Accepted php-json-ext 1.2.1-3.2+etch1 (source i386)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Wed, 15 Apr 2009 13:41:11 +0000
Source: php-json-ext
Binary: php4-json php5-json
Architecture: source i386
Version: 1.2.1-3.2+etch1
Distribution: oldstable-security
Urgency: high
Maintainer: Pierre Habouzit <madcoder@debian.org>
Changed-By: Steffen Joeris <white@debian.org>
Description:
php4-json - json serialiser for PHP4
php5-json - JSON serialiser for PHP5
Changes:
php-json-ext (1.2.1-3.2+etch1) oldstable-security; urgency=high
.
* Non-maintainer upload by the security team
* Fix DoS via a malformed string to the json_decode API function
Fixes: CVE-2009-1271
Files:
0ec03d0f1b9070acbc7cd27d0391f5b8 655 web optional php-json-ext_1.2.1-3.2+etch1.dsc
2f1229af3e99a0dd64b4d4f1fe7eb8f4 205184 web optional php-json-ext_1.2.1.orig.tar.gz
38f1e8a9a59ed98b8734c8032a26141c 6927 web optional php-json-ext_1.2.1-3.2+etch1.diff.gz
e280d560eea3f4bd8ea838ee60bddd88 14362 web optional php4-json_1.2.1-3.2+etch1_i386.deb
6c085917b6825c03f92ee1715ce7bc2c 14796 web optional php5-json_1.2.1-3.2+etch1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAknnLL4ACgkQ62zWxYk/rQc8CwCfZu36rBkpslebEOHtdgJ6N3YI
efsAn1ek3lSFZUEdhXTcALO4zfaIUgKo
=MX3b
-----END PGP SIGNATURE-----
Accepted:
php-json-ext_1.2.1-3.2+etch1.diff.gz
to pool/main/p/php-json-ext/php-json-ext_1.2.1-3.2+etch1.diff.gz
php-json-ext_1.2.1-3.2+etch1.dsc
to pool/main/p/php-json-ext/php-json-ext_1.2.1-3.2+etch1.dsc
php4-json_1.2.1-3.2+etch1_i386.deb
to pool/main/p/php-json-ext/php4-json_1.2.1-3.2+etch1_i386.deb
php5-json_1.2.1-3.2+etch1_i386.deb
to pool/main/p/php-json-ext/php5-json_1.2.1-3.2+etch1_i386.deb
Reply to: