Re: pre-approval of new upload of php5:
Raphael Geissert wrote:
> Hi Marc et al,
>
> Sorry for the late reply.
>
> On Tuesday 23 December 2008, Marc 'HE' Brockschmidt wrote:
>> "Raphael Geissert" <atomo64@gmail.com> writes:
>>> RT:
>>> Would you accept the attached .diff for lenny's php5?
>> Could you send us the output from diff -w? There's a lot of reindenting
>
> Attached is the .diff with -w; diffstat now is:
> $ svn diff -x -w | diffstat
> deprecated_freetds_check.patch | 88 -
> gentoo/005_stream_context_set_params-crash.patch | 38
> gentoo/006_PDORow-crash.patch | 32
> gentoo/007_dom-setAttributeNode-crash.patch | 37
> gentoo/009_array-function-crashes.patch | 208 +++
> gentoo/010_ticks-zts-crashes.patch | 68 +
> gentoo/014_explode-overflow.patch | 46
> gentoo/015_CVE-2008-2665-wrapper-safemode-bypass.patch | 40
> gentoo/017_xmlrpc-invalid-callback-crash.patch | 1056 +++++++++++++++++
> gentoo/019_new-memory-corruption.patch | 220 +++
> gentoo/freetds-compat.patch | 88 +
> series | 11
> 12 files changed, 1843 insertions(+), 89 deletions(-)
>
> Note that there are other changes that are planned to be included to fix
> security issues (the CVE mentioned above is unimportant for the security team).
>
>> going on, making reading the diff quite hard. You could, of course, also
>> point to the actual repository and the needed patches :)
>
> We use a debian/-only svn repo, so it won't be of much use, I think:
> http://svn.debian.org/viewsvn/pkg-php?rev=1220&view=rev
Ack, will this go through testing-security?
Cheers
Luk
Reply to: