Debian Bug report logs - #459020
php5-recode crashes on amd64, after eating up all memory

Toggle useless messages

Message #5 received at submit@bugs.debian.org (full text, mbox, reply):

From: Thomas Stegbauer <thomas@stegbauer.info>

To: Debian Bug Tracking System <submit@bugs.debian.org>

Subject: php5-recode crashes on amd64, after eating up all memory

Date: Fri, 04 Jan 2008 09:48:14 +0100

Package: php5-recode
Version: 5.2.0-8+etch7
Severity: grave
Tags: patch
Justification: renders package unusable


php5-recode crashes on amd64, so all program, which need it, are unusable
(like gosa 2.5.14 from the homepage, solution there is run php4 - which
should get upgraded like stated yesterday ;)

problem is reported to php and listed in bug 41765 (
http://bugs.php.net/bug.php?id=41765 ).

patch is also listed there, it is not from me


-- System Information:
Debian Release: 4.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-5-amd64
Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1)

Versions of packages php5-recode depends on:
ii  libapache-mod-php5 [ph 5.2.0-8+etch7     server-side, HTML-embedded scripti
ii  libc6                  2.3.6.ds1-13etch2 GNU C Library: Shared libraries
ii  librecode0             3.6-12            Shared library on which recode is 
ii  php5-cli [phpapi-20060 5.2.0-8+etch7     command-line interpreter for the p
ii  php5-common            5.2.0-8+etch7     Common files for packages built fr

php5-recode recommends no packages.

-- no debconf information

Message #10 received at 459020@bugs.debian.org (full text, mbox, reply):

From: "Tim Dijkstra \(tdykstra\)" <tim@famdijkstra.org>

To: Debian Bug Tracking System <459020@bugs.debian.org>

Subject: php5-recode: Patch already in debian version

Date: Thu, 10 Jan 2008 20:56:57 +0100

Package: php5-recode
Version: 5.2.0-8+etch7
Followup-For: Bug #459020

Hi,

I'm seeing similar behaviour. I tried to apply the patch in the php
bts, but alas the debian etch version already has it. In other words
this bug is not fixed by that patch.

grts Tim

-- System Information:
Debian Release: 4.0
  APT prefers stable
  APT policy: (500, 'stable')
Architecture: amd64 (x86_64)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18-3-amd64
Locale: LANG=nl_NL.UTF-8, LC_CTYPE=nl_NL.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to nl_NL.utf8)

Message #15 received at 459020@bugs.debian.org (full text, mbox, reply):

From: Bart Cortooms <bart@kumina.nl>

To: 459020@bugs.debian.org

Cc: Thomas Stegbauer <thomas@stegbauer.info>

Subject: Re: php5-recode crashes on amd64, after eating up all memory

Date: Thu, 24 Jan 2008 15:00:54 +0100

Op 4-jan-2008, om 9:48 heeft Thomas Stegbauer het volgende geschreven:
> php5-recode crashes on amd64, so all program, which need it, are  
> unusable

This happens for me as well.  It's especially troublesome in  
combination with squirrelmail and squirrelmail-decode - a specially  
crafted email could be made into a potential Denial of Service  
attack.  We're seeing this problem when a mail with big5 encoding  
gets opened with Squirrelmail.  The php5-cgi process eats up all  
memory when the inbox gets opened.

Some more info:

(amd64-etch)bart@builder:~$ cat > test.php
<?php
        echo recode_string("utf-8..flat","aaaa");
?>

(amd64-etch)bart@builder:~$ php5 test.php
Segmentation fault (core dumped)


Using the recode utility works fine:

(amd64-etch)bart@builder:~$ echo "aaaa" | recode "utf-8..flat"
aaaa


(amd64-etch)bart@builder:~$ gdb -c core /usr/bin/php5
GNU gdb 6.4.90-debian
Copyright (C) 2006 Free Software Foundation, Inc.
GDB is free software, covered by the GNU General Public License, and  
you are
welcome to change it and/or distribute copies of it under certain  
conditions.
Type "show copying" to see the conditions.
There is absolutely no warranty for GDB.  Type "show warranty" for  
details.
This GDB was configured as "x86_64-linux-gnu"...(no debugging symbols  
found)
Using host libthread_db library "/lib/libthread_db.so.1".

Reading symbols from /lib/libcrypt.so.1...(no debugging symbols  
found)...done.
Loaded symbols for /lib/libcrypt.so.1
Reading symbols from /usr/lib/libz.so.1...(no debugging symbols  
found)...done.
Loaded symbols for /usr/lib/libz.so.1
Reading symbols from /usr/lib/libpanel.so.5...(no debugging symbols  
found)...done.
Loaded symbols for /usr/lib/libpanel.so.5
Reading symbols from /lib/libncurses.so.5...(no debugging symbols  
found)...done.
Loaded symbols for /lib/libncurses.so.5
Reading symbols from /usr/lib/libssl.so.0.9.8...
(no debugging symbols found)...done.
Loaded symbols for /usr/lib/libssl.so.0.9.8
Reading symbols from /usr/lib/libpcre.so.3...(no debugging symbols  
found)...done.
Loaded symbols for /usr/lib/libpcre.so.3
Reading symbols from /usr/lib/libdb-4.4.so...(no debugging symbols  
found)...done.
Loaded symbols for /usr/lib/libdb-4.4.so
Reading symbols from /lib/libbz2.so.1.0...(no debugging symbols  
found)...done.
Loaded symbols for /lib/libbz2.so.1.0
Reading symbols from /lib/libresolv.so.2...
(no debugging symbols found)...done.
Loaded symbols for /lib/libresolv.so.2
Reading symbols from /lib/libm.so.6...(no debugging symbols  
found)...done.
Loaded symbols for /lib/libm.so.6
Reading symbols from /lib/libdl.so.2...(no debugging symbols  
found)...done.
Loaded symbols for /lib/libdl.so.2
Reading symbols from /lib/libnsl.so.1...(no debugging symbols  
found)...done.
Loaded symbols for /lib/libnsl.so.1
Reading symbols from /usr/lib/libgssapi_krb5.so.2...
(no debugging symbols found)...done.
Loaded symbols for /usr/lib/libgssapi_krb5.so.2
Reading symbols from /usr/lib/libkrb5.so.3...(no debugging symbols  
found)...done.
Loaded symbols for /usr/lib/libkrb5.so.3
Reading symbols from /usr/lib/libk5crypto.so.3...(no debugging  
symbols found)...done.
Loaded symbols for /usr/lib/libk5crypto.so.3
Reading symbols from /lib/libcom_err.so.2...(no debugging symbols  
found)...done.
Loaded symbols for /lib/libcom_err.so.2
Reading symbols from /usr/lib/libxml2.so.2...
(no debugging symbols found)...done.
Loaded symbols for /usr/lib/libxml2.so.2
Reading symbols from /lib/libc.so.6...(no debugging symbols  
found)...done.
Loaded symbols for /lib/libc.so.6
Reading symbols from /usr/lib/libcrypto.so.0.9.8...(no debugging  
symbols found)...done.
Loaded symbols for /usr/lib/libcrypto.so.0.9.8
Reading symbols from /lib/ld-linux-x86-64.so.2...(no debugging  
symbols found)...done.
Loaded symbols for /lib64/ld-linux-x86-64.so.2
Reading symbols from /usr/lib/libkrb5support.so.0...
(no debugging symbols found)...done.
Loaded symbols for /usr/lib/libkrb5support.so.0
Reading symbols from /usr/lib/php5/20060613/pdo.so...(no debugging  
symbols found)...done.
Loaded symbols for /usr/lib/php5/20060613/pdo.so
Reading symbols from /usr/lib/php5/20060613/recode.so...(no debugging  
symbols found)...done.
Loaded symbols for /usr/lib/php5/20060613/recode.so
Reading symbols from /usr/lib/librecode.so.0...(no debugging symbols  
found)...done.
Loaded symbols for /usr/lib/librecode.so.0
Reading symbols from /lib/libnss_files.so.2...
(no debugging symbols found)...done.
Loaded symbols for /lib/libnss_files.so.2
Core was generated by `php5 test.php'.
Program terminated with signal 11, Segmentation fault.
#0  0x00002b19bb7c012e in transform_with_libiconv () from /usr/lib/ 
librecode.so.0
(gdb) bt
#0  0x00002b19bb7c012e in transform_with_libiconv () from /usr/lib/ 
librecode.so.0
#1  0x00002b19bb7cb4a0 in transform_byte_to_variable () from /usr/lib/ 
librecode.so.0
#2  0x00002b19bb7cbcde in recode_perform_task () from /usr/lib/ 
librecode.so.0
#3  0x00002b19bb7cadc0 in recode_buffer_to_buffer () from /usr/lib/ 
librecode.so.0
#4  0x00002b19bb6184b1 in zif_recode_string () from /usr/lib/ 
php5/20060613/recode.so
#5  0x000000000065fcd7 in execute ()
#6  0x000000000064f6f3 in execute ()
#7  0x00000000006326f9 in zend_execute_scripts ()
#8  0x00000000005f2ec8 in php_execute_script ()
#9  0x00000000006b8fe5 in main ()
(gdb)

