-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.8 Date: Mon, 7 Jan 2013 20:52:00 +0200 Source: zendframework Binary: zendframework zendframework-bin Architecture: source all Version: 1.10.6-1squeeze2 Distribution: squeeze-security Urgency: high Maintainer: Frank Habermann <lordlamer@lordlamer.de> Changed-By: Frank Habermann <lordlamer@lordlamer.de> Description: zendframework - powerful PHP framework zendframework-bin - binary scripts for zendframework Closes: 696483 Changes: zendframework (1.10.6-1squeeze2) squeeze-security; urgency=high . * Fix for CVE-2012-5657: remove the XXE vector by calling libxml_disable_entity_loader() before attempting to parse the feed via DOMDocument::loadXML() (Closes: #696483). Checksums-Sha1: 09234307c972f5f337a7ebdb9d72cf7d8ad984d9 1411 zendframework_1.10.6-1squeeze2.dsc feb258fe87a3916135ff51a29b90dbcb5a024c4a 6158 zendframework_1.10.6-1squeeze2.diff.gz 1bd1be2e64d8ccb868bd1ccc944128adf4854f4d 3591838 zendframework_1.10.6-1squeeze2_all.deb 803e190d8d39a08588c63d95465f2227e69fe713 9404 zendframework-bin_1.10.6-1squeeze2_all.deb Checksums-Sha256: 962b9dd71e0fc975af49d2c832495645c3406d2a3fd699b3ea13f4baf7c55965 1411 zendframework_1.10.6-1squeeze2.dsc df9949860966dd09bcb1a2735139fa5808366bbbbc4f72c6ab9d46a734750b8a 6158 zendframework_1.10.6-1squeeze2.diff.gz adee482bf97618566f031c30dfadabb55513e385d3347a1a0ed2251f13d6257b 3591838 zendframework_1.10.6-1squeeze2_all.deb 74017cd2ffe721b096e88c7b8919d353b8b10c2a69710c79f4b30f6d28eb8c0d 9404 zendframework-bin_1.10.6-1squeeze2_all.deb Files: 4a99cde76467b5ae4bc1a3e699454b60 1411 web optional zendframework_1.10.6-1squeeze2.dsc 64ac7a0e20dc9e5be0b6dea96f6a92e9 6158 web optional zendframework_1.10.6-1squeeze2.diff.gz 7a48bb70ce4aefa0e59fb6d8b98e61ef 3591838 web optional zendframework_1.10.6-1squeeze2_all.deb 5a9c6bbc371ad6a408f029fb152d6982 9404 web optional zendframework-bin_1.10.6-1squeeze2_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.10 (GNU/Linux) iQEcBAEBAgAGBQJQ679oAAoJEL97/wQC1SS+1jgH/j0zT7K/5DMssZZoj0aaRTiJ gXcRunCrZB+qT56Km9JZ8VCjsiafhPO/2mfMrbBXsGHfBKvX/kMobFbNPjh2Cvrf w1XLuhMPOHTyOt/MGXWurtNqQqWdokwJ8GmMDPAmEgjmSB4j6HlOYni1NDInRizw OUXSHqueFaqX7FuKrSPyhm6mjUfATWdY8bbEJf0eWIjnICb8TRvR3fVe8PnxK89q 5i4G+alsy5XggFYKe1xwrLlHt3e1BoRvUZJn/ATN2Flvd7GphQzH4/OwpiyHFmYT bGkUwJVFAc94tNVcsk/tV1T3DhUTFtHH8Zm3dLw6+TEXgQL1zNfJ/g0Cqp9N/lM= =12Ip -----END PGP SIGNATURE-----