[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Accepted php-pear 1:1.10.1+submodules+notgz-9+deb9u3 (source) into oldstable



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Tue, 06 Apr 2021 16:28:36 +0200
Source: php-pear
Binary: php-pear
Architecture: source
Version: 1:1.10.1+submodules+notgz-9+deb9u3
Distribution: stretch-security
Urgency: high
Maintainer: Debian PHP PEAR Maintainers <pkg-php-pear@lists.alioth.debian.org>
Changed-By: Sylvain Beucler <beuc@debian.org>
Description:
 php-pear   - ${phppear:summary}
Changes:
 php-pear (1:1.10.1+submodules+notgz-9+deb9u3) stretch-security; urgency=high
 .
   * Non-maintainer upload by the LTS Security Team.
   * Backport fix for Archive_Tar test suite
   * CVE-2020-36193: Tar.php in Archive_Tar allows write operations with
     Directory Traversal due to inadequate checking of symbolic links.
Checksums-Sha1:
 7009bc683af27309743313964084ec4fb986fefd 2087 php-pear_1.10.1+submodules+notgz-9+deb9u3.dsc
 b7680743f144ed2eb10ad5e20fa6217151a00ccd 8604 php-pear_1.10.1+submodules+notgz-9+deb9u3.debian.tar.xz
 75144fd38c29ecda0c048e075ee562e1f2d66182 6163 php-pear_1.10.1+submodules+notgz-9+deb9u3_all.buildinfo
Checksums-Sha256:
 6a246e608e27ec128e629c750f738be77c510c0bedaee95721fa32ebbcb26f5c 2087 php-pear_1.10.1+submodules+notgz-9+deb9u3.dsc
 f5bc25a701985a79f22a5e0473cd7d48db86baf9482317511f974dd77e880596 8604 php-pear_1.10.1+submodules+notgz-9+deb9u3.debian.tar.xz
 75431629e608e17484eb9d082d9d4ea5f374a0daa6572d12f0d99a47d2dc96cc 6163 php-pear_1.10.1+submodules+notgz-9+deb9u3_all.buildinfo
Files:
 9013d28ce477713b0413c1df3bf06a92 2087 php optional php-pear_1.10.1+submodules+notgz-9+deb9u3.dsc
 22e8ee2c8b9defa4e5e0b4ccb300cac2 8604 php optional php-pear_1.10.1+submodules+notgz-9+deb9u3.debian.tar.xz
 5482f3f060c24ed71b2a43050abc3081 6163 php optional php-pear_1.10.1+submodules+notgz-9+deb9u3_all.buildinfo

-----BEGIN PGP SIGNATURE-----
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=ZH9f
-----END PGP SIGNATURE-----


Reply to: