php5 5.3.6-13ubuntu1 source package in Ubuntu

Changelog

php5 (5.3.6-13ubuntu1) oneiric; urgency=low

  * Merge from debian unstable.  Remaining changes:
    * Dropped firebird2.1-dev, libc-client-dev, libmcrypt-dev as it is in universe.
    * Dropped libcurl-dev not in the archive.
    * debian/control: replace build-depends on mysql-server with
      mysql-server-core-5.1 and mysql-client-5.1 to avoid upstart and
      mysql-server-5.1 postinst confusion with starting up multiple
      mysqlds listening on the same port.
    * Dropped php5-imap, php5-interbase, php5-mcrypt since we have versions
      already in universe.
    * Suggest php5-suhosin rather than recommends.
    * Dropped libonig-dev and libqgdbm since its in universe. (libonig MIR
      has been declined due to an inactive upstream. So this is probably
      a permanent change).
    * modulelist: Drop imap, interbase, sybase, and mcrypt.
    * debian/rules:
      * Dropped building of mcrypt, imap, and interbase.
      * Install apport hook for php5.
      * stop mysql instance on clean just in case we failed in tests
    * debian/control: Recommend php5-dev for php-pear.
    * debian/rules: --enable-pcntl for cgi as well.
    * debian/patches/temporary-path-fixes-for-multiarch.patch: as a stopgap
      for natty, patch the various config.m4 files for modules whose
      libraries have moved to the multiarch dir; we can't use --with-libdir
      yet because that requires all the build-deps to have moved.  Thanks to
      Jonathan Marsden for preparing this patch.
    * debian/patches/fpm-config.patch: Update php-fpm.conf(pool.d/con)
      to do initial chdir to / as suggest by Olaf van van der Spek
      to detect early problems if php5-fpm needs a write access to
      initial chdir.
    * SECURITY UPDATE: use-after-free vulnerability
      - debian/patches/php5-CVE-2011-1148.patch: improve reference
        counting
      - CVE-2011-1148
    * debian/rules: set DEB_HOST_MULTIARCH to enable 'debian/rules' for
      building.

php5 (5.3.6-13) unstable; urgency=low

  * Fix CVE-2011-2483: 8-bit character mishandling allows different
    password pairs to produce the same hash (Closes: #631347)
  * Add support for $2x$ identifier as blowfish variant in crypt.c to
    allow backward compatibility with old invalid hashes
  * Return fail string (*0) on invalid Blowfish salt rounds
  * Add NEWS item about incompatible blowfish hashes
  * Fix CVE-2011-1938: Stack-based buffer overflow in the socket_connect
    function in ext/sockets/sockets.c in PHP 5.3.3 through 5.3.6 might
    allow context-dependent attackers to execute arbitrary code via a
    long pathname for a UNIX socket.

php5 (5.3.6-12) unstable; urgency=low

  * Bump standards version to 3.9.2
  * Update cron.d code to even safer variant (Courtesy of Bob Proulx)
  * Small optimization in cron.d script (Courtesy of Marcus Cobden)
  * Add firebird2.1-dev option to allow backports
  * Pull (and fix broken patch) multiarch workaround from obuntu nattybuntu natty
   Add error message when phpeze is not found (Closes: #627937)
  * Enable pcntl extension for CGI builds (Closes: #627941), but
    disable all pcntl functions by default
  * File path injection vulnerability in RFC1867 File upload filename
    [CVE-2011-2202]
 -- Chuck Short <email address hidden>   Mon, 25 Jul 2011 19:14:12 +0100

Upload details

Uploaded by:
Chuck Short
Uploaded to:
Oneiric
Original maintainer:
Ubuntu Developers
Architectures:
any
Section:
php
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
php5_5.3.6.orig.tar.gz 13.7 MiB 521a9d140b4cab324aeceed31409a797de20680842071016d60cc5ae3cc9462e
php5_5.3.6-13ubuntu1.diff.gz 198.3 KiB 0d5ee5ceb20c169ccab3fe028055086d3daa31e39f40858e049f8f92734e9c29
php5_5.3.6-13ubuntu1.dsc 2.6 KiB 19656ca3ad823cf27fde9c3e239ef99a3d1b2841e4fa28c0da5ae75129a11bc9

View changes file

Binary packages built by this source

libapache2-mod-php5: No summary available for libapache2-mod-php5 in ubuntu oneiric.