-- 
	Bart

Message #20 received at 459020@bugs.debian.org (full text, mbox, reply):

From: Sebastian Göbel <sebastian.goebel@web.de>

To: <459020@bugs.debian.org>

Subject: Re: php5-recode crashes on amd64, after eating up all memory

Date: Wed, 30 Jan 2008 18:57:21 +0100

I can reproduce this bug in latest version too:
ii  php5-recode                   5.2.0-8+etch10

For example, following single header line will cause the crash if inbox is
opened in squirrelmail:

Subject:
=?GB2312?B?S29lbm50ZW4gU2llIG1pciBoZWxmZW4gPyhCZXJ3ZXJidW5nc3NjaHJlaWJ1bmcp?
=

Squirrelmail packages versions are:
ii  squirrelmail                  1.4.13-2
ii  squirrelmail-decode           1.2-1


As workaround I added following line to php.ini (squirrelmail does not
depend on recode_string):

disable_function = recode_string

Message #25 received at 459020@bugs.debian.org (full text, mbox, reply):

From: Vincent Tondellier <tonton-lists@team1664.org>

To: 459020@bugs.debian.org

Subject: 043-recode_size_t.patch is invalid for recent php versions

Date: Wed, 06 Feb 2008 20:41:22 +0100

[Message part 1 (text/plain, inline)]

The patch 043-recode_size_t.patch is broken.

req_len and str_len should be integers, but are size_t
(zend_parse_parameters wants pointers to int). This is a problem for 64
bits arches since a part of the variables is not initialized
(sizof(size_t) != sizeof(int)), and recode_buffer_to_buffer is called
with funny values that makes librecode eat all the system's memory.

The patch was messed up during the conversion from php4 (r301 of the
pkg-kde svn repository).
This patch is not needed in testing/unstable and should be removed since
the bug for this patch (PHP#41765) was fixed upstream in php 5.2.4, but
a fixed version is needed for etch.

An updated version of the patch witch fixes the problem for me is
attached to this mail and should be, IMO, applied as a security fix for
etch.

[043-recode_size_t.patch (text/x-patch, inline)]

--- php-5.2.0/ext/recode/recode.c.orig	2008-02-06 19:58:51.000000000 +0100
+++ php-5.2.0/ext/recode/recode.c	2008-02-06 19:59:13.000000000 +0100
@@ -132,7 +132,7 @@
 {
 	RECODE_REQUEST request = NULL;
 	char *r = NULL;
-	int r_len = 0, r_alen = 0;
+	size_t r_len = 0, r_alen = 0;
 	int req_len, str_len;
 	char *req, *str;
 

Message #30 received at 459020@bugs.debian.org (full text, mbox, reply):

From: Steve Langasek <vorlon@debian.org>

To: Vincent Tondellier <tonton-lists@team1664.org>, 459020@bugs.debian.org

Subject: Re: [php-maint] Bug#459020: 043-recode_size_t.patch is invalid for recent php versions

Date: Thu, 7 Feb 2008 17:26:45 -0800

On Wed, Feb 06, 2008 at 08:41:22PM +0100, Vincent Tondellier wrote:
> The patch 043-recode_size_t.patch is broken.

> req_len and str_len should be integers, but are size_t
> (zend_parse_parameters wants pointers to int). This is a problem for 64
> bits arches since a part of the variables is not initialized
> (sizof(size_t) != sizeof(int)), and recode_buffer_to_buffer is called
> with funny values that makes librecode eat all the system's memory.

So then, PHP isn't capable of passing values whose length exceeds UINT_MAX?
That's an annoyingly arbitrary limitation.

But yes, your analysis here looks correct to me.

> An updated version of the patch witch fixes the problem for me is
> attached to this mail and should be, IMO, applied as a security fix for
> etch.

I don't see any evidence that this is a security issue, but it should be
applied as a stable release update.

-- 
Steve Langasek                   Give me a lever long enough and a Free OS
Debian Developer                   to set it on, and I can move the world.
Ubuntu Developer                                    http://www.debian.org/
slangasek@ubuntu.com                                     vorlon@debian.org

Message #35 received at 459020@bugs.debian.org (full text, mbox, reply):

From: Vincent Tondellier <tonton-lists@team1664.org>

To: 459020@bugs.debian.org, Steve Langasek <vorlon@debian.org>

Subject: Re: [php-maint] Bug#459020: 043-recode_size_t.patch is invalid for recent php versions

Date: Fri, 08 Feb 2008 03:06:19 +0100

Steve Langasek wrote:
> On Wed, Feb 06, 2008 at 08:41:22PM +0100, Vincent Tondellier wrote:
>> The patch 043-recode_size_t.patch is broken.
> 
>> req_len and str_len should be integers, but are size_t
>> (zend_parse_parameters wants pointers to int). This is a problem for 64
>> bits arches since a part of the variables is not initialized
>> (sizof(size_t) != sizeof(int)), and recode_buffer_to_buffer is called
>> with funny values that makes librecode eat all the system's memory.
> 
> So then, PHP isn't capable of passing values whose length exceeds UINT_MAX?
> That's an annoyingly arbitrary limitation.
> 

PHP isn't designed to do large memory allocations ...

