-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 3.0 (quilt) Source: php5 Binary: php5, php5-common, libapache2-mod-php5, libapache2-mod-php5filter, php5-cgi, php5-cli, php5-phpdbg, php5-fpm, libphp5-embed, php5-dev, php5-dbg, php-pear, php5-curl, php5-enchant, php5-gd, php5-gmp, php5-imap, php5-interbase, php5-intl, php5-ldap, php5-mcrypt, php5-readline, php5-mysql, php5-mysqlnd, php5-odbc, php5-pgsql, php5-pspell, php5-recode, php5-snmp, php5-sqlite, php5-sybase, php5-tidy, php5-xmlrpc, php5-xsl Architecture: any all Version: 5.6.7+dfsg-1 Maintainer: Debian PHP Maintainers <[email protected]> Uploaders: Ondřej Surý <[email protected]>, Thijs Kinkhorst <[email protected]>, Lior Kaplan <[email protected]> Homepage: http://www.php.net/ Standards-Version: 3.9.6 Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-php/php.git Vcs-Git: git://anonscm.debian.org/pkg-php/php.git Testsuite: autopkgtest Build-Depends: apache2-dev (>= 2.4), dh-apache2, dh-systemd (>= 1.3), libsystemd-daemon-dev [linux-any], autoconf (>= 2.63), automake (>= 1.11) | automake1.11, bison, chrpath, debhelper (>= 9), dpkg-dev (>= 1.16.1~), firebird-dev [!hurd-any !m68k !hppa !ppc64] | firebird2.5-dev [!hurd-any !m68k !hppa !ppc64] | firebird2.1-dev [!hurd-any !m68k !hppa !ppc64], flex, freetds-dev, libapr1-dev (>= 1.2.7-8), libbz2-dev, libc-client-dev, libcurl4-openssl-dev | libcurl-dev, libdb-dev, libedit-dev (>= 2.11-20080614-4), libenchant-dev, libevent-dev (>= 1.4.11), libexpat1-dev (>= 1.95.2-2.1), libfreetype6-dev, libgcrypt11-dev, libgd-dev (>= 2.1.0) | libgd2-dev, libglib2.0-dev, libgmp3-dev, libicu-dev, libjpeg-dev | libjpeg62-dev, libkrb5-dev, libldap2-dev, libmagic-dev, libmcrypt-dev, libmhash-dev (>= 0.8.8), libmysqlclient-dev | libmysqlclient15-dev, libonig-dev, libpam0g-dev, libpcre3-dev (>= 6.6), libpng-dev | libpng12-dev, libpq-dev, libpspell-dev, libqdbm-dev, librecode-dev, libsasl2-dev, libsnmp-dev, libsqlite3-dev, libssl-dev, libtidy-dev, libtool (>= 2.2), libwrap0-dev, libxmltok1-dev, libxml2-dev, libvpx-dev, libxslt1-dev (>= 1.0.18), systemtap-sdt-dev [amd64 i386 powerpc armel armhf ia64], locales-all | language-pack-de, mysql-server | virtual-mysql-server, netbase, netcat-traditional, re2c, unixodbc-dev, zlib1g-dev, tzdata, libapparmor-dev Build-Conflicts: bind-dev Package-List: libapache2-mod-php5 deb httpd optional arch=any libapache2-mod-php5filter deb httpd extra arch=any libphp5-embed deb php optional arch=any php-pear deb php optional arch=all php5 deb php optional arch=all php5-cgi deb php optional arch=any php5-cli deb php optional arch=any php5-common deb php optional arch=any php5-curl deb php optional arch=any php5-dbg deb debug extra arch=any php5-dev deb php optional arch=any php5-enchant deb php optional arch=any php5-fpm deb php optional arch=any php5-gd deb php optional arch=any php5-gmp deb php optional arch=any php5-imap deb php optional arch=any php5-interbase deb php optional arch=linux-any,kfreebsd-any php5-intl deb php optional arch=any php5-ldap deb php optional arch=any php5-mcrypt deb php optional arch=any php5-mysql deb php optional arch=any php5-mysqlnd deb php extra arch=any php5-odbc deb php optional arch=any php5-pgsql deb php optional arch=any php5-phpdbg deb php optional arch=any php5-pspell deb php optional arch=any php5-readline deb php optional arch=any php5-recode deb php optional arch=any php5-snmp deb php optional arch=any php5-sqlite deb php optional arch=any php5-sybase deb php optional arch=any php5-tidy deb php optional arch=any php5-xmlrpc deb php optional arch=any php5-xsl deb php optional arch=any Checksums-Sha1: 255384dba5ecd640a08a5a128887ddd5cdf5ea70 11241916 php5_5.6.7+dfsg.orig.tar.xz 5adaf3fb8d60fbcd3cd5c31f38e01884bc5e1064 120352 php5_5.6.7+dfsg-1.debian.tar.xz Checksums-Sha256: fc03e96e3c2f32e3a1c5a4970465a03af65beea1e2f92de9e3a1709cd41ba2ae 11241916 php5_5.6.7+dfsg.orig.tar.xz 64977658815012be3e0da7add8f1639393eff5d75a750b2dd4297847accc62e7 120352 php5_5.6.7+dfsg-1.debian.tar.xz Files: 135bf6e511c96faecd6c9caa34512e86 11241916 php5_5.6.7+dfsg.orig.tar.xz 