-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Wed, 15 Apr 2009 13:41:11 +0000 Source: php-json-ext Binary: php4-json php5-json Architecture: source i386 Version: 1.2.1-3.2+etch1 Distribution: oldstable-security Urgency: high Maintainer: Pierre Habouzit <madcoder@debian.org> Changed-By: Steffen Joeris <white@debian.org> Description: php4-json - json serialiser for PHP4 php5-json - JSON serialiser for PHP5 Changes: php-json-ext (1.2.1-3.2+etch1) oldstable-security; urgency=high . * Non-maintainer upload by the security team * Fix DoS via a malformed string to the json_decode API function Fixes: CVE-2009-1271 Files: 0ec03d0f1b9070acbc7cd27d0391f5b8 655 web optional php-json-ext_1.2.1-3.2+etch1.dsc 2f1229af3e99a0dd64b4d4f1fe7eb8f4 205184 web optional php-json-ext_1.2.1.orig.tar.gz 38f1e8a9a59ed98b8734c8032a26141c 6927 web optional php-json-ext_1.2.1-3.2+etch1.diff.gz e280d560eea3f4bd8ea838ee60bddd88 14362 web optional php4-json_1.2.1-3.2+etch1_i386.deb 6c085917b6825c03f92ee1715ce7bc2c 14796 web optional php5-json_1.2.1-3.2+etch1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) iEYEARECAAYFAknnLL4ACgkQ62zWxYk/rQc8CwCfZu36rBkpslebEOHtdgJ6N3YI efsAn1ek3lSFZUEdhXTcALO4zfaIUgKo =MX3b -----END PGP SIGNATURE----- Accepted: php-json-ext_1.2.1-3.2+etch1.diff.gz to pool/main/p/php-json-ext/php-json-ext_1.2.1-3.2+etch1.diff.gz php-json-ext_1.2.1-3.2+etch1.dsc to pool/main/p/php-json-ext/php-json-ext_1.2.1-3.2+etch1.dsc php4-json_1.2.1-3.2+etch1_i386.deb to pool/main/p/php-json-ext/php4-json_1.2.1-3.2+etch1_i386.deb php5-json_1.2.1-3.2+etch1_i386.deb to pool/main/p/php-json-ext/php5-json_1.2.1-3.2+etch1_i386.deb