> But yes, your analysis here looks correct to me.
> 
>> An updated version of the patch witch fixes the problem for me is
>> attached to this mail and should be, IMO, applied as a security fix for
>> etch.
> 
> I don't see any evidence that this is a security issue, but it should be
> applied as a stable release update.
> 

I think this is a security issue since it can cause a Denial Of Service
by eating all the server memory. I had the problem on one of my servers
(2GB RAM / 3GB swap) and it took at least 10min for oom_killer to kill
the process, and in another case the kernel crashed (I didn't change the
memory limit settings in /etc/security/limits.conf).

And you can trigger the bug remotely by sending a mail like Sebastian
Göbel said above.

Message #40 received at 459020@bugs.debian.org (full text, mbox, reply):

From: "Dr. Tilo Levante" <tilo@levante.de>

To: Debian Bug Tracking System <459020@bugs.debian.org>

Subject: php5-recode: The issue is also present in 5.2.5-2

Date: Tue, 12 Feb 2008 13:12:28 +0100

Package: php5-recode
Version: 5.2.5-2
Followup-For: Bug #459020


I have the same issue in the current version of unstable:

more x.php
<?
  $tmp = "Hello World!";
  $tmp1 = recode_string("utf8..iso8859-1",$tmp);
echo $tmp, $tmp1, $tmp2, $temp3;
?>

php5 x.php 
prints:
Segmentation fault

tilo

-- System Information:
Debian Release: 4.0
  APT prefers unstable
  APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Shell:  /bin/sh linked to /bin/bash
Kernel: Linux 2.6.18
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)

Versions of packages php5-recode depends on:
ii  libapache2-mod-php5 [phpapi-2 5.2.5-2    server-side, HTML-embedded scripti
ii  libc6                         2.7-6      GNU C Library: Shared libraries
ii  librecode0                    3.6-14     Shared library on which recode is 
ii  php5-cgi [phpapi-20060613]    5.2.5-2    server-side, HTML-embedded scripti
ii  php5-cli [phpapi-20060613]    5.2.5-2    command-line interpreter for the p
ii  php5-common                   5.2.5-2    Common files for packages built fr

php5-recode recommends no packages.

-- debconf information:
  php5/remove_extension: true
  php5/add_extension: true
  php5/extension_recode_apache2: true

Message #47 received at 459020-close@bugs.debian.org (full text, mbox, reply):

From: Sean Finney <seanius@debian.org>

To: 459020-close@bugs.debian.org

Subject: Bug#459020: fixed in php5 5.2.5-3

Date: Thu, 21 Feb 2008 01:32:16 +0000

Source: php5
Source-Version: 5.2.5-3

We believe that the bug you reported is fixed in the latest version of
php5, which is due to be installed in the Debian FTP archive:

libapache2-mod-php5_5.2.5-3_amd64.deb
  to pool/main/p/php5/libapache2-mod-php5_5.2.5-3_amd64.deb
php-pear_5.2.5-3_all.deb
  to pool/main/p/php5/php-pear_5.2.5-3_all.deb
php5-cgi_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-cgi_5.2.5-3_amd64.deb
php5-cli_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-cli_5.2.5-3_amd64.deb
php5-common_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-common_5.2.5-3_amd64.deb
php5-curl_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-curl_5.2.5-3_amd64.deb
php5-dev_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-dev_5.2.5-3_amd64.deb
php5-gd_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-gd_5.2.5-3_amd64.deb
php5-gmp_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-gmp_5.2.5-3_amd64.deb
php5-imap_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-imap_5.2.5-3_amd64.deb
php5-interbase_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-interbase_5.2.5-3_amd64.deb
php5-ldap_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-ldap_5.2.5-3_amd64.deb
php5-mcrypt_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-mcrypt_5.2.5-3_amd64.deb
php5-mhash_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-mhash_5.2.5-3_amd64.deb
php5-mysql_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-mysql_5.2.5-3_amd64.deb
php5-odbc_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-odbc_5.2.5-3_amd64.deb
php5-pgsql_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-pgsql_5.2.5-3_amd64.deb
php5-pspell_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-pspell_5.2.5-3_amd64.deb
php5-recode_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-recode_5.2.5-3_amd64.deb
php5-snmp_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-snmp_5.2.5-3_amd64.deb
php5-sqlite_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-sqlite_5.2.5-3_amd64.deb
php5-sybase_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-sybase_5.2.5-3_amd64.deb
php5-tidy_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-tidy_5.2.5-3_amd64.deb
php5-xmlrpc_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-xmlrpc_5.2.5-3_amd64.deb
php5-xsl_5.2.5-3_amd64.deb
  to pool/main/p/php5/php5-xsl_5.2.5-3_amd64.deb
php5_5.2.5-3.diff.gz
  to pool/main/p/php5/php5_5.2.5-3.diff.gz
php5_5.2.5-3.dsc
