Re: pre-approval of new upload of php5:

[Luk Claes <luk@debian.org>]

Raphael Geissert wrote:
> Hi Marc et al,
> 
> Sorry for the late reply.
> 
> On Tuesday 23 December 2008, Marc 'HE' Brockschmidt wrote:
>> "Raphael Geissert" <atomo64@gmail.com> writes:
>>> RT:
>>> Would you accept the attached .diff for lenny's php5?
>> Could you send us the output from diff -w? There's a lot of reindenting
> 
> Attached is the .diff with -w; diffstat now is:
> $ svn diff -x -w | diffstat
>  deprecated_freetds_check.patch                         |   88 -
>  gentoo/005_stream_context_set_params-crash.patch       |   38
>  gentoo/006_PDORow-crash.patch                          |   32
>  gentoo/007_dom-setAttributeNode-crash.patch            |   37
>  gentoo/009_array-function-crashes.patch                |  208 +++
>  gentoo/010_ticks-zts-crashes.patch                     |   68 +
>  gentoo/014_explode-overflow.patch                      |   46
>  gentoo/015_CVE-2008-2665-wrapper-safemode-bypass.patch |   40
>  gentoo/017_xmlrpc-invalid-callback-crash.patch         | 1056 +++++++++++++++++
>  gentoo/019_new-memory-corruption.patch                 |  220 +++
>  gentoo/freetds-compat.patch                            |   88 +
>  series                                                 |   11
>  12 files changed, 1843 insertions(+), 89 deletions(-)
> 
> Note that there are other changes that are planned to be included to fix
> security issues (the CVE mentioned above is unimportant for the security team).
> 
>> going on, making reading the diff quite hard. You could, of course, also
>> point to the actual repository and the needed patches :)
> 
> We use a debian/-only svn repo, so it won't be of much use, I think:
> http://svn.debian.org/viewsvn/pkg-php?rev=1220&view=rev

Ack, will this go through testing-security?

Cheers

Luk