php5 5.3.6-13ubuntu1 source package in Ubuntu
Changelog
php5 (5.3.6-13ubuntu1) oneiric; urgency=low * Merge from debian unstable. Remaining changes: * Dropped firebird2.1-dev, libc-client-dev, libmcrypt-dev as it is in universe. * Dropped libcurl-dev not in the archive. * debian/control: replace build-depends on mysql-server with mysql-server-core-5.1 and mysql-client-5.1 to avoid upstart and mysql-server-5.1 postinst confusion with starting up multiple mysqlds listening on the same port. * Dropped php5-imap, php5-interbase, php5-mcrypt since we have versions already in universe. * Suggest php5-suhosin rather than recommends. * Dropped libonig-dev and libqgdbm since its in universe. (libonig MIR has been declined due to an inactive upstream. So this is probably a permanent change). * modulelist: Drop imap, interbase, sybase, and mcrypt. * debian/rules: * Dropped building of mcrypt, imap, and interbase. * Install apport hook for php5. * stop mysql instance on clean just in case we failed in tests * debian/control: Recommend php5-dev for php-pear. * debian/rules: --enable-pcntl for cgi as well. * debian/patches/temporary-path-fixes-for-multiarch.patch: as a stopgap for natty, patch the various config.m4 files for modules whose libraries have moved to the multiarch dir; we can't use --with-libdir yet because that requires all the build-deps to have moved. Thanks to Jonathan Marsden for preparing this patch. * debian/patches/fpm-config.patch: Update php-fpm.conf(pool.d/con) to do initial chdir to / as suggest by Olaf van van der Spek to detect early problems if php5-fpm needs a write access to initial chdir. * SECURITY UPDATE: use-after-free vulnerability - debian/patches/php5-CVE-2011-1148.patch: improve reference counting - CVE-2011-1148 * debian/rules: set DEB_HOST_MULTIARCH to enable 'debian/rules' for building. php5 (5.3.6-13) unstable; urgency=low * Fix CVE-2011-2483: 8-bit character mishandling allows different password pairs to produce the same hash (Closes: #631347) * Add support for $2x$ identifier as blowfish variant in crypt.c to allow backward compatibility with old invalid hashes * Return fail string (*0) on invalid Blowfish salt rounds * Add NEWS item about incompatible blowfish hashes * Fix CVE-2011-1938: Stack-based buffer overflow in the socket_connect function in ext/sockets/sockets.c in PHP 5.3.3 through 5.3.6 might allow context-dependent attackers to execute arbitrary code via a long pathname for a UNIX socket. php5 (5.3.6-12) unstable; urgency=low * Bump standards version to 3.9.2 * Update cron.d code to even safer variant (Courtesy of Bob Proulx) * Small optimization in cron.d script (Courtesy of Marcus Cobden) * Add firebird2.1-dev option to allow backports * Pull (and fix broken patch) multiarch workaround from obuntu nattybuntu natty Add error message when phpeze is not found (Closes: #627937) * Enable pcntl extension for CGI builds (Closes: #627941), but disable all pcntl functions by default * File path injection vulnerability in RFC1867 File upload filename [CVE-2011-2202] -- Chuck Short <email address hidden> Mon, 25 Jul 2011 19:14:12 +0100
Upload details
- Uploaded by:
- Chuck Short
- Uploaded to:
- Oneiric
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any
- Section:
- php
- Urgency:
- Low Urgency
See full publishing history Publishing
Series | Published | Component | Section |
---|
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
php5_5.3.6.orig.tar.gz | 13.7 MiB | 521a9d140b4cab324aeceed31409a797de20680842071016d60cc5ae3cc9462e |
php5_5.3.6-13ubuntu1.diff.gz | 198.3 KiB | 0d5ee5ceb20c169ccab3fe028055086d3daa31e39f40858e049f8f92734e9c29 |
php5_5.3.6-13ubuntu1.dsc | 2.6 KiB | 19656ca3ad823cf27fde9c3e239ef99a3d1b2841e4fa28c0da5ae75129a11bc9 |
Available diffs
Binary packages built by this source
- libapache2-mod-php5: No summary available for libapache2-mod-php5 in ubuntu oneiric.
No description available for libapache2-mod-php5 in ubuntu oneiric.
- libapache2-mod-php5filter: No summary available for libapache2-mod-php5filter in ubuntu oneiric.
No description available for libapache2-
mod-php5filter in ubuntu oneiric.
- php-pear: No summary available for php-pear in ubuntu oneiric.
No description available for php-pear in ubuntu oneiric.
- php5: No summary available for php5 in ubuntu oneiric.
No description available for php5 in ubuntu oneiric.
- php5-cgi: No summary available for php5-cgi in ubuntu oneiric.
No description available for php5-cgi in ubuntu oneiric.
- php5-cli: No summary available for php5-cli in ubuntu oneiric.
No description available for php5-cli in ubuntu oneiric.
- php5-common: No summary available for php5-common in ubuntu oneiric.
No description available for php5-common in ubuntu oneiric.
- php5-curl: No summary available for php5-curl in ubuntu oneiric.
No description available for php5-curl in ubuntu oneiric.
- php5-dbg: No summary available for php5-dbg in ubuntu oneiric.
No description available for php5-dbg in ubuntu oneiric.
- php5-dev: No summary available for php5-dev in ubuntu oneiric.
No description available for php5-dev in ubuntu oneiric.
- php5-enchant: No summary available for php5-enchant in ubuntu oneiric.
No description available for php5-enchant in ubuntu oneiric.
- php5-fpm: No summary available for php5-fpm in ubuntu oneiric.
No description available for php5-fpm in ubuntu oneiric.
- php5-gd: No summary available for php5-gd in ubuntu oneiric.
No description available for php5-gd in ubuntu oneiric.
- php5-gmp: No summary available for php5-gmp in ubuntu oneiric.
No description available for php5-gmp in ubuntu oneiric.
- php5-intl: No summary available for php5-intl in ubuntu oneiric.
No description available for php5-intl in ubuntu oneiric.
- php5-ldap: No summary available for php5-ldap in ubuntu oneiric.
No description available for php5-ldap in ubuntu oneiric.
- php5-mysql: No summary available for php5-mysql in ubuntu oneiric.
No description available for php5-mysql in ubuntu oneiric.
- php5-odbc: No summary available for php5-odbc in ubuntu oneiric.
No description available for php5-odbc in ubuntu oneiric.
- php5-pgsql: No summary available for php5-pgsql in ubuntu oneiric.
No description available for php5-pgsql in ubuntu oneiric.
- php5-pspell: No summary available for php5-pspell in ubuntu oneiric.
No description available for php5-pspell in ubuntu oneiric.
- php5-recode: No summary available for php5-recode in ubuntu oneiric.
No description available for php5-recode in ubuntu oneiric.
- php5-snmp: No summary available for php5-snmp in ubuntu oneiric.
No description available for php5-snmp in ubuntu oneiric.
- php5-sqlite: No summary available for php5-sqlite in ubuntu oneiric.
No description available for php5-sqlite in ubuntu oneiric.
- php5-sybase: No summary available for php5-sybase in ubuntu oneiric.
No description available for php5-sybase in ubuntu oneiric.
- php5-tidy: No summary available for php5-tidy in ubuntu oneiric.
No description available for php5-tidy in ubuntu oneiric.
- php5-xmlrpc: No summary available for php5-xmlrpc in ubuntu oneiric.
No description available for php5-xmlrpc in ubuntu oneiric.
- php5-xsl: No summary available for php5-xsl in ubuntu oneiric.
No description available for php5-xsl in ubuntu oneiric.