  to pool/main/p/php5/php5_5.2.5-3.dsc
php5_5.2.5-3_all.deb
  to pool/main/p/php5/php5_5.2.5-3_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 459020@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Sean Finney <seanius@debian.org> (supplier of updated php5 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 21 Feb 2008 00:59:21 +0100
Source: php5
Binary: php5 php5-common libapache2-mod-php5 php5-cgi php5-cli php5-dev php-pear php5-curl php5-gd php5-gmp php5-imap php5-interbase php5-ldap php5-mcrypt php5-mhash php5-mysql php5-odbc php5-pgsql php5-pspell php5-recode php5-snmp php5-sqlite php5-sybase php5-tidy php5-xmlrpc php5-xsl
Architecture: source amd64 all
Version: 5.2.5-3
Distribution: unstable
Urgency: high
Maintainer: Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>
Changed-By: Sean Finney <seanius@debian.org>
Description: 
 libapache2-mod-php5 - server-side, HTML-embedded scripting language (Apache 2 module)
 php-pear   - PEAR - PHP Extension and Application Repository
 php5       - server-side, HTML-embedded scripting language (meta-package)
 php5-cgi   - server-side, HTML-embedded scripting language (CGI binary)
 php5-cli   - command-line interpreter for the php5 scripting language
 php5-common - Common files for packages built from the php5 source
 php5-curl  - CURL module for php5
 php5-dev   - Files for PHP5 module development
 php5-gd    - GD module for php5
 php5-gmp   - GMP module for php5
 php5-imap  - IMAP module for php5
 php5-interbase - interbase/firebird module for php5
 php5-ldap  - LDAP module for php5
 php5-mcrypt - MCrypt module for php5
 php5-mhash - MHASH module for php5
 php5-mysql - MySQL module for php5
 php5-odbc  - ODBC module for php5
 php5-pgsql - PostgreSQL module for php5
 php5-pspell - pspell module for php5
 php5-recode - recode module for php5
 php5-snmp  - SNMP module for php5
 php5-sqlite - SQLite module for php5
 php5-sybase - Sybase / MS SQL Server module for php5
 php5-tidy  - tidy module for php5
 php5-xmlrpc - XML-RPC module for php5
 php5-xsl   - XSL module for php5
Closes: 459020
Changes: 
 php5 (5.2.5-3) unstable; urgency=high
 .
   * zend_parse_parameters does not handle size_t's, causing issues with
     043-recode_size_t.patch and segmentation faults for recode-using pages.
     changed problematic parameters back to "int" and added an overflow check.
     thanks to Thomas Stegbauer, Tim Dijkstra, Bart Cortooms, Sebastian Göbel,
     and Vincent Tondellier for their reports.  closes: #459020.
Files: 
 f62270f6f5dcd91d992869abac7c307d 2139 web optional php5_5.2.5-3.dsc
 e0045e421fed6dd4843b7e4c21ca22fd 122264 web optional php5_5.2.5-3.diff.gz
 8041c806ae4bcfeadf79f296475c17f0 329744 web optional php5-common_5.2.5-3_amd64.deb
 20dcd4419729010570322fe211938e94 2688570 web optional libapache2-mod-php5_5.2.5-3_amd64.deb
 4b5c0e0f67ac15d06a5d18ce175658d0 5227158 web optional php5-cgi_5.2.5-3_amd64.deb
 1d72388000ee00de1fadb7eba2a9ec7b 2633400 web optional php5-cli_5.2.5-3_amd64.deb
 b0b22fd0531c440406eb13ec273bc95f 365010 devel optional php5-dev_5.2.5-3_amd64.deb
 c60f3c3942095e974cd4ffa0232450d1 24788 web optional php5-curl_5.2.5-3_amd64.deb
 57e153d7ad2d9bbd13519d99c2476324 36776 web optional php5-gd_5.2.5-3_amd64.deb
 c3a9f94d9e462475819ae71b46341c82 17358 web optional php5-gmp_5.2.5-3_amd64.deb
 18c757d086f40fcfb4c3bfbed823a641 37506 web optional php5-imap_5.2.5-3_amd64.deb
 3ef0358be5adcddb75e8fed686e3c159 47396 web optional php5-interbase_5.2.5-3_amd64.deb
 fa34d35a17cd984c7d9dae9f540bdd51 19928 web optional php5-ldap_5.2.5-3_amd64.deb
 5416bfb2189fd1afdc01cb8e6d01e552 13890 web optional php5-mcrypt_5.2.5-3_amd64.deb
 a15733eb7707d1d7155f8d3633797d5a 5308 web optional php5-mhash_5.2.5-3_amd64.deb
 b52310a59a7149e8b46efed37bc3ff1f 73000 web optional php5-mysql_5.2.5-3_amd64.deb
 e596b470c994308cab8bbf2588e4e2b8 37232 web optional php5-odbc_5.2.5-3_amd64.deb
 99abaeb47bf909e1823c190d1a5ef350 55792 web optional php5-pgsql_5.2.5-3_amd64.deb
 837ede4c1c42a8390d2b15e254276582 9408 web optional php5-pspell_5.2.5-3_amd64.deb
 2b34e6cc4c985e1087f747fc90f5d593 4930 web optional php5-recode_5.2.5-3_amd64.deb
 cfdf9bd770f9d515325143307cd3f2ad 12128 web optional php5-snmp_5.2.5-3_amd64.deb
 ee873e369d54a6cef72d15c62d6f655c 39092 web optional php5-sqlite_5.2.5-3_amd64.deb
 4b2c56e293bbde7e2da2c440da1ff22d 27732 web optional php5-sybase_5.2.5-3_amd64.deb
 346ed942bcfffb5ec41aa6a5dd4165da 17772 web optional php5-tidy_5.2.5-3_amd64.deb
 ca24f46a5ea50a1165d28d08b51e0d86 39940 web optional php5-xmlrpc_5.2.5-3_amd64.deb
 f2a9f3fb18bae6a1589ab36a09cf851e 13356 web optional php5-xsl_5.2.5-3_amd64.deb
 683a3af68b7d182c8ab3afa797396f13 1030 web optional php5_5.2.5-3_all.deb
 c6fe921ea8963fb2e2d124201e1c3cb8 359940 web optional php-pear_5.2.5-3_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHvNMVynjLPm522B0RApn/AJsHO6sa3Oz3PGpt+o9ziyt/Fc2w5ACeKNax
AGn5nhFl2LIxzaZlho2Grp4=
=4poQ
-----END PGP SIGNATURE-----

