-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 30 Jun 2014 14:55:00 +0200 Source: php5 Binary: php5 php5-common libapache2-mod-php5 libapache2-mod-php5filter php5-cgi php5-cli php5-fpm libphp5-embed php5-dev php5-dbg php-pear php5-curl php5-enchant php5-gd php5-gmp php5-imap php5-interbase php5-intl php5-ldap php5-mcrypt php5-mysql php5-mysqlnd php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl Architecture: source all amd64 Version: 5.4.4-14+deb7u12 Distribution: stable-security Urgency: high Maintainer: Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org> Changed-By: Ondřej Surý <ondrej@debian.org> Description: libapache2-mod-php5 - server-side, HTML-embedded scripting language (Apache 2 module) libapache2-mod-php5filter - server-side, HTML-embedded scripting language (apache 2 filter mo libphp5-embed - HTML-embedded scripting language (Embedded SAPI library) php-pear - PEAR - PHP Extension and Application Repository php5 - server-side, HTML-embedded scripting language (metapackage) php5-cgi - server-side, HTML-embedded scripting language (CGI binary) php5-cli - command-line interpreter for the php5 scripting language php5-common - Common files for packages built from the php5 source php5-curl - CURL module for php5 php5-dbg - Debug symbols for PHP5 php5-dev - Files for PHP5 module development php5-enchant - Enchant module for php5 php5-fpm - server-side, HTML-embedded scripting language (FPM-CGI binary) php5-gd - GD module for php5 php5-gmp - GMP module for php5 php5-imap - IMAP module for php5 php5-interbase - interbase/firebird module for php5 php5-intl - internationalisation module for php5 php5-ldap - LDAP module for php5 php5-mcrypt - MCrypt module for php5 php5-mysql - MySQL module for php5 php5-mysqlnd - MySQL module for php5 (Native Driver) php5-odbc - ODBC module for php5 php5-pgsql - PostgreSQL module for php5 php5-pspell - pspell module for php5 php5-recode - recode module for php5 php5-snmp - SNMP module for php5 php5-sqlite - SQLite module for php5 php5-sybase - Sybase / MS SQL Server module for php5 php5-tidy - tidy module for php5 php5-xmlrpc - XML-RPC module for php5 php5-xsl - XSL module for php5 Changes: php5 (5.4.4-14+deb7u12) stable-security; urgency=high . [ William Dauchy ] * upstream fix: $env can be destructively changed. * upstream fix: copy() arginfo incorrect since 5.4 * upstream fix: Out of memory on command stream_get_contents * upstream fix: stream_socket_server() creates wrong Abstract Namespace UNIX sockets * upstream fix: exit in stream filter produces segfault * upstream fix: fpassthru broken * upstream fix: Incorrect object comparison with inheritance * upstream fix: openssl_seal() memory leak * upstream fix: Segfault in mysqli_stmt::bind_result() when link closed * upstream fix: