d31fccc3a61ab06ec0def4c4d5072371f9e98a491f854d3dca98480 8370 php5-pspell_5.2.6.dfsg.1-1+lenny10_armel.deb fce6101398de5568d25f23fa25aeaaa54bff7b46971e01407560634750b34548 4706 php5-recode_5.2.6.dfsg.1-1+lenny10_armel.deb 84695e09d697704b5c52165347b5005abf61d5b84ee3c6f1c58d28101e901043 11296 php5-snmp_5.2.6.dfsg.1-1+lenny10_armel.deb 66119a204073218a71550a662df27aaa114529b25d4add67e74310da68b8aff9 36564 php5-sqlite_5.2.6.dfsg.1-1+lenny10_armel.deb 68b9bb4d2c09f48e5d3b635bbdf262c64d4fd89c04f1a55d8c521879356707ba 26400 php5-sybase_5.2.6.dfsg.1-1+lenny10_armel.deb 9677e90c18dc780eb42360c263df08f5d26593cf2ae99b5d565a9eaccdb47f1d 16078 php5-tidy_5.2.6.dfsg.1-1+lenny10_armel.deb 457de2719a52e3539b6067132cbe97d17d98b3c1889e1384bebd5abb93efa392 33922 php5-xmlrpc_5.2.6.dfsg.1-1+lenny10_armel.deb 845da2c404c66d821399ebf20a2abd4c1f54beb9494ea2f985c0c0705ce5e0ca 12302 php5-xsl_5.2.6.dfsg.1-1+lenny10_armel.deb Files: 5a567d64ad6f0d786d499b6f922be664 366444 web optional php5-common_5.2.6.dfsg.1-1+lenny10_armel.deb b718ecd095bfda983c319cabbaf56764 2449464 web optional libapache2-mod-php5_5.2.6.dfsg.1-1+lenny10_armel.deb 241c84338c3bdfc345227dc61c9283db 2448390 web optional libapache2-mod-php5filter_5.2.6.dfsg.1-1+lenny10_armel.deb a63af3f790e2d3357ed3a9a315916156 4849080 web optional php5-cgi_5.2.6.dfsg.1-1+lenny10_armel.deb 17c8b7981db52ffbc1ab6151a3f45812 2440770 web optional php5-cli_5.2.6.dfsg.1-1+lenny10_armel.deb b0acf7c4d7d32d385c90f41040cb294c 365980 devel optional php5-dev_5.2.6.dfsg.1-1+lenny10_armel.deb bbdd540e339ecb90f5636bcf31c7e478 12627388 devel extra php5-dbg_5.2.6.dfsg.1-1+lenny10_armel.deb 988d573ec1fe18968d09efacfc05dc20 24430 web optional php5-curl_5.2.6.dfsg.1-1+lenny10_armel.deb 13b1d1ac99171704485d61270315b47a 35818 web optional php5-gd_5.2.6.dfsg.1-1+lenny10_armel.deb a7e390a7fcab69958d7a97b4d8eb2b2a 14698 web optional php5-gmp_5.2.6.dfsg.1-1+lenny10_armel.deb f1b4ffe5581dded548276db3f24a6b87 34450 web optional php5-imap_5.2.6.dfsg.1-1+lenny10_armel.deb a0046ec4faa6c689efb7f10d670e0eca 18086 web optional php5-ldap_5.2.6.dfsg.1-1+lenny10_armel.deb 0292dcaf005cde0c62c1eafc8c885390 14356 web optional php5-mcrypt_5.2.6.dfsg.1-1+lenny10_armel.deb c17426ac609155f97c48b61f43fe326e 4938 web optional php5-mhash_5.2.6.dfsg.1-1+lenny10_armel.deb 2ffec31832bd76e1445fe45475cc7c2f 63358 web optional php5-mysql_5.2.6.dfsg.1-1+lenny10_armel.deb c5ca0417d2b4f6f90a5080a2eb74c3c5 34312 web optional php5-odbc_5.2.6.dfsg.1-1+lenny10_armel.deb b375b680cbc73093b8679b6c02093a98 51060 web optional php5-pgsql_5.2.6.dfsg.1-1+lenny10_armel.deb c6809d682e51eaad62b48a62b3bb3ba9 8370 web optional php5-pspell_5.2.6.dfsg.1-1+lenny10_armel.deb 3e37bded1431ae21373142548392c336 4706 web optional php5-recode_5.2.6.dfsg.1-1+lenny10_armel.deb bcb5b53a673bc3e2c433dd9b47145942 11296 web optional php5-snmp_5.2.6.dfsg.1-1+lenny10_armel.deb b4245101e46a21cb30d718d51fd5390d 36564 web optional php5-sqlite_5.2.6.dfsg.1-1+lenny10_armel.deb becbaff1a6af5269c63fbb435278f113 26400 web optional php5-sybase_5.2.6.dfsg.1-1+lenny10_armel.deb 774a9bcaad27edbea08511ccbdb0915a 16078 web optional php5-tidy_5.2.6.dfsg.1-1+lenny10_armel.deb 4662e173467c6a62bef5dc67f111a3a6 33922 web optional php5-xmlrpc_5.2.6.dfsg.1-1+lenny10_armel.deb c987f21912657286d8e13639bbe1f9fb 12302 web optional php5-xsl_5.2.6.dfsg.1-1+lenny10_armel.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.11 (GNU/Linux) iEYEARECAAYFAk2E6oYACgkQYy49rUbZzlrysQCbBtuVXtxGsb3MF1jUt9ih3y72 zcMAn2Z9xaosN4IPNpwc2/BwxhvQsG/C =Z/YX -----END PGP SIGNATURE-----