Message #54 received at 459020-close@bugs.debian.org (full text, mbox, reply):

From: Sean Finney <seanius@debian.org>

To: 459020-close@bugs.debian.org

Subject: Bug#459020: fixed in php5 5.2.0-8+etch11~p1

Date: Sat, 12 Apr 2008 07:52:45 +0000

Source: php5
Source-Version: 5.2.0-8+etch11~p1

We believe that the bug you reported is fixed in the latest version of
php5, which is due to be installed in the Debian FTP archive:

libapache-mod-php5_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/libapache-mod-php5_5.2.0-8+etch11~p1_amd64.deb
libapache2-mod-php5_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/libapache2-mod-php5_5.2.0-8+etch11~p1_amd64.deb
php-pear_5.2.0-8+etch11~p1_all.deb
  to pool/main/p/php5/php-pear_5.2.0-8+etch11~p1_all.deb
php5-cgi_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-cgi_5.2.0-8+etch11~p1_amd64.deb
php5-cli_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-cli_5.2.0-8+etch11~p1_amd64.deb
php5-common_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-common_5.2.0-8+etch11~p1_amd64.deb
php5-curl_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-curl_5.2.0-8+etch11~p1_amd64.deb
php5-dev_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-dev_5.2.0-8+etch11~p1_amd64.deb
php5-gd_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-gd_5.2.0-8+etch11~p1_amd64.deb
php5-imap_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-imap_5.2.0-8+etch11~p1_amd64.deb
php5-interbase_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-interbase_5.2.0-8+etch11~p1_amd64.deb
php5-ldap_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-ldap_5.2.0-8+etch11~p1_amd64.deb
php5-mcrypt_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-mcrypt_5.2.0-8+etch11~p1_amd64.deb
php5-mhash_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-mhash_5.2.0-8+etch11~p1_amd64.deb
php5-mysql_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-mysql_5.2.0-8+etch11~p1_amd64.deb
php5-odbc_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-odbc_5.2.0-8+etch11~p1_amd64.deb
php5-pgsql_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-pgsql_5.2.0-8+etch11~p1_amd64.deb
php5-pspell_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-pspell_5.2.0-8+etch11~p1_amd64.deb
php5-recode_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-recode_5.2.0-8+etch11~p1_amd64.deb
php5-snmp_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-snmp_5.2.0-8+etch11~p1_amd64.deb
php5-sqlite_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-sqlite_5.2.0-8+etch11~p1_amd64.deb
php5-sybase_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-sybase_5.2.0-8+etch11~p1_amd64.deb
php5-tidy_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-tidy_5.2.0-8+etch11~p1_amd64.deb
php5-xmlrpc_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-xmlrpc_5.2.0-8+etch11~p1_amd64.deb
php5-xsl_5.2.0-8+etch11~p1_amd64.deb
  to pool/main/p/php5/php5-xsl_5.2.0-8+etch11~p1_amd64.deb
php5_5.2.0-8+etch11~p1.diff.gz
  to pool/main/p/php5/php5_5.2.0-8+etch11~p1.diff.gz
php5_5.2.0-8+etch11~p1.dsc
  to pool/main/p/php5/php5_5.2.0-8+etch11~p1.dsc
php5_5.2.0-8+etch11~p1_all.deb
  to pool/main/p/php5/php5_5.2.0-8+etch11~p1_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 459020@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Sean Finney <seanius@debian.org> (supplier of updated php5 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 21 Feb 2008 06:46:02 +0100
Source: php5
Binary: php5-gd php5-ldap php5 php5-xmlrpc php5-pspell libapache2-mod-php5 php5-xsl php5-cgi php-pear php5-tidy php5-pgsql php5-cli php5-recode php5-mhash php5-sybase php5-curl php5-odbc php5-mcrypt php5-mysql php5-common php5-imap php5-snmp php5-dev php5-sqlite libapache-mod-php5 php5-interbase
Architecture: source amd64 all
Version: 5.2.0-8+etch11~p1
Distribution: stable
Urgency: high
Maintainer: Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>
Changed-By: Sean Finney <seanius@debian.org>
Description: 
 libapache-mod-php5 - server-side, HTML-embedded scripting language (apache 1.3 module)
 libapache2-mod-php5 - server-side, HTML-embedded scripting language (apache 2 module)
 php-pear   - PEAR - PHP Extension and Application Repository
 php5       - server-side, HTML-embedded scripting language (meta-package)
 php5-cgi   - server-side, HTML-embedded scripting language (CGI binary)
 php5-cli   - command-line interpreter for the php5 scripting language
 php5-common - Common files for packages built from the php5 source
 php5-curl  - CURL module for php5
 php5-dev   - Files for PHP5 module development
 php5-gd    - GD module for php5
 php5-imap  - IMAP module for php5
 php5-interbase - interbase/firebird module for php5
 php5-ldap  - LDAP module for php5
 php5-mcrypt - MCrypt module for php5
 php5-mhash - MHASH module for php5
 php5-mysql - MySQL module for php5
 php5-odbc  - ODBC module for php5
 php5-pgsql - PostgreSQL module for php5
 php5-pspell - pspell module for php5
 php5-recode - recode module for php5
 php5-snmp  - SNMP module for php5
 php5-sqlite - SQLite module for php5
 php5-sybase - Sybase / MS SQL Server module for php5
 php5-tidy  - tidy module for php5
 php5-xmlrpc - XML-RPC module for php5
 php5-xsl   - XSL module for php5
Closes: 459020
Changes: 
 php5 (5.2.0-8+etch11~p1) stable; urgency=high
 .
   * zend_parse_parameters does not handle size_t's, causing issues with
     043-recode_size_t.patch and segmentation faults for recode-using pages.
     changed problematic parameters back to "int" and added an overflow check.
     thanks to Thomas Stegbauer, Tim Dijkstra, Bart Cortooms, Sebastian Göbel,
     and Vincent Tondellier for their reports.  closes: #459020.
Files: 
 8a60e86c0665e644f8a4b6dc4077c227 1984 web optional php5_5.2.0-8+etch11~p1.dsc
 34f7318593164417667bc88e9a72a68f 121439 web optional php5_5.2.0-8+etch11~p1.diff.gz
 407c8454d3bd195b381209d7ae23d60f 219040 web optional php5-common_5.2.0-8+etch11~p1_amd64.deb
 296cd99ae3696837c417a3357ee87594 2509206 web optional libapache-mod-php5_5.2.0-8+etch11~p1_amd64.deb
 a70f557497cc375eca505f9018938e07 2509974 web optional libapache2-mod-php5_5.2.0-8+etch11~p1_amd64.deb
 65a82cc0783122b94507b4a97256f338 4861582 web optional php5-cgi_5.2.0-8+etch11~p1_amd64.deb
 707d52d88e91377b62fab078aab85cbf 2451236 web optional php5-cli_5.2.0-8+etch11~p1_amd64.deb
 cd7f3e39984a44f3fea53d9fd5b4458f 346186 devel optional php5-dev_5.2.0-8+etch11~p1_amd64.deb
 d247d8208060492d8dd74fcb07438d21 24962 web optional php5-curl_5.2.0-8+etch11~p1_amd64.deb
 54e3c488219c4c47f9b8aa03f8d9e4c7 37018 web optional php5-gd_5.2.0-8+etch11~p1_amd64.deb
 cbd9de93370d6a20870f6f290976833f 36676 web optional php5-imap_5.2.0-8+etch11~p1_amd64.deb
 204c4355a368dc3ae8185e848f98793c 46750 web optional php5-interbase_5.2.0-8+etch11~p1_amd64.deb
 f6b98aff7ac9846d051572cb70f49137 18640 web optional php5-ldap_5.2.0-8+etch11~p1_amd64.deb
 516ed6d6f8e16f6251ef9dcb14713e84 13466 web optional php5-mcrypt_5.2.0-8+etch11~p1_amd64.deb
 76eb022741eb424c0e2c180092ec7aa9 5248 web optional php5-mhash_5.2.0-8+etch11~p1_amd64.deb
 17d0024dd138887683e0b4c0431306a9 71492 web optional php5-mysql_5.2.0-8+etch11~p1_amd64.deb
 49a616993e18b3f9b166a3cfd06526a9 36406 web optional php5-odbc_5.2.0-8+etch11~p1_amd64.deb
 945dbd45006b159f2f26849d6f755d08 54164 web optional php5-pgsql_5.2.0-8+etch11~p1_amd64.deb
 03e4b837da6e6077e9783b51b014ee03 9386 web optional php5-pspell_5.2.0-8+etch11~p1_amd64.deb
 9e324ec70d778e1c1b82560461d49825 4890 web optional php5-recode_5.2.0-8+etch11~p1_amd64.deb
 7904cf8f40258d4df7b5a7ea84ea93cf 12044 web optional php5-snmp_5.2.0-8+etch11~p1_amd64.deb
 47f97ca1438da379576500c4142ffb96 38532 web optional php5-sqlite_5.2.0-8+etch11~p1_amd64.deb
 8d2d3d10837b5a0576b098808fa6b12e 19414 web optional php5-sybase_5.2.0-8+etch11~p1_amd64.deb
 65949994d249744f4d67a7fc3ccbef17 17560 web optional php5-tidy_5.2.0-8+etch11~p1_amd64.deb
 64e52f1289c63969b151ea9245584e89 39152 web optional php5-xmlrpc_5.2.0-8+etch11~p1_amd64.deb
 893fe1acd0a08ac31c7961571db4ec8d 13014 web optional php5-xsl_5.2.0-8+etch11~p1_amd64.deb
 5dba509695a305ce8c4122005a6a83be 1044 web optional php5_5.2.0-8+etch11~p1_all.deb
 9a8b1ff031d2022a8da9622e2714f3f9 311186 web optional php-pear_5.2.0-8+etch11~p1_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFHvRehynjLPm522B0RAnydAJ9T1pOkujAL4JMoDL7/1dXaSTTP4ACdF6w4
ye2FT9GFAbSBh0Ecxrb7Iek=
=AzOZ
-----END PGP SIGNATURE-----

Message #63 received at 459020-close@bugs.debian.org (full text, mbox, reply):