Segmentation fault after memory_limit . [ Ondřej Surý ] * Pull upstream fix for phpinfo() Type Confusion Information Leak (PHP#67498) * [CVE-2014-3515]: fix unserialize() SPL ArrayObject / SPLObjectStorage Type Confusion * [CVE-2014-0207]: fileinfo: cdf_read_short_sector insufficient boundary check * [CVE-2014-3478]: fileinfo: mconvert incorrect handling of truncated pascal string size * [CVE-2014-3479]: fileinfo: cdf_check_stream_offset insufficient boundary check * [CVE-2014-3480]: fileinfo: cdf_count_chain insufficient boundary check * [CVE-2014-3487]: fileinfo: cdf_read_property_info insufficient boundary check Checksums-Sha1: c907a797173603fb1a71011f80a3e7db77ea31cc 4418 php5_5.4.4-14+deb7u12.dsc 01ef053cfc5e8b70bb21680c278827e414822df9 270701 php5_5.4.4-14+deb7u12.diff.gz a9940912fe11bdd6d52af832636992e51fb6ec25 1028 php5_5.4.4-14+deb7u12_all.deb d52b602cb0635a85fd09da3d00f523793d4c94c6 369220 php-pear_5.4.4-14+deb7u12_all.deb 3e49b57061f1dd5b7fd855a853bff4cf60e2f4a2 591518 php5-common_5.4.4-14+deb7u12_amd64.deb e36b8bcde9fd44f7b2701b4fedf370c7db2cf40a 2669542 libapache2-mod-php5_5.4.4-14+deb7u12_amd64.deb 0523737d565202604ab2ceb60e9ecc7fe2e18b25 2667920 libapache2-mod-php5filter_5.4.4-14+deb7u12_amd64.deb 6225d03b442a85a109795bad6d9a386db352559e 5108474 php5-cgi_5.4.4-14+deb7u12_amd64.deb af2ce78f9bb479df0342c8634ce0a1ecaeb52b2e 2559584 php5-cli_5.4.4-14+deb7u12_amd64.deb 342bee330917807c7d0d4a4a228fc85e19c3eebc 2592886 php5-fpm_5.4.4-14+deb7u12_amd64.deb f7b6855a673773266993f7ec3a30e80e8965ea0e 2665832 libphp5-embed_5.4.4-14+deb7u12_amd64.deb 13aaa5d1947bc29747d1748b1451b12bdf7f3f3e 497638 php5-dev_5.4.4-14+deb7u12_amd64.deb f0c63110557e167bd5018e20f2b4118c4fb55a78 15982070 php5-dbg_5.4.4-14+deb7u12_amd64.deb 18cf9d9131f5ed5514c1c0952f2624cb531bd54c 29178 php5-curl_5.4.4-14+deb7u12_amd64.deb b345d082cf1e9a58341a429e5a5cdce4d41332f8 9938 php5-enchant_5.4.4-14+deb7u12_amd64.deb efec60c72ae1039e9da53cf37dcfe2ead1ce5653 35714 php5-gd_5.4.4-14+deb7u12_amd64.deb 7c388c07bf700a098f85ff5f675ff998fcb1559a 17172 php5-gmp_5.4.4-14+deb7u12_amd64.deb b35006904de7b28f1fcd09356d5c6df5b9d5a741 35604 php5-imap_5.4.4-14+deb7u12_amd64.deb 66e15263731a7af37326a668394a6c35f8981b36 49598 php5-interbase_5.4.4-14+deb7u12_amd64.deb 682f471baf3cfbd2978f8a455158c576b0d0a9fb 71970 php5-intl_5.4.4-14+deb7u12_amd64.deb 5c4a834718bc754333421493e89c8dcc856b2480 21770 php5-ldap_5.4.4-14+deb7u12_amd64.deb 059818d70f875278f5ea490cc5192bfa193c676b 16096 php5-mcrypt_5.4.4-14+deb7u12_amd64.deb 8411012596755a12eab3d351655c83e677a5a70b 80934 php5-mysql_5.4.4-14+deb7u12_amd64.deb 36f084300199acba9c59688cacb8c3fd040712bd 162742 php5-mysqlnd_5.4.4-14+deb7u12_amd64.deb 69cbfa00288396db33e8c49e13568db898853f1b 36400 php5-odbc_5.4.4-14+deb7u12_amd64.deb 