[Pkg-php-commits] r1083 - php5/branches/lenny/debian
Sean Finney
seanius at alioth.debian.org
Tue May 27 17:36:58 UTC 2008
Author: seanius
Date: 2008-05-27 17:36:58 +0000 (Tue, 27 May 2008)
New Revision: 1083
Modified:
php5/branches/lenny/debian/changelog
Log:
new chglog for security fixes
Modified: php5/branches/lenny/debian/changelog
===================================================================
--- php5/branches/lenny/debian/changelog 2008-05-27 17:32:14 UTC (rev 1082)
+++ php5/branches/lenny/debian/changelog 2008-05-27 17:36:58 UTC (rev 1083)
@@ -1,3 +1,14 @@
+php5 (5.2.5-3+lenny1) UNRELEASED; urgency=high
+
+ * Security upload for testing to bypass current blockage in unstable.
+ * The following security issues are addressed with this update:
+ - CVE-2007-3806: glob denial of service
+ - CVE-2008-1384: integer overflow in printf()
+ - CVE-2008-2050: possible stack buffer overflow in the FastCGI SAPI
+ - CVE-2008-2051: incomplete multibyte chars inside escapeshellcmd()
+
+ -- Sean Finney <seanius at debian.org> Tue, 27 May 2008 19:33:22 +0200
+
php5 (5.2.5-3) unstable; urgency=high
* zend_parse_parameters does not handle size_t's, causing issues with
More information about the Pkg-php-commits
mailing list