From: sean finney <seanius@debian.org>

To: 459020-close@bugs.debian.org

Subject: Bug#459020: fixed in php5 5.2.0-8+etch11

Date: Tue, 27 May 2008 19:52:25 +0000

Source: php5
Source-Version: 5.2.0-8+etch11

We believe that the bug you reported is fixed in the latest version of
php5, which is due to be installed in the Debian FTP archive:

libapache-mod-php5_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/libapache-mod-php5_5.2.0-8+etch11_i386.deb
libapache2-mod-php5_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/libapache2-mod-php5_5.2.0-8+etch11_i386.deb
php-pear_5.2.0-8+etch11_all.deb
  to pool/main/p/php5/php-pear_5.2.0-8+etch11_all.deb
php5-cgi_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-cgi_5.2.0-8+etch11_i386.deb
php5-cli_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-cli_5.2.0-8+etch11_i386.deb
php5-common_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-common_5.2.0-8+etch11_i386.deb
php5-curl_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-curl_5.2.0-8+etch11_i386.deb
php5-dev_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-dev_5.2.0-8+etch11_i386.deb
php5-gd_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-gd_5.2.0-8+etch11_i386.deb
php5-imap_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-imap_5.2.0-8+etch11_i386.deb
php5-interbase_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-interbase_5.2.0-8+etch11_i386.deb
php5-ldap_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-ldap_5.2.0-8+etch11_i386.deb
php5-mcrypt_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-mcrypt_5.2.0-8+etch11_i386.deb
php5-mhash_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-mhash_5.2.0-8+etch11_i386.deb
php5-mysql_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-mysql_5.2.0-8+etch11_i386.deb
php5-odbc_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-odbc_5.2.0-8+etch11_i386.deb
php5-pgsql_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-pgsql_5.2.0-8+etch11_i386.deb
php5-pspell_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-pspell_5.2.0-8+etch11_i386.deb
php5-recode_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-recode_5.2.0-8+etch11_i386.deb
php5-snmp_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-snmp_5.2.0-8+etch11_i386.deb
php5-sqlite_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-sqlite_5.2.0-8+etch11_i386.deb
php5-sybase_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-sybase_5.2.0-8+etch11_i386.deb
php5-tidy_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-tidy_5.2.0-8+etch11_i386.deb
php5-xmlrpc_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-xmlrpc_5.2.0-8+etch11_i386.deb
php5-xsl_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-xsl_5.2.0-8+etch11_i386.deb
php5_5.2.0-8+etch11.diff.gz
  to pool/main/p/php5/php5_5.2.0-8+etch11.diff.gz
php5_5.2.0-8+etch11.dsc
  to pool/main/p/php5/php5_5.2.0-8+etch11.dsc
php5_5.2.0-8+etch11_all.deb
  to pool/main/p/php5/php5_5.2.0-8+etch11_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 459020@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
sean finney <seanius@debian.org> (supplier of updated php5 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 21 Feb 2008 07:09:01 +0100
Source: php5
Binary: php5-gd php5-ldap php5 php5-xmlrpc php5-pspell libapache2-mod-php5 php5-xsl php5-cgi php-pear php5-tidy php5-pgsql php5-cli php5-recode php5-mhash php5-sybase php5-curl php5-odbc php5-mcrypt php5-mysql php5-common php5-imap php5-snmp php5-dev php5-sqlite libapache-mod-php5 php5-interbase
Architecture: source i386 all
Version: 5.2.0-8+etch11
Distribution: stable-security
Urgency: high
Maintainer: Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>
Changed-By: sean finney <seanius@debian.org>
Description: 
 libapache-mod-php5 - server-side, HTML-embedded scripting language (apache 1.3 module)
 libapache2-mod-php5 - server-side, HTML-embedded scripting language (apache 2 module)
 php-pear   - PEAR - PHP Extension and Application Repository
 php5       - server-side, HTML-embedded scripting language (meta-package)
 php5-cgi   - server-side, HTML-embedded scripting language (CGI binary)
 php5-cli   - command-line interpreter for the php5 scripting language
 php5-common - Common files for packages built from the php5 source
 php5-curl  - CURL module for php5
 php5-dev   - Files for PHP5 module development
 php5-gd    - GD module for php5
 php5-imap  - IMAP module for php5
 php5-interbase - interbase/firebird module for php5
 php5-ldap  - LDAP module for php5
 php5-mcrypt - MCrypt module for php5
 php5-mhash - MHASH module for php5
 php5-mysql - MySQL module for php5
 php5-odbc  - ODBC module for php5
 php5-pgsql - PostgreSQL module for php5
 php5-pspell - pspell module for php5
 php5-recode - recode module for php5
 php5-snmp  - SNMP module for php5
 php5-sqlite - SQLite module for php5
 php5-sybase - Sybase / MS SQL Server module for php5
 php5-tidy  - tidy module for php5
 php5-xmlrpc - XML-RPC module for php5
 php5-xsl   - XSL module for php5
Closes: 459020 479723
Changes: 
 php5 (5.2.0-8+etch11) stable-security; urgency=high
 .
   * Upload to etch for security issues.
   * The following security issues are addressed with this update:
     - CVE-2007-3806: glob denial of service
     - CVE-2008-1384: integer overflow in printf()
     - CVE-2008-2050: possible stack buffer overflow in the FastCGI SAPI
     - CVE-2008-2051: incomplete multibyte chars inside escapeshellcmd()
     closes: #479723
 .
 php5 (5.2.0-8+etch11~p1) stable; urgency=high
 .
   * zend_parse_parameters does not handle size_t's, causing issues with
     043-recode_size_t.patch and segmentation faults for recode-using pages.
     changed problematic parameters back to "int" and added an overflow check.
     thanks to Thomas Stegbauer, Tim Dijkstra, Bart Cortooms, Sebastian Göbel,
     and Vincent Tondellier for their reports.  closes: #459020.
Files: 
 3e8ad8ca8cc172c304768666383ebbc9 2270 web optional php5_5.2.0-8+etch11.dsc
 ea2e45b0854e3837d66e570f0330592a 916209 web optional php5_5.2.0-8+etch11.diff.gz
 67165436c7332cad7e617a1c7ba23a6a 216436 web optional php5-common_5.2.0-8+etch11_i386.deb
 cd24e72308c9a3522dc3d9b249118b90 2412826 web optional libapache-mod-php5_5.2.0-8+etch11_i386.deb
 bf9a64884732f6613852671f05d53f7e 2413316 web optional libapache2-mod-php5_5.2.0-8+etch11_i386.deb
 cbcd560954179345119dafeef18d711b 4757388 web optional php5-cgi_5.2.0-8+etch11_i386.deb
 81caf9afe0c288a75615d667be22e305 2397708 web optional php5-cli_5.2.0-8+etch11_i386.deb
 efa56ef4145fa46d8ca2545cdd4c064f 349070 devel optional php5-dev_5.2.0-8+etch11_i386.deb
 363b5b4a86b351471af72045d35ecaf9 24470 web optional php5-curl_5.2.0-8+etch11_i386.deb
 2a4a581d79640faff08a527203ce5ec3 33410 web optional php5-gd_5.2.0-8+etch11_i386.deb
 3d2aa86d92bb0f863e2ff2a89d3db0b1 34492 web optional php5-imap_5.2.0-8+etch11_i386.deb
 77c5c8fb872edc3c6be892e27ef6d922 44382 web optional php5-interbase_5.2.0-8+etch11_i386.deb
 6f369ddd9d72999ad020c610cd20097a 17244 web optional php5-ldap_5.2.0-8+etch11_i386.deb
 fa42ab2e0e6deb4548ab9e798d02e6cf 12832 web optional php5-mcrypt_5.2.0-8+etch11_i386.deb
 d894cd54608dd355a3ab70f3abfde3fd 5048 web optional php5-mhash_5.2.0-8+etch11_i386.deb
 64e9d20b6474561c3aa97d7e6fb4e45d 64684 web optional php5-mysql_5.2.0-8+etch11_i386.deb
 f12363b920702c9d0263c4ac173dfef3 33432 web optional php5-odbc_5.2.0-8+etch11_i386.deb
 7285f424f23121b0a421f0d0336e17ac 50482 web optional php5-pgsql_5.2.0-8+etch11_i386.deb
 88c4c31a65fc2cecedeaa051f89d2ce6 8626 web optional php5-pspell_5.2.0-8+etch11_i386.deb
 93001e931fcd48c5c4d4344fbed3c959 4772 web optional php5-recode_5.2.0-8+etch11_i386.deb
 1351bb06e1543a6a6fd41cde73a13d95 11304 web optional php5-snmp_5.2.0-8+etch11_i386.deb
 3f9daacd91e8e7282056c7d8b74194ff 34494 web optional php5-sqlite_5.2.0-8+etch11_i386.deb
 5e910225267b4bc620eb47ce81aa89dc 18406 web optional php5-sybase_5.2.0-8+etch11_i386.deb
 1a2e4817f422d4560e00df78e0935fc6 16470 web optional php5-tidy_5.2.0-8+etch11_i386.deb
 108db9ef7d31dfe1bacc3c14dd7fc97b 36446 web optional php5-xmlrpc_5.2.0-8+etch11_i386.deb
 35d3142ebd5d51b244a004c5ac83725d 12250 web optional php5-xsl_5.2.0-8+etch11_i386.deb
 586e42f3362ca1542baf751f588c8113 1046 web optional php5_5.2.0-8+etch11_all.deb
 43475d1d330358729d695d2ef35b30dc 311398 web optional php-pear_5.2.0-8+etch11_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iQEVAwUBSCVv62z0hbPcukPfAQI8VggApeXN+zcPAG12/PfG00xumzYRK0SujZye
Zb5eLPzB5CTYKfFjmf99ND4uILvhJ86+45XoHwikmNEI4xH1UwakEYd1+ihzAqnz
Dn/rZ9Hvy/5u5ZAcphfUT9+dFgjsFbBs+ALPmgBeg56i1quPtGVvzfqozaJbMPoN
EWkyXpYx9knzagSNSFfvc2f+gK0e6F9XQcqOiO0u9XJqJWeBiArXaZ8AUHQATgEw
Pfwycu8EKmONOlLKiccpc9AsbPJ1KxJOMB9wb1PtyFnvCeyq54oo3/gY47rah6Yc
n9VZh/KlTZgAgW0w8g6Qk9+N9iFu+/stSiVQrZVgbqC143zQEhAsOA==
=hCwe
-----END PGP SIGNATURE-----