531e8d2cf08d564a3aa7d123f3ee2ec8caaea102 61074 php5-pgsql_5.4.4-14+deb7u12_amd64.deb faabdd892f71a8acc3a41e84364dde8dc8e4b50f 8912 php5-pspell_5.4.4-14+deb7u12_amd64.deb 9114ba989b914cc67c4c555a5896b50d1f60db06 5208 php5-recode_5.4.4-14+deb7u12_amd64.deb e718fb4532b62b9cba3590ca926ee111d8617a8c 21818 php5-snmp_5.4.4-14+deb7u12_amd64.deb 56fe7766956241ab93c8883e0b084e5ae1b6f89b 30350 php5-sqlite_5.4.4-14+deb7u12_amd64.deb ff861834356d280ab5b8aa639cd2739fb079f145 28924 php5-sybase_5.4.4-14+deb7u12_amd64.deb 3d75ec6f3cf0d4f9b39b3388422a4a62a707dc74 19610 php5-tidy_5.4.4-14+deb7u12_amd64.deb b525d990041f2882b36b4b0670a59cf620c6b14b 36298 php5-xmlrpc_5.4.4-14+deb7u12_amd64.deb 4cfb9645e5b5f8afd705875bd0fdd5d9bc5f5be8 15424 php5-xsl_5.4.4-14+deb7u12_amd64.deb Checksums-Sha256: dea9de060745989a238483727ef51673d30b359d5c77b1e9668c8413b59b5c0f 4418 php5_5.4.4-14+deb7u12.dsc beedf5526b47d327ad13d4a87a0cd2b64cacc4997b37811530c56ac45dec4e7c 270701 php5_5.4.4-14+deb7u12.diff.gz bf82853ec3b507b329b06594250e15dc02df29de404dc84cd7ed1f8f49406d67 1028 php5_5.4.4-14+deb7u12_all.deb e5b71840b4cc6070922c2e8bfd737f3f1888bd74dd97a5a64863e0160c053d3c 369220 php-pear_5.4.4-14+deb7u12_all.deb 390f6036c73bc334da848720378808c08cf44d4921022c0b02e0d49485889f01 591518 php5-common_5.4.4-14+deb7u12_amd64.deb ba2a5dc6a26f69ead4c8f8e74b7523bbe5ca53af694845330ca24c5a4618698a 2669542 libapache2-mod-php5_5.4.4-14+deb7u12_amd64.deb 2a0b99b82ad52488518c5f4c603ff701e3c65b6bc83d7410b194692cdc80d539 2667920 libapache2-mod-php5filter_5.4.4-14+deb7u12_amd64.deb a2a4de4a012a9a2c858482521f589aefdb047b1dd410a4241d358b4ef1782de8 5108474 php5-cgi_5.4.4-14+deb7u12_amd64.deb c3420c3a4d9eb7aa962b2074192e6954253a4ac60da17cc8f82ce18dc38b6d6c 2559584 php5-cli_5.4.4-14+deb7u12_amd64.deb edd245783976ba0a149506cd359f07ee884e659157bc1846e1b14d176a34109e 2592886 php5-fpm_5.4.4-14+deb7u12_amd64.deb 5694b08ab32f3fc59898232b3efd4b0143effb33b14ae4da0457a2496fb5e031 2665832 libphp5-embed_5.4.4-14+deb7u12_amd64.deb 4b33187d33d06c8b5072eaa0c8a3722a6a73c984680de17d2b648abb7c4d1f3d 497638 php5-dev_5.4.4-14+deb7u12_amd64.deb 2b62fce9d7a87e36025113d1c4719b02a39c4e2d9f73b14a85be9767add9e6ec 15982070 php5-dbg_5.4.4-14+deb7u12_amd64.deb d182917f6147450699e847612ca30c22bcc7febd528716f59f8ed9c2d0d4a2d4 29178 php5-curl_5.4.4-14+deb7u12_amd64.deb fea6eecf1b90d34e70524fedd9d8b382132049f28eecc2b2c98902540ad2789a 9938 php5-enchant_5.4.4-14+deb7u12_amd64.deb 50fcc176b75f0033525457b30adb44e719c92b6742dee22044f0440187eb0113 35714 php5-gd_5.4.4-14+deb7u12_amd64.deb f977596c9883cbb991d04d19067bc86aedad3ef79841cad32c559332a18ccc0b 17172 php5-gmp_5.4.4-14+deb7u12_amd64.deb e00011a0197ebe06dc860cdbee068d67514c00f66ca38b94280c58834fab1b59 35604 php5-imap_5.4.4-14+deb7u12_amd64.deb 705b0b10b44d51aa4dfa99c6b8dbe484eec3ff2fbb8189b310d4c6881cf8e110 