Accepted php4 4:4.3.10-2ubuntu1 (source)

Martin Pitt martin.pitt at canonical.com
Thu Jan 13 04:25:05 CST 2005 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 13 Jan 2005 11:11:20 +0100
Source: php4
Binary: php4-cgi php4-sybase php4-recode libapache-mod-php4 php4-cli php4-dev libapache2-mod-php4 php4-snmp php4-odbc php4-xslt php4-mysql php4-domxml php4-gd php4-ldap php4-common php4-curl php4 php4-pear php4-mcal php4-mhash
Architecture: source
Version: 4:4.3.10-2ubuntu1
Distribution: hoary
Urgency: high
Maintainer: Adam Conrad <adconrad at 0c3.net>
Changed-By: Martin Pitt <martin.pitt at canonical.com>
Description: 
 libapache-mod-php4 - server-side, HTML-embedded scripting language (apache 1.3 module)
 libapache2-mod-php4 - server-side, HTML-embedded scripting language (apache 2.0 module)
 php4       - server-side, HTML-embedded scripting language (meta-package)
 php4-cgi   - server-side, HTML-embedded scripting language (CGI binary)
 php4-cli   - command-line interpreter for the php4 scripting language
 php4-common - Common files for packages built from the php4 source
 php4-curl  - CURL module for php4
 php4-dev   - Files for PHP4 module development
 php4-domxml - XMLv2 module for php4
 php4-gd    - GD module for php4
 php4-ldap  - LDAP module for php4
 php4-mcal  - MCAL calendar module for php4
 php4-mhash - MHASH module for php4
 php4-mysql - MySQL module for php4
 php4-odbc  - ODBC module for php4
 php4-pear  - PEAR - PHP Extension and Application Repository
 php4-recode - Character recoding module for php4
 php4-snmp  - SNMP module for php4
 php4-sybase - Sybase / MS SQL Server module for php4
 php4-xslt  - XSLT module for php4
Changes: 
 php4 (4:4.3.10-2ubuntu1) hoary; urgency=low
 .
   * Merged to Debian release, resolved minor merging conflicts.
 .
 php4 (4:4.3.10-2) unstable; urgency=high
 .
   * Patch Zend/zend_strtod.c twice:
     - Patch from upstream CVS to fix FTBFS on Sparc/Linux systems
     - Patch from me to fix FTBFS on __mc68000__, __ia64__, and __s390__
 .
 php4 (4:4.3.10-1) unstable; urgency=high
 .
   * New upstream release, including the following security fixes:
     - CAN-2004-1018 - shmop_write() out of bounds memory write access.
     - CAN-2004-1018 - integer overflow/underflow in pack() and unpack()
       functions.
     - CAN-2004-1019 - possible information disclosure, double free and
       negative reference index array underflow in deserialization code.
     - CAN-2004-1020 - addslashes() not escaping \0 correctly.
     - CAN-2004-1063 - safe_mode execution directory bypass.
     - CAN-2004-1064 - arbitrary file access through path truncation.
     - CAN-2004-1065 - exif_read_data() overflow on long sectionname.
     - magic_quotes_gpc could lead to one level directory traversal with
       file uploads.
   * Adjust patch offsets for new upstream, fix 013-force_getaddrinfo.patch
     to match with new configure.in and drop 026-4.3.10_session_fixes.patch
     which is included in 4.3.10.
Files: 
 925f2c18928095e753e7b058da53feaf 1740 web optional php4_4.3.10-2ubuntu1.dsc
 73f5d1f42e34efa534a09c6091b5a21e 4892209 web optional php4_4.3.10.orig.tar.gz
 bad0031c927a0566227cf98d0ea06908 633547 web optional php4_4.3.10-2ubuntu1.diff.gz

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQFB5kriDecnbV4Fd/IRArFAAJ4r4HjUIsMLXuHZ30My/oJe+wSBQwCgq+ME
rAjM8S5J1/osNPXNmnAxf/s=
=J1j8
-----END PGP SIGNATURE-----


Accepted:
php4_4.3.10-2ubuntu1.diff.gz
  to pool/main/p/php4/php4_4.3.10-2ubuntu1.diff.gz
php4_4.3.10-2ubuntu1.dsc
  to pool/main/p/php4/php4_4.3.10-2ubuntu1.dsc
php4_4.3.10.orig.tar.gz
  to pool/main/p/php4/php4_4.3.10.orig.tar.gz

More information about the hoary-changes mailing list