Message #68 received at 459020-close@bugs.debian.org (full text, mbox, reply):

From: sean finney <seanius@debian.org>

To: 459020-close@bugs.debian.org

Subject: Bug#459020: fixed in php5 5.2.0-8+etch11

Date: Sat, 26 Jul 2008 09:57:51 +0000

Source: php5
Source-Version: 5.2.0-8+etch11

We believe that the bug you reported is fixed in the latest version of
php5, which is due to be installed in the Debian FTP archive:

libapache-mod-php5_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/libapache-mod-php5_5.2.0-8+etch11_i386.deb
libapache2-mod-php5_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/libapache2-mod-php5_5.2.0-8+etch11_i386.deb
php-pear_5.2.0-8+etch11_all.deb
  to pool/main/p/php5/php-pear_5.2.0-8+etch11_all.deb
php5-cgi_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-cgi_5.2.0-8+etch11_i386.deb
php5-cli_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-cli_5.2.0-8+etch11_i386.deb
php5-common_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-common_5.2.0-8+etch11_i386.deb
php5-curl_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-curl_5.2.0-8+etch11_i386.deb
php5-dev_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-dev_5.2.0-8+etch11_i386.deb
php5-gd_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-gd_5.2.0-8+etch11_i386.deb
php5-imap_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-imap_5.2.0-8+etch11_i386.deb
php5-interbase_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-interbase_5.2.0-8+etch11_i386.deb
php5-ldap_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-ldap_5.2.0-8+etch11_i386.deb
php5-mcrypt_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-mcrypt_5.2.0-8+etch11_i386.deb
php5-mhash_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-mhash_5.2.0-8+etch11_i386.deb
php5-mysql_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-mysql_5.2.0-8+etch11_i386.deb
php5-odbc_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-odbc_5.2.0-8+etch11_i386.deb
php5-pgsql_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-pgsql_5.2.0-8+etch11_i386.deb
php5-pspell_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-pspell_5.2.0-8+etch11_i386.deb
php5-recode_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-recode_5.2.0-8+etch11_i386.deb
php5-snmp_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-snmp_5.2.0-8+etch11_i386.deb
php5-sqlite_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-sqlite_5.2.0-8+etch11_i386.deb
php5-sybase_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-sybase_5.2.0-8+etch11_i386.deb
php5-tidy_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-tidy_5.2.0-8+etch11_i386.deb
php5-xmlrpc_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-xmlrpc_5.2.0-8+etch11_i386.deb
php5-xsl_5.2.0-8+etch11_i386.deb
  to pool/main/p/php5/php5-xsl_5.2.0-8+etch11_i386.deb
php5_5.2.0-8+etch11.diff.gz
  to pool/main/p/php5/php5_5.2.0-8+etch11.diff.gz
php5_5.2.0-8+etch11.dsc
  to pool/main/p/php5/php5_5.2.0-8+etch11.dsc
php5_5.2.0-8+etch11_all.deb
  to pool/main/p/php5/php5_5.2.0-8+etch11_all.deb



