[php-maint] Bug#719765: php5: CVE-2013-4248: invalid handling of certs with null bytes

Henri Salo henri at nerv.fi
Thu Aug 15 05:01:50 UTC 2013


Package: php5
Version: 5.5.1+dfsg-2
Severity: important
Tags: security, fixed-upstream

CVE request: http://openwall.com/lists/oss-security/2013/08/14/4
Upstream fixes:
    http://git.php.net/?p=php-src.git;a=commit;h=dcea4ec698dcae39b7bba6f6aa08933cbfee6755
    http://git.php.net/?p=php-src.git;a=commit;h=2874696a5a8d46639d261571f915c493cd875897

Update affected versions as needed.

---
Henri Salo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-php-maint/attachments/20130815/bb91e5db/attachment.sig>


More information about the pkg-php-maint mailing list