49598 php5-interbase_5.4.4-14+deb7u12_amd64.deb 23f352f0db1a15308eba569f32a09603de091818d7fc0ec2cebcd6b470f60b07 71970 php5-intl_5.4.4-14+deb7u12_amd64.deb 3f0ef0873e9e813cc76e181bdf299edb039fb4c55c4022ecfb499ec7c3dcfd37 21770 php5-ldap_5.4.4-14+deb7u12_amd64.deb a32bb3300f2e12062b671860b4bc929424b1fba396ac7bd8db8ff317e8b5a39b 16096 php5-mcrypt_5.4.4-14+deb7u12_amd64.deb b16c43a52a6f71caa37514b0cab736b74ca34e5b14ef6f7f2df16c94a40a1b2e 80934 php5-mysql_5.4.4-14+deb7u12_amd64.deb fbc479296b7faa09147e8be35329bf3d3e6c7ac5f54704aa598ef3c67bf910f9 162742 php5-mysqlnd_5.4.4-14+deb7u12_amd64.deb 38cb13c901913dc5aad1bbb67fb16f59cca367ebbf44af84bd3482875c68e9cc 36400 php5-odbc_5.4.4-14+deb7u12_amd64.deb c61176088a28df6a08787198f05c8483fc07d871dbe06457bdcb8b1641cec043 61074 php5-pgsql_5.4.4-14+deb7u12_amd64.deb 5591958852a3297d6d71fc6b46582e21409b1f5b15ff6b46b77735af8195000c 8912 php5-pspell_5.4.4-14+deb7u12_amd64.deb 3c6904113684189808aeec7a84b82b595fd014b34f62df64663182217f88829d 5208 php5-recode_5.4.4-14+deb7u12_amd64.deb d797777c544d7493983978cf63ba3165e8c48a9e1e35eab5780a9a9ec9ccd69c 21818 php5-snmp_5.4.4-14+deb7u12_amd64.deb 5cdcc7683c0afea91919888ec9b037d4030a3653c6068e822c5bb651b2c96c09 30350 php5-sqlite_5.4.4-14+deb7u12_amd64.deb 551f03a8322e36f19140a005c9b4c858a898c435b539fc3d8de73dc5a1dfb67f 28924 php5-sybase_5.4.4-14+deb7u12_amd64.deb 8b5246950db3990a3e54aab9c48caf20adb5b3d8129272d05fac20b545b4a1b1 19610 php5-tidy_5.4.4-14+deb7u12_amd64.deb af86e209d9336cdbce48957da7579d4a4e4d47398f8c48996bbe5b9908472f14 36298 php5-xmlrpc_5.4.4-14+deb7u12_amd64.deb b980ba3b35b7d04501dbacfaecbe6d6b7ac5cbde2e52fd3abbcb622918b30b8a 15424 php5-xsl_5.4.4-14+deb7u12_amd64.deb Files: e7d5274936f77ef57c465782a6ed6d03 4418 php optional php5_5.4.4-14+deb7u12.dsc fb2444052cf5168b73e3f84f12235116 270701 php optional php5_5.4.4-14+deb7u12.diff.gz 6f1bd7a090051442edcedcfea3c9e44a 1028 php optional php5_5.4.4-14+deb7u12_all.deb 055f4692a2297a3738d6a276f522bc03 369220 php optional php-pear_5.4.4-14+deb7u12_all.deb b22ff78853e2a3d85f6b535188b1f5e3 591518 php optional php5-common_5.4.4-14+deb7u12_amd64.deb 2d596e388ccab2948fb570eeee4178ee 2669542 httpd optional libapache2-mod-php5_5.4.4-14+deb7u12_amd64.deb dc158a6ea624392f3b43cbf84a88a7da 2667920 httpd extra libapache2-mod-php5filter_5.4.4-14+deb7u12_amd64.deb f6d085d0aab8860a29e324cdc7d97946 5108474 php optional php5-cgi_5.4.4-14+deb7u12_amd64.deb 637627bb701239ebe12c625af16b7a5e 2559584 php optional php5-cli_5.4.4-14+deb7u12_amd64.deb 0381be47c2f9926a2a69103fad41750e 2592886 php optional php5-fpm_5.4.4-14+deb7u12_amd64.deb b368baf40bb1d75fda468613c13715df 2665832 php optional libphp5-embed_5.4.4-14+deb7u12_amd64.deb 035cb758eb82e1a25482746c8b93c647 497638 php optional php5-dev_5.4.4-14+deb7u12_amd64.deb 