A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 459020@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
sean finney <seanius@debian.org> (supplier of updated php5 package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Format: 1.7
Date: Thu, 21 Feb 2008 07:09:01 +0100
Source: php5
Binary: php5-gd php5-ldap php5 php5-xmlrpc php5-pspell libapache2-mod-php5 php5-xsl php5-cgi php-pear php5-tidy php5-pgsql php5-cli php5-recode php5-mhash php5-sybase php5-curl php5-odbc php5-mcrypt php5-mysql php5-common php5-imap php5-snmp php5-dev php5-sqlite libapache-mod-php5 php5-interbase
Architecture: source i386 all
Version: 5.2.0-8+etch11
Distribution: stable-security
Urgency: high
Maintainer: Debian PHP Maintainers <pkg-php-maint@lists.alioth.debian.org>
Changed-By: sean finney <seanius@debian.org>
Description: 
 libapache-mod-php5 - server-side, HTML-embedded scripting language (apache 1.3 module)
 libapache2-mod-php5 - server-side, HTML-embedded scripting language (apache 2 module)
 php-pear   - PEAR - PHP Extension and Application Repository
 php5       - server-side, HTML-embedded scripting language (meta-package)
 php5-cgi   - server-side, HTML-embedded scripting language (CGI binary)
 php5-cli   - command-line interpreter for the php5 scripting language
 php5-common - Common files for packages built from the php5 source
 php5-curl  - CURL module for php5
 php5-dev   - Files for PHP5 module development
 php5-gd    - GD module for php5
 php5-imap  - IMAP module for php5
 php5-interbase - interbase/firebird module for php5
 php5-ldap  - LDAP module for php5
 php5-mcrypt - MCrypt module for php5
 php5-mhash - MHASH module for php5
 php5-mysql - MySQL module for php5
 php5-odbc  - ODBC module for php5
 php5-pgsql - PostgreSQL module for php5
 php5-pspell - pspell module for php5
 php5-recode - recode module for php5
 php5-snmp  - SNMP module for php5
 php5-sqlite - SQLite module for php5
 php5-sybase - Sybase / MS SQL Server module for php5
 php5-tidy  - tidy module for php5
 php5-xmlrpc - XML-RPC module for php5
 php5-xsl   - XSL module for php5
Closes: 459020 479723
Changes: 
 php5 (5.2.0-8+etch11) stable-security; urgency=high
 .
   * Upload to etch for security issues.
   * The following security issues are addressed with this update:
     - CVE-2007-3806: glob denial of service
     - CVE-2008-1384: integer overflow in printf()
     - CVE-2008-2050: possible stack buffer overflow in the FastCGI SAPI
     - CVE-2008-2051: incomplete multibyte chars inside escapeshellcmd()
     closes: #479723
 .
 php5 (5.2.0-8+etch11~p1) stable; urgency=high
 .
   * zend_parse_parameters does not handle size_t's, causing issues with
     043-recode_size_t.patch and segmentation faults for recode-using pages.
     changed problematic parameters back to "int" and added an overflow check.
     thanks to Thomas Stegbauer, Tim Dijkstra, Bart Cortooms, Sebastian Göbel,
     and Vincent Tondellier for their reports.  closes: #459020.
Files: 
 3e8ad8ca8cc172c304768666383ebbc9 2270 web optional php5_5.2.0-8+etch11.dsc
 ea2e45b0854e3837d66e570f0330592a 916209 web optional php5_5.2.0-8+etch11.diff.gz
 67165436c7332cad7e617a1c7ba23a6a 216436 web optional php5-common_5.2.0-8+etch11_i386.deb
 cd24e72308c9a3522dc3d9b249118b90 2412826 web optional libapache-mod-php5_5.2.0-8+etch11_i386.deb
 bf9a64884732f6613852671f05d53f7e 2413316 web optional libapache2-mod-php5_5.2.0-8+etch11_i386.deb
 cbcd560954179345119dafeef18d711b 4757388 web optional php5-cgi_5.2.0-8+etch11_i386.deb
 81caf9afe0c288a75615d667be22e305 2397708 web optional php5-cli_5.2.0-8+etch11_i386.deb
 efa56ef4145fa46d8ca2545cdd4c064f 349070 devel optional php5-dev_5.2.0-8+etch11_i386.deb
 363b5b4a86b351471af72045d35ecaf9 24470 web optional php5-curl_5.2.0-8+etch11_i386.deb
 2a4a581d79640faff08a527203ce5ec3 33410 web optional php5-gd_5.2.0-8+etch11_i386.deb
 3d2aa86d92bb0f863e2ff2a89d3db0b1 34492 web optional php5-imap_5.2.0-8+etch11_i386.deb
 77c5c8fb872edc3c6be892e27ef6d922 44382 web optional php5-interbase_5.2.0-8+etch11_i386.deb
 6f369ddd9d72999ad020c610cd20097a 17244 web optional php5-ldap_5.2.0-8+etch11_i386.deb
 fa42ab2e0e6deb4548ab9e798d02e6cf 12832 web optional php5-mcrypt_5.2.0-8+etch11_i386.deb
 d894cd54608dd355a3ab70f3abfde3fd 5048 web optional php5-mhash_5.2.0-8+etch11_i386.deb
 64e9d20b6474561c3aa97d7e6fb4e45d 64684 web optional php5-mysql_5.2.0-8+etch11_i386.deb
 f12363b920702c9d0263c4ac173dfef3 33432 web optional php5-odbc_5.2.0-8+etch11_i386.deb
 7285f424f23121b0a421f0d0336e17ac 50482 web optional php5-pgsql_5.2.0-8+etch11_i386.deb
 88c4c31a65fc2cecedeaa051f89d2ce6 8626 web optional php5-pspell_5.2.0-8+etch11_i386.deb
 93001e931fcd48c5c4d4344fbed3c959 4772 web optional php5-recode_5.2.0-8+etch11_i386.deb
 1351bb06e1543a6a6fd41cde73a13d95 11304 web optional php5-snmp_5.2.0-8+etch11_i386.deb
 3f9daacd91e8e7282056c7d8b74194ff 34494 web optional php5-sqlite_5.2.0-8+etch11_i386.deb
 5e910225267b4bc620eb47ce81aa89dc 18406 web optional php5-sybase_5.2.0-8+etch11_i386.deb
 1a2e4817f422d4560e00df78e0935fc6 16470 web optional php5-tidy_5.2.0-8+etch11_i386.deb
 108db9ef7d31dfe1bacc3c14dd7fc97b 36446 web optional php5-xmlrpc_5.2.0-8+etch11_i386.deb
 35d3142ebd5d51b244a004c5ac83725d 12250 web optional php5-xsl_5.2.0-8+etch11_i386.deb
 586e42f3362ca1542baf751f588c8113 1046 web optional php5_5.2.0-8+etch11_all.deb
 43475d1d330358729d695d2ef35b30dc 311398 web optional php-pear_5.2.0-8+etch11_all.deb

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iQEVAwUBSCVv62z0hbPcukPfAQI8VggApeXN+zcPAG12/PfG00xumzYRK0SujZye
Zb5eLPzB5CTYKfFjmf99ND4uILvhJ86+45XoHwikmNEI4xH1UwakEYd1+ihzAqnz
Dn/rZ9Hvy/5u5ZAcphfUT9+dFgjsFbBs+ALPmgBeg56i1quPtGVvzfqozaJbMPoN
EWkyXpYx9knzagSNSFfvc2f+gK0e6F9XQcqOiO0u9XJqJWeBiArXaZ8AUHQATgEw
Pfwycu8EKmONOlLKiccpc9AsbPJ1KxJOMB9wb1PtyFnvCeyq54oo3/gY47rah6Yc
n9VZh/KlTZgAgW0w8g6Qk9+N9iFu+/stSiVQrZVgbqC143zQEhAsOA==
=hCwe
-----END PGP SIGNATURE-----

Send a report that this bug log contains spam.