-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Sat, 30 Jun 2007 15:42:26 +0200 Source: php4 Binary: php4-cgi php4-sybase php4-recode libapache-mod-php4 php4-cli php4-dev libapache2-mod-php4 php4-snmp php4-odbc php4-xslt php4-mysql php4-domxml php4-gd php4-ldap php4-imap php4-common php4-curl php4 php4-pear php4-mcal php4-mhash Architecture: source i386 all Version: 4:4.3.10-22 Distribution: oldstable-security Urgency: low Maintainer: Adam Conrad <adconrad@0c3.net> Changed-By: sean finney <seanius@debian.org> Description: libapache-mod-php4 - server-side, HTML-embedded scripting language (apache 1.3 module) libapache2-mod-php4 - server-side, HTML-embedded scripting language (apache 2.0 module) php4 - server-side, HTML-embedded scripting language (meta-package) php4-cgi - server-side, HTML-embedded scripting language (CGI binary) php4-cli - command-line interpreter for the php4 scripting language php4-common - Common files for packages built from the php4 source php4-curl - CURL module for php4 php4-dev - Files for PHP4 module development php4-domxml - XMLv2 module for php4 php4-gd - GD module for php4 php4-imap - IMAP module for php4 php4-ldap - LDAP module for php4 php4-mcal - MCAL calendar module for php4 php4-mhash - MHASH module for php4 php4-mysql - MySQL module for php4 php4-odbc - ODBC module for php4 php4-pear - PEAR - PHP Extension and Application Repository php4-recode - Character recoding module for php4 php4-snmp - SNMP module for php4 php4-sybase - Sybase / MS SQL Server module for php4 php4-xslt - XSLT module for php4 Closes: 354683 Changes: php4 (4:4.3.10-22) oldstable-security; urgency=low . * NMU prepared for the security team by the package maintainer. * The following security issue is addressed with this update: - CVE-2007-1864: Buffer overflow in the bundled libxmlrpc library. (Thanks to Joe Orton from redhat for sharing the patch.) - CVE-2006-0207: HTTP response splitting vulnerabilities. This was reported to not affect this version of PHP, but it has been independantly verified that it does (closes: #354683). - CVE-2006-4486: Int. overflows in memory mgmt code for 64bit architectures. Files: 275d3bf152c7eb24f9054726f259dd19 1686 web optional php4_4.3.10-22.dsc 8b08b97d85d96ce4a6f0ba89ef8ed143 288318 web optional php4_4.3.10-22.diff.gz 676b990017df9375e0ea1e3b4c1c67da 168870 web optional php4-common_4.3.10-22_i386.deb b7e9671a31a898da1b4219c9b6185bbc 1614348 web optional libapache-mod-php4_4.3.10-22_i386.deb 432a163c9c38c44b56d3f27824025a2c 17898 web optional php4-curl_4.3.10-22_i386.deb 03ff79a59154f66184d0fcf4e8a379aa 37234 web optional php4-domxml_4.3.10-22_i386.deb bdf0858fe4420e0cf60069bff264a41a 32384 web optional php4-gd_4.3.10-22_i386.deb 5c07a7052ac4f02447ad77b19464a603 37402 web optional php4-imap_4.3.10-22_i386.deb b1fd1e18a808f5cb6d3a8f5479a5051c 19950 web optional php4-ldap_4.3.10-22_i386.deb c73e8db0b128547cc48c3a7c5774aa44 17668 web optional php4-mcal_4.3.10-22_i386.deb 14dadeb2766bf4f19bf9baf963dc73a9 