09356e6c85b0e06eb4b43d4de087f4ce 15982070 debug extra php5-dbg_5.4.4-14+deb7u12_amd64.deb b0874db8854760a6a441ae146bedbd60 29178 php optional php5-curl_5.4.4-14+deb7u12_amd64.deb a7da15231e086b00fc55c77f12c06bbb 9938 php optional php5-enchant_5.4.4-14+deb7u12_amd64.deb edd287ec58a51e336df7cdc825382dd4 35714 php optional php5-gd_5.4.4-14+deb7u12_amd64.deb c6429ce236f3d01b1f1145cda762b24e 17172 php optional php5-gmp_5.4.4-14+deb7u12_amd64.deb 2f5933f4a2ab45514099e93946a4e584 35604 php optional php5-imap_5.4.4-14+deb7u12_amd64.deb 32d5a62fe9c039933335a98afc762b51 49598 php optional php5-interbase_5.4.4-14+deb7u12_amd64.deb aa414a3d7ecf13a5d7ae4b34b11ab58d 71970 php optional php5-intl_5.4.4-14+deb7u12_amd64.deb 5272ff221ea0074ddaa9ada249b9e576 21770 php optional php5-ldap_5.4.4-14+deb7u12_amd64.deb f21223095901faed252aa01023a9bc1b 16096 php optional php5-mcrypt_5.4.4-14+deb7u12_amd64.deb 0e06e2702d3628e433bb181a75352026 80934 php optional php5-mysql_5.4.4-14+deb7u12_amd64.deb f992494fd4f529e62ee7a6627f77da92 162742 php extra php5-mysqlnd_5.4.4-14+deb7u12_amd64.deb 49378ff312e450fcc9c93809a841ca1c 36400 php optional php5-odbc_5.4.4-14+deb7u12_amd64.deb 72968baea002c9643363de14f30da0cf 61074 php optional php5-pgsql_5.4.4-14+deb7u12_amd64.deb f802d4ec2788f7cec2088c535865dc42 8912 php optional php5-pspell_5.4.4-14+deb7u12_amd64.deb e9d99f1baed1789d06cecabbacee6888 5208 php optional php5-recode_5.4.4-14+deb7u12_amd64.deb 22ab7393007d854a6cacd95bba4c0bac 21818 php optional php5-snmp_5.4.4-14+deb7u12_amd64.deb 14176421dd9a1af1d101644edba64527 30350 php optional php5-sqlite_5.4.4-14+deb7u12_amd64.deb ffff02c1f73789eb2ba1575d0e0a8dd3 28924 php optional php5-sybase_5.4.4-14+deb7u12_amd64.deb 6b432c102ee64f28440ea10f6dc0f685 19610 php optional php5-tidy_5.4.4-14+deb7u12_amd64.deb 3cb5ca2b74dc15507368d05530996a9e 36298 php optional php5-xmlrpc_5.4.4-14+deb7u12_amd64.deb c33be3a4bbfcca03af362efb75ea366e 15424 php optional php5-xsl_5.4.4-14+deb7u12_amd64.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) iQIcBAEBCAAGBQJTsWgVAAoJEAyZtw70/LsHmbUQANuX+Ip0pP6v8gYz1hKQ0Qkw cX7puO/JV3XfeQIvyVSzpFnWRAvYk5FKFSGJ+3we8bKnHSqZjZRJYdtlVH50hEcO wTqDZjmjXOvG87aym3Fte6omnV1FMHPII6FbnfgfyAQorCKUYEl4vC2q5/txers7 E4shS/qO5q0O1MnqXSc+qJswPaTXapfTJeGv0fw7ZZ8ARGChzDT+oTtMz3Owib9G 7ewnXSTsKrjQv5+xXDqdn16Ad/RihnIaA4ejL70q8PysXiL7h/ImCBO0JQdPWMfW nLArw7PbZ9bSJ6b6XPSoj0LYYh+lzDOEiOg6aPfdGN2OYl/4cCNrz5vSjEVQzyGM 67ugMF7U14jhEjPLNoV3wFek7X2PwnZ6p/MlpuLnSU1CWpEQe8lHGNA6MoXlg3Sa KGU/XjvIFPSFQsekQVgqpvvPPEDsZ+s9P05xyB6XL9M0ZcfV7/4vytyt/kKX+HFo eq+yU6qE2yZ23UBXmpPbH65QUr2ujp/dV1rST1aVIQrIcp/uE674geYdtBFcYn5K 1fOMeGliTREt3WwSOo1jXjOdaLM3NjaegJP7UGueiaODyeehFFRmvA2DnKxVfUbf MDoDbXwN0qi2C+GeZaV3sy6ucphxC6oCBFVehdsYrVUusInrH/NJ3jYeXcuGCF/4 MJ99MEpr+WR19D2BtOLB =2m+Q -----END PGP SIGNATURE-----