[Bug 112321] Re: PHP 5.2.2 fixes several vulnerabilities

2007-08-06 Thread Kees Cook
Note that CVE-2007-1001 does not apply to Ubuntu (or Debian's) because Ubuntu's PHP links against the system libgd2, which is not vulnerable. -- PHP 5.2.2 fixes several vulnerabilities https://bugs.launchpad.net/bugs/112321 You received this bug notification because you are a member of Ubuntu Bug

[Bug 112321] Re: PHP 5.2.2 fixes several vulnerabilities

2007-05-23 Thread Kees Cook
Thanks for taking the time to report this bug and helping to make Ubuntu better. This problem has been addressed with the following USN: http://www.ubuntu.com/usn/usn-462-1 Please feel free to report future bugs. ** Changed in: php5 (Ubuntu) Importance: Undecided => High Assignee: (unas

[Bug 112321] Re: PHP 5.2.2 fixes several vulnerabilities

2007-05-08 Thread Ante Karamatić
Jim, CVE-2007-1718 was fixed with USN-455-1 on April, 23. -- PHP 5.2.2 fixes several vulnerabilities https://bugs.launchpad.net/bugs/112321 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@li

[Bug 112321] Re: PHP 5.2.2 fixes several vulnerabilities

2007-05-07 Thread Jim Tarvid
http://www.securityfocus.com/bid/23145 -- PHP 5.2.2 fixes several vulnerabilities https://bugs.launchpad.net/bugs/112321 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for Ubuntu. -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com http

Re: [Bug 112321] Re: PHP 5.2.2 fixes several vulnerabilities

2007-05-06 Thread Kees Cook
On Sun, May 06, 2007 at 03:43:17PM -, Fridtjof Busse wrote: > A Nessus-logfile is not really helpful, especially as most of the problems > found have already been fixed with USN-455-1. > Nonetheless, is anybody working on this? There are a few issues that are in the 5.2.2 update that are "new

[Bug 112321] Re: PHP 5.2.2 fixes several vulnerabilities

2007-05-06 Thread Fridtjof Busse
A Nessus-logfile is not really helpful, especially as most of the problems found have already been fixed with USN-455-1. Nonetheless, is anybody working on this? -- PHP 5.2.2 fixes several vulnerabilities https://bugs.launchpad.net/bugs/112321 You received this bug notification because you are a

[Bug 112321] Re: PHP 5.2.2 fixes several vulnerabilities

2007-05-06 Thread ouioui51
Hi, I have multiple security hole concerning apache and PHP5 I've used nessus to find them. I think the report i've attach could help for resolving them We've just to update to new package ** Attachment added: "NessusReport.tar.gz" http://librarian.launchpad.net/7570846/NessusReport.tar.gz --

[Bug 112321] Re: PHP 5.2.2 fixes several vulnerabilities

2007-05-04 Thread Fridtjof Busse
** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2007-1001 ** Visibility changed to: Public -- PHP 5.2.2 fixes several vulnerabilities https://bugs.launchpad.net/bugs/112321 You received this bug notification because you are a member of Ubuntu Bugs, which is the bug contact for U