39292ebca6a1f15b26ea22cf373782c1 120352 php5_5.6.7+dfsg-1.debian.tar.xz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQJ8BAEBCgBmBQJVEU83XxSAAAAAAC4AKGlzc3Vlci1mcHJAbm90YXRpb25zLm9w ZW5wZ3AuZmlmdGhob3JzZW1hbi5uZXQzMEI5MzNEODBGQ0UzRDk4MUEyRDM4RkIw Qzk5QjcwRUY0RkNCQjA3AAoJEAyZtw70/LsHRsgP/0/idNI2zQbQWy/f8UwCPtaM tGrhiUH8AiQgLHc/lnpVeP7S5GtLlNrUfUbsh2ua3tyL7oDyKOWT43SsKVsr6XPG GWcmxjc7IUnkKmuW3EoXiHKYA//KUqn5NZgBGMThoD+t0L18ZbCPcAG2a3f95/uZ Wu03ifuiwHgtCkZbpCM6wHAJqcZRAZTeHhZPL/0fSZO8JM//qAoCrvGsalqbpdbk P20T1sWf++1Xc76ccM3rG3HkqSxbC3L4i2ywBp2kCTqQPyVzeylD9WkcUy+PDiiD MW7Hbdr8rTho+5lPI5WX6oAgztcVRioFcuMOMRr0Llojub0bDYmljmS8Xa5Ar6dL NTV5Yvvu8poh34V01a5FTrNSBgJh7O78dz90S7D0dGCgvf/riE1HN7HhrYjwdGeh tfFujYeSj+UIdi5kNa//Ib5ncqzgj0Xr58ZUDTaGnubWY/SlLssEE2iUUouyXsJ9 NhGHhwBzsX0zSMENNZBDMPZc5VcSCpkf/Y3oAk44hlcKgUQ7F7Q1GYgnFX34lwvr 4ZE3VL/Ia1ZT3CUBuZAj/ngI6bBGjuMPGfhsaZJ6Ahax8Igg+Ln2/Wv6JVYYiAoz XYng1Hy3FwvdWyqTyHOuskh9A6XS2W977bcqOv6R07p9r5Tzye3zNrl71JZfhiji zOC1LDfkisdIUoE77g3y =Ap/L -----END PGP SIGNATURE----- Changes: php5 (5.6.7+dfsg-1) unstable; urgency=medium * New upstream version 5.6.7+dfsg - Core: . Fixed bug #69174 (leaks when unused inner class use traits precedence). . Fixed bug #69139 (Crash in gc_zval_possible_root on unserialize). . Fixed bug #69121 (Segfault in get_current_user when script owner is not in passwd with ZTS build). . Fixed bug #65593 (Segfault when calling ob_start from output buffering callback). . Fixed bug #68986 (pointer returned by php_stream_fopen_temporary_file not validated in memory.c). . Fixed bug #68166 (Exception with invalid character causes segv). . Fixed bug #69141 (Missing arguments in reflection info for some builtin functions). . Fixed bug #68976 (Use After Free Vulnerability in unserialize()) (CVE-2015-0231). . Fixed bug #69134 (Per Directory Values overrides PHP_INI_SYSTEM configuration options). . Fixed bug #69207 (move_uploaded_file allows nulls in path). - CGI: . Fixed bug #69015 (php-cgi's getopt does not see $argv). - CLI: . Fixed bug #67741 (auto_prepend_file messes up __LINE__). - cURL: . Fixed bug #69088 (PHP_MINIT_FUNCTION does not fully initialize cURL on Win32). . Add CURLPROXY_SOCKS4A and CURLPROXY_SOCKS5_HOSTNAME constants if supported by libcurl. - Ereg: . Fixed bug #69248 (heap overflow vulnerability in regcomp.c) (CVE-2015-2305). - FPM: . Fixed bug #68822 (request time is reset too early). - ODBC: . Fixed bug #68964 (Allowed memory size exhausted with odbc_exec). - Opcache: . Fixed bug #69159 (Opcache causes problem when passing a variable variable to a function). . Fixed bug #69125 (Array numeric string as key). . Fixed bug #69038 (switch(SOMECONSTANT) misbehaves). - OpenSSL: . Fixed bug #68912 (Segmentation fault at openssl_spki_new). . Fixed bug #61285, #68329, #68046, #41631 (encrypted streams don't observe socket timeouts). . Fixed bug #68920 (use strict peer_fingerprint input checks) . Fixed bug #68879 (IP Address fields in subjectAltNames not used) . Fixed bug #68265 (SAN match fails with trailing DNS dot) . Fixed bug #67403 (Add signatureType to openssl_x509_parse) . Fixed bug (#69195 Inconsistent stream crypto values across versions) - pgsql: . Fixed bug #68638 (pg_update() fails to store infinite values). - Readline: . Fixed bug #69054 (Null dereference in readline_(read|write)_history() without parameters). - SOAP: . Fixed bug #69085 (SoapClient's __call() type confusion through unserialize()). - SPL: . Fixed bug #69108 ("Segmentation fault" when (de)serializing SplObjectStorage). . Fixed bug #68557 (RecursiveDirectoryIterator::seek(0) broken after calling getChildren()). - ZIP: . Fixed bug #69253 (ZIP Integer Overflow leads to writing past heap boundary) (CVE-2015-2331). * Refresh patches for 5.6.7 release * Pull a patch to fix SQL_DESC_OCTET_LENGTH not supported by ADS ODBC driver (PHP#68350) from Debian wheezy PHP 5.4 branch * Fix PHP segfault in zend_hash_find (PHP#68486) * Move PEAR-Builder-print-info-about-php5-dev.patch to debian/ as it's not a quilt patch -- Ondřej Surý <[email protected]> Tue, 24 Mar 2015 11:19:21 +0100
