SPECS: php.spec - two security notes (one is not fixed, yet)
blues
blues at pld-linux.org
Mon Dec 29 12:06:16 CET 2008
Author: blues Date: Mon Dec 29 11:06:16 2008 GMT
Module: SPECS Tag: HEAD
---- Log message:
- two security notes (one is not fixed, yet)
---- Files affected:
SPECS:
php.spec (1.766 -> 1.767)
---- Diffs:
================================================================
Index: SPECS/php.spec
diff -u SPECS/php.spec:1.766 SPECS/php.spec:1.767
--- SPECS/php.spec:1.766 Wed Dec 17 13:27:30 2008
+++ SPECS/php.spec Mon Dec 29 12:06:10 2008
@@ -13,6 +13,8 @@
# - make additional headers and checking added by mail patch configurable
# - modularize session, standard (output from pure php -m)?
# - http://forum.lighttpd.net/topic/34454
+# - Security note: CVE-2008-5498 (no solution at this time):
+# http://securitytracker.com/alerts/2008/Dec/1021494.html
#
# Conditional build:
%bcond_with fdf # with FDF (PDF forms) module (BR: proprietary lib)
@@ -2904,6 +2906,9 @@
All persons listed below can be reached at <cvs_login>@pld-linux.org
$Log$
+Revision 1.767 2008/12/29 11:06:10 blues
+- two security notes (one is not fixed, yet)
+
Revision 1.766 2008/12/17 12:27:30 glen
- append /usr/share/php to default include path; rel 3
@@ -2946,7 +2951,7 @@
- my merge to 5.2.7
Revision 1.753 2008/12/05 23:09:30 arekm
-- up to 5.2.7 [fixes: SA-06/2008]
+- up to 5.2.7 [fixes: SA-06/2008, CVE-2008-5557]
Revision 1.752 2008/12/04 15:09:36 glen
- compat for old libtool, libtool epoch
================================================================
---- CVS-web:
http://cvs.pld-linux.org/cgi-bin/cvsweb.cgi/SPECS/php.spec?r1=1.766&r2=1.767&f=u
More information about the pld-cvs-commit
mailing list