[Pkg-php-commits] r1044 - php5/trunk/debian
Thijs Kinkhorst
thijs at alioth.debian.org
Sun May 4 12:20:38 UTC 2008
Author: thijs
Date: 2008-05-04 12:20:38 +0000 (Sun, 04 May 2008)
New Revision: 1044
Modified:
php5/trunk/debian/changelog
Log:
list security fixes including CVE id
Modified: php5/trunk/debian/changelog
===================================================================
--- php5/trunk/debian/changelog 2008-05-04 12:02:06 UTC (rev 1043)
+++ php5/trunk/debian/changelog 2008-05-04 12:20:38 UTC (rev 1044)
@@ -1,6 +1,11 @@
php5 (5.2.6-1) UNRELEASED; urgency=low
- * New upstream release.
+ * New upstream release. Fixes several security issues of unknown impact:
+ + possible stack buffer overflow in the FastCGI SAPI
+ + integer overflow in printf()
+ + unknown issue CVE-2008-0599
+ + a safe_mode bypass in cURL
+ + incomplete multibyte chars inside escapeshellcmd()
[ Sean Finney ]
* NOT RELEASED YET
More information about the Pkg-php-commits
mailing list