No description available for libapache2-mod-php5 in ubuntu oneiric.

libapache2-mod-php5filter: No summary available for libapache2-mod-php5filter in ubuntu oneiric.

No description available for libapache2-mod-php5filter in ubuntu oneiric.

php-pear: No summary available for php-pear in ubuntu oneiric.

No description available for php-pear in ubuntu oneiric.

php5: No summary available for php5 in ubuntu oneiric.

No description available for php5 in ubuntu oneiric.

php5-cgi: No summary available for php5-cgi in ubuntu oneiric.

No description available for php5-cgi in ubuntu oneiric.

php5-cli: No summary available for php5-cli in ubuntu oneiric.

No description available for php5-cli in ubuntu oneiric.

php5-common: No summary available for php5-common in ubuntu oneiric.

No description available for php5-common in ubuntu oneiric.

php5-curl: No summary available for php5-curl in ubuntu oneiric.

No description available for php5-curl in ubuntu oneiric.

php5-dbg: No summary available for php5-dbg in ubuntu oneiric.

No description available for php5-dbg in ubuntu oneiric.

php5-dev: No summary available for php5-dev in ubuntu oneiric.

No description available for php5-dev in ubuntu oneiric.

php5-enchant: No summary available for php5-enchant in ubuntu oneiric.

No description available for php5-enchant in ubuntu oneiric.

php5-fpm: No summary available for php5-fpm in ubuntu oneiric.

No description available for php5-fpm in ubuntu oneiric.

php5-gd: No summary available for php5-gd in ubuntu oneiric.

No description available for php5-gd in ubuntu oneiric.

php5-gmp: No summary available for php5-gmp in ubuntu oneiric.

No description available for php5-gmp in ubuntu oneiric.

php5-intl: No summary available for php5-intl in ubuntu oneiric.

No description available for php5-intl in ubuntu oneiric.

php5-ldap: No summary available for php5-ldap in ubuntu oneiric.

No description available for php5-ldap in ubuntu oneiric.

php5-mysql: No summary available for php5-mysql in ubuntu oneiric.

No description available for php5-mysql in ubuntu oneiric.

php5-odbc: No summary available for php5-odbc in ubuntu oneiric.

No description available for php5-odbc in ubuntu oneiric.

php5-pgsql: No summary available for php5-pgsql in ubuntu oneiric.

No description available for php5-pgsql in ubuntu oneiric.

php5-pspell: No summary available for php5-pspell in ubuntu oneiric.

No description available for php5-pspell in ubuntu oneiric.

php5-recode: No summary available for php5-recode in ubuntu oneiric.

No description available for php5-recode in ubuntu oneiric.

php5-snmp: No summary available for php5-snmp in ubuntu oneiric.

No description available for php5-snmp in ubuntu oneiric.

php5-sqlite: No summary available for php5-sqlite in ubuntu oneiric.

No description available for php5-sqlite in ubuntu oneiric.

php5-sybase: No summary available for php5-sybase in ubuntu oneiric.

No description available for php5-sybase in ubuntu oneiric.

php5-tidy: No summary available for php5-tidy in ubuntu oneiric.

No description available for php5-tidy in ubuntu oneiric.

php5-xmlrpc: No summary available for php5-xmlrpc in ubuntu oneiric.

No description available for php5-xmlrpc in ubuntu oneiric.

php5-xsl: No summary available for php5-xsl in ubuntu oneiric.

No description available for php5-xsl in ubuntu oneiric.