Debian
php5 package

php5 5.3.6-13 source package in Debian

Changelog

php5 (5.3.6-13) unstable; urgency=low
  * Fix CVE-2011-2483: 8-bit character mishandling allows different    password pairs to produce the same hash (Closes: #631347)  * Add support for $2x$ identifier as blowfish variant in crypt.c to    allow backward compatibility with old invalid hashes  * Return fail string (*0) on invalid Blowfish salt rounds  * Add NEWS item about incompatible blowfish hashes  * Fix CVE-2011-1938: Stack-based buffer overflow in the socket_connect    function in ext/sockets/sockets.c in PHP 5.3.3 through 5.3.6 might    allow context-dependent attackers to execute arbitrary code via a    long pathname for a UNIX socket. -- Ondřej Surý <email address hidden>  Mon, 04 Jul 2011 12:41:07 +0200

Upload details

Uploaded by:
Debian PHP Maintainers
Uploaded to:
Sid
Original maintainer:
Debian PHP Maintainers
Architectures:
any
Section:
php
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
php5_5.3.6-13.dsc 2.6 KiB f52897ec2b8ec6216a3b9433a5055ea3bff62093e20f198eb87ad9c50550f547
php5_5.3.6.orig.tar.gz 13.7 MiB 521a9d140b4cab324aeceed31409a797de20680842071016d60cc5ae3cc9462e
php5_5.3.6-13.diff.gz 192.5 KiB e355e1ed0cccff892afc9781c6911ab6fd2d06faa840f2d478c725cb07a6e3c9

No changes file available.

Binary packages built by this source