smarty3 3.1.39-2ubuntu1 source package in Ubuntu
Changelog
smarty3 (3.1.39-2ubuntu1) jammy; urgency=medium
* SECURITY UPDATE: execution of restricted php methods
- debian/patches/CVE-2021-21408.patch: Prevent evasion of the
static_classes security policy in
lexer/smarty_internal_templateparser.y and
libs/sysplugins/smarty_internal_templateparser.php.
- CVE-2021-21408
* SECURITY UPDATE: code injection through math function
- debian/patches/CVE-2021-29454-1.patch: verify if the input to
the math function is a mathematical expression in
libs/plugins/function.math.php.
- debian/patches/CVE-2021-29454-2.patch: fix to support multiple
operators in math equations in
libs/plugins/function.math.php.
- debian/patches/CVE-2021-29454-3.patch: fix to allow multiple
parameters in mathematical functions in
libs/plugins/function.math.php.
- CVE-2021-29454
* Fix for compatibility with php 8.1.
- debian/patches/php8-1compatibility.patch
-- David Fernandez Gonzalez <email address hidden> Wed, 23 Mar 2022 16:00:18 +0100
Upload details
- Uploaded by:
- David Fernandez Gonzalez
- Sponsored by:
- Marc Deslauriers
- Uploaded to:
- Jammy
- Original maintainer:
- Ubuntu Developers
- Architectures:
- all
- Section:
- web
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Jammy | release | universe | web |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| smarty3_3.1.39.orig.tar.gz | 258.4 KiB | d89ed84ed9bdf2697df9fb867acb03514ddafc8322e1b31860168adec91e70c2 |
| smarty3_3.1.39-2ubuntu1.debian.tar.xz | 9.5 KiB | 1ff6fe037394f0cf6e4dc63d99d0188199dc7d0a6c75c01cdf60048833de4365 |
| smarty3_3.1.39-2ubuntu1.dsc | 2.0 KiB | cb742d3af60a9825b4666e7083882bc83be3c6d90977459238d76f2f04496181 |
Available diffs
Binary packages built by this source
- smarty3: No summary available for smarty3 in ubuntu kinetic.
No description available for smarty3 in ubuntu kinetic.
