[php-maint] [Fwd: Re: [SECURITY] [DSA 1789-1] New php5 packages fix several vulnerabilities]

sean finney seanius at debian.org
Thu May 7 21:46:12 UTC 2009

hi everyone,

i think i've found the cause of the problem...

@@ -158,6 +416,8 @@
+               free(new_state.cwd);
+               free(new_state.cwd);
                return 0;

/me head -> desk.

i will try to build some packages with an... ehem... amended version of
this patch, which i'll provide somewhere public for testing before uploading
to the security queues.  expect this sometime tomorrow late morning (GMT+2:00)


On Wed, May 06, 2009 at 07:58:00PM +0200, sean finney wrote:
> hi again (including the op in the cc this time),
> On Wed, May 06, 2009 at 01:51:18PM +0200, Thijs Kinkhorst wrote:
> > Seems there was a problem afterall with the zip extension. If anyone is
> > able to dive into this, that would be great.
> i've re-run my original tests and see no such problems.  is there any
> chance you could provide a zipfile and/or code that induces this problem?
> thanks!
> 	sean

> _______________________________________________
> pkg-php-maint mailing list
> pkg-php-maint at lists.alioth.debian.org
> http://lists.alioth.debian.org/mailman/listinfo/pkg-php-maint

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-php-maint/attachments/20090507/bfaecff3/attachment.pgp>

More information about the pkg-php-maint mailing list