summaryrefslogtreecommitdiff
path: root/debian
AgeCommit message (Expand)AuthorFilesLines
2012-02-03prepare 5.2.6.dfsg.1-1+lenny16 releasedebian/5.2.6.dfsg.1-1+lenny16Ondřej Surý1-0/+6
2012-02-03Fix UMR in php_register_variable_ex (pull from upstream SVN)Ondřej Surý2-0/+40
2012-01-31prepare 5.2.6.dfsg.1-1+lenny15 releasedebian/5.2.6.dfsg.1-1+lenny15Ondřej Surý1-1/+2
2012-01-31Include zend_ini.h in xsltprocessor.c (Closes: #658088)Ondřej Surý1-2/+10
2012-01-31prepare 5.2.6.dfsg.1-1+lenny15 releaseOndřej Surý1-0/+6
2012-01-31Pull complete fix for CVE-2012-0057Ondřej Surý1-14/+213
2012-01-23prepare 5.2.6.dfsg.1-1+lenny14 releasedebian/5.2.6.dfsg.1-1+lenny14Ondřej Surý1-0/+10
2012-01-23s/stable-security/oldstable-security/Ondřej Surý1-1/+1
2012-01-23CVE-2012-0057: XSLT file writing vulnerability (Closes: #656308)Ondřej Surý3-2/+143
2012-01-23Fix CVE-2011-4885: hash table collisions CPU usage DoS (oCERT-2011-003)Ondřej Surý3-0/+96
2012-01-23Fix CVE-2011-4566: integer overflow in exif_process_IFD_TAG() may lead to DoS...Ondřej Surý2-0/+43
2012-01-23Refresh quilt patches to apply cleanlyOndřej Surý75-837/+581
2011-07-01prepare 5.2.6.dfsg.1-1+lenny13 releasedebian/5.2.6.dfsg.1-1+lenny13Ondřej Surý1-0/+6
2011-07-01Revert "Add test images to patch so the test don't fail"Ondřej Surý1-2/+0
2011-07-01Revert "Fail after tests on purpose"Ondřej Surý1-2/+0
2011-07-01Remove stray php_printf from CVE-2010-2531 (Closes: #632194)Ondřej Surý1-3/+15
2011-06-28Fail after tests on purposeOndřej Surý1-0/+2
2011-06-28Add test images to patch so the test don't faildebian/5.2.6.dfsg.1-1+lenny12Ondřej Surý1-0/+2
2011-06-28prepare 5.2.6.dfsg.1-1+lenny12 releaseOndřej Surý1-2/+7
2011-06-15prepare 5.2.6.dfsg.1-1+lenny11 releasedebian/5.2.6.dfsg.1-1+lenny11Ondřej Surý1-6/+8
2011-06-15Refresh CVE-2011-2202.patchOndřej Surý1-3/+3
2011-06-15Fix a bug when var_export() causes a fatal error that could inadvertently dis...Ondřej Surý2-0/+246
2011-06-15prepare 5.2.6.dfsg.1-1+lenny11 releaseOndřej Surý1-1/+3
2011-06-15File path injection vulnerability in RFC1867 File upload filename [CVE-2011-2...Ondřej Surý2-0/+21
2011-06-14prepare 5.2.6.dfsg.1-1+lenny11 releaseOndřej Surý1-0/+9
2011-06-14Fix for integer signedness error in zip_stream.c (CVE-2011-1471)Ondřej Surý2-0/+29
2011-06-14Fix incorrect cast on 64-bit platforms in exif.c (CVE-2011-0708)Ondřej Surý2-0/+76
2011-06-14Fix integer overflow in the SdnToJulian (has CVE-2011-1466)Ondřej Surý2-0/+91
2011-06-14Fix _zip_name_locate function in zip_name_locate.c (CVE-2011-0421)Ondřej Surý2-0/+36
2011-03-18Prepare changelog for 5.2.6.dfsg.1-1+lenny10debian/5.2.6.dfsg.1-1+lenny10Raphael Geissert1-0/+20
2011-03-18Remove patch for CVE-2010-2531, it makes the build failRaphael Geissert2-227/+0
2011-03-18Fix CVE-2011-0441: arbitrary files removal via cronjob (Closes #618489)Raphael Geissert1-1/+1
2011-03-18Include a test for CVE-2010-4645Raphael Geissert2-0/+16
2010-12-07Cherry pick for CVE-2010-1128, CVE-2010-2531, CVE-2010-3709, CVE-2010-3710, C...Ondřej Surý8-0/+517
2010-08-03Prepare changelog for 5.2.6.dfsg.1-1+lenny9debian/5.2.6.dfsg.1-1+lenny9Raphael Geissert1-0/+9
2010-08-03Fix MOPS-2010-60: arbitrary session variables injectionRaphael Geissert2-0/+14
2010-08-03Fix CVE-2010-2225: use-after-free in the SplObjectStorage unserializerRaphael Geissert2-0/+136
2010-08-03Fix CVE-2010-1917: stack consumption on the fnmatch() functionRaphael Geissert2-0/+16
2010-03-14Prepare changelog for 5.2.6.dfsg.1-1+lenny8debian/5.2.6.dfsg.1-1+lenny8Raphael Geissert1-0/+7
2010-03-13Fix CVE-2010-0397: null pointer dereference when processing invalid XML-RPC r...Raphael Geissert2-0/+59
2010-02-08Prepare changelog for 5.2.6.dfsg.1-1+lenny6debian/5.2.6.dfsg.1-1+lenny6Raphael Geissert1-0/+8
2010-02-05Fix CVE-2009-4143: session interruption memory corruptionRaphael Geissert2-0/+29
2010-02-05Fix CVE-2009-4142: incorrect handling of invalid multi-byte sequencesRaphael Geissert2-0/+4554
2010-02-05Prepare changelog for 5.2.6.dfsg.1-1+lenny5debian/5.2.6.dfsg.1-1+lenny5Raphael Geissert1-0/+9
2010-02-05Add missing sybase aliases (Closes: #523073)Raphael Geissert2-0/+44
2010-02-05Fix a heap overflow in the odbc extension (Closes: #565387)Raphael Geissert2-0/+16
2010-01-24Recognise ? and = in email addresses as valid (Closes: #556459)Raphael Geissert2-0/+14
2010-01-24Fix an integer overflow on the curl_read callback (Closes: #529278)Raphael Geissert2-0/+14
2009-11-21Prepare changelog for 5.2.6.dfsg.1-1+lenny4debian/5.2.6.dfsg.1-1+lenny4Raphael Geissert1-0/+14
2009-11-21Add an entry to debian/NEWS about the new per-request file uploads limitRaphael Geissert1-0/+19
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-09 19:23:24 +0000