lp:ubuntu/gutsy/php5
- Get this branch:
- bzr branch lp:ubuntu/gutsy/php5
Branch merges
Branch information
Recent revisions
- 22. By Soren Hansen
-
* debian/rules:
- Fix broken memory_limit mangling for php5-cli. (LP: #109079)
- Don't clean out debian/copyright. (iz soyuz bug..)
* debian/php5-cli. postinst, debian/rules:
- Use same php.ini-dist for all flavours. The only difference used to be
cli having a higher memory_limit value, but upstream has changed this to
128MB, which is higher than both of the previous values. - 18. By Soren Hansen
-
* Merge from debian unstable, remaining changes:
- debian/changelog: Add some missing CVEs.
- debian/control: DebianMaintainerField
- debian/control, debian/rules: Disable a few build dependencies and
accompanying binary packages which we do not want to support in main:
+ firebird2-dev/php5- interbase (we have a separate php-interbase source)
+ libc-client-dev/php5- imap (we have a separate php-imap source)
+ libmcrypt-dev/php5- mcrypt (separate php-mcrypt source) - 17. By Martin Pitt
-
* Merge to Debian unstable; remaining Ubuntu changes:
- debian/changelog: Add some missing CVEs.
- debian/control, debian/rules: Disable a few build dependencies and
accompanying binary packages which we do not want to support in main:
+ apache-dev/libapache- mod-php5 (die, Apache 1, die!)
+ firebird2-dev/php5- interbase (we have a separate php-interbase source)
+ libc-client-dev/php5- imap (we have a separate php-imap source)
+ libmcrypt-dev/php5- mcrypt (separate php-mcrypt source)
- Add missing libsqlite3-dev build dependency. - 16. By Martin Pitt
-
* New upstream security/bugfix release:
- safe_mode & open_basedir bypasses inside the session extension
[CVE-2007-0905]
- multiple buffer overflows in various extensions and functions
[CVE-2007-0906]
- underflow in the internal sapi_header_op() function [CVE-2007-0907]
- information disclosure in the wddx extension [CVE-2007-0908]
- string format vulnerability in *print() functions on 64 bit systems
[CVE-2007-0909]
- possible clobbering of super-globals in several code paths
[CVE-2007-0910]
* Adapted patches to new upstream release:
- 006-debian_quirks. patch
- 034-apache2_umask_fix. patch
- 044-strtod_arm_fix. patch
* Drop 109-libdb4.4.patch: Obsolete, upstream now checks for db 4.5 and 4.4.
* Drop 114-zend_alloc.c_ m68k_alignment. patch and
115-zend_alloc.c_ memleak. patch: Applied upstream.
* Add debian/patches/ 000upstream- str_ireplace_ offbyone. patch:
- Fix off-by-one in str_ireplace(), a regression introduced in 5.2.1.
- Patch taken from upstream CVS:
http://cvs.php. net/viewvc. cgi/php- src/ext/ standard/ string. c?r1=1. 630&r2= 1.631
- CVE-2007-0911
* debian/control: Set Ubuntu maintainer. - 14. By Martin Pitt
-
* Merge to Debian unstable.
* Build against libapr1-dev and depend against apache2.2-common again, now
that we have it in Feisty.
* Build against db 4.4 (like Debian), since Apache 2.2 now uses it, too.
* Remaining Ubuntu changes:
- debian/control, debian/rules: Disable apache-dev build dependency and
remove libapache-mod-php5 package, since we do not support apache 1.3.
- debian/changelog: Add some missing CVEs.
- Remove firebird2-dev build dependency and php5-interbase package, since
we don't support Firebird and keep the separate php-interbase source.
- Remove libc-client-dev build dependency and php5-imap package, since
uw-imapd is in universe and we keep the separate php-imap source.
- Remove libmcrypt-dev build dependency and php5-mcrypt package, since
it is in universe and we keep the separate php-mcrypt source.
- Add missing libsqlite3-dev build dependency.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
- Stacked on:
- lp:ubuntu/karmic/php5