8036 web optional php4-mhash_4.3.10-22_i386.deb 7a559e0f4fad6d665dddca9b11f6b63a 21214 web optional php4-mysql_4.3.10-22_i386.deb 9d2d1eefc0b491c8fe9a751e67976e46 27142 web optional php4-odbc_4.3.10-22_i386.deb 30d3f5bd63c502fe916d72f09f018239 7702 web optional php4-recode_4.3.10-22_i386.deb 0e22226e9175a10a31c8c62e30b80896 16396 web optional php4-xslt_4.3.10-22_i386.deb fbe8760da5b8bcac850a9b252158bfca 13154 web optional php4-snmp_4.3.10-22_i386.deb 162dbfd71fa586711386fff21f6f57d7 21378 web optional php4-sybase_4.3.10-22_i386.deb fb172effe3844f33b959219546070273 3209432 web optional php4-cgi_4.3.10-22_i386.deb 4e876ed4ec3ff6b24af1624d303d2c7f 1609704 web optional php4-cli_4.3.10-22_i386.deb 3ac78abeaf7e06d7f28a40731e0e6a0e 325160 devel optional php4-dev_4.3.10-22_i386.deb 9d108ee7b6f85ba2097e8b676529c9c3 1612354 web optional libapache2-mod-php4_4.3.10-22_i386.deb 8de38b3066c2a9e5e18cb5a4efff4856 1146 web optional php4_4.3.10-22_all.deb 9542829963ecc9a84d0c5ae8e6d5543c 249994 web optional php4-pear_4.3.10-22_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGhm+OynjLPm522B0RAtBJAJ0b0XLkfear0k2qRFbRPEPP3xkGtgCfVU6B PSjFEYC8QCwmOk8fFNCtupM= =Z8vP -----END PGP SIGNATURE----- Accepted: libapache-mod-php4_4.3.10-22_i386.deb to pool/main/p/php4/libapache-mod-php4_4.3.10-22_i386.deb libapache2-mod-php4_4.3.10-22_i386.deb to pool/main/p/php4/libapache2-mod-php4_4.3.10-22_i386.deb php4-cgi_4.3.10-22_i386.deb to pool/main/p/php4/php4-cgi_4.3.10-22_i386.deb php4-cli_4.3.10-22_i386.deb to pool/main/p/php4/php4-cli_4.3.10-22_i386.deb php4-common_4.3.10-22_i386.deb to pool/main/p/php4/php4-common_4.3.10-22_i386.deb php4-curl_4.3.10-22_i386.deb to pool/main/p/php4/php4-curl_4.3.10-22_i386.deb php4-dev_4.3.10-22_i386.deb to pool/main/p/php4/php4-dev_4.3.10-22_i386.deb php4-domxml_4.3.10-22_i386.deb to pool/main/p/php4/php4-domxml_4.3.10-22_i386.deb php4-gd_4.3.10-22_i386.deb to pool/main/p/php4/php4-gd_4.3.10-22_i386.deb php4-imap_4.3.10-22_i386.deb to pool/main/p/php4/php4-imap_4.3.10-22_i386.deb php4-ldap_4.3.10-22_i386.deb to pool/main/p/php4/php4-ldap_4.3.10-22_i386.deb php4-mcal_4.3.10-22_i386.deb to pool/main/p/php4/php4-mcal_4.3.10-22_i386.deb php4-mhash_4.3.10-22_i386.deb to pool/main/p/php4/php4-mhash_4.3.10-22_i386.deb php4-mysql_4.3.10-22_i386.deb to pool/main/p/php4/php4-mysql_4.3.10-22_i386.deb php4-odbc_4.3.10-22_i386.deb to pool/main/p/php4/php4-odbc_4.3.10-22_i386.deb php4-pear_4.3.10-22_all.deb to pool/main/p/php4/php4-pear_4.3.10-22_all.deb php4-recode_4.3.10-22_i386.deb to pool/main/p/php4/php4-recode_4.3.10-22_i386.deb php4-snmp_4.3.10-22_i386.deb to pool/main/p/php4/php4-snmp_4.3.10-22_i386.deb php4-sybase_4.3.10-22_i386.deb to pool/main/p/php4/php4-sybase_4.3.10-22_i386.deb php4-xslt_4.3.10-22_i386.deb to pool/main/p/php4/php4-xslt_4.3.10-22_i386.deb php4_4.3.10-22.diff.gz to pool/main/p/php4/php4_4.3.10-22.diff.gz php4_4.3.10-22.dsc to pool/main/p/php4/php4_4.3.10-22.dsc php4_4.3.10-22_all.deb to pool/main/p/php4/php4_4.3.10-22_all.deb
