Bug#726320: marked as done (php5-fpm: null dereference and buffer overflow)

Thu, 12 Dec 2013 13:01:36 -0800 

Your message dated Thu, 12 Dec 2013 21:57:49 +0100
with message-id <[email protected]>
and subject line fixed in php5 5.4.4-14+deb7u6
has caused the Debian Bug report #726320,
regarding php5-fpm: null dereference and buffer overflow
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)


-- 
726320: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=726320
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message --- 
Package: php5-fpm
Version: 5.4.4-14+deb7u5
Severity: normal
Tags: patch

A possible was spotted upstream one year ago at:
fpm/fpm/fpm_events.c|435|
fpm/fpm/fpm_events.c|191|
fpm/fpm/fpm_log.c|459|

see https://bugs.php.net/63581

We should probably apply in the fix before getting real issues with that.
(The fix is one year old)

see upstream fix:
http://git.php.net/?p=php-src.git;a=commit;h=f08060a48fadf079e860be73584ac87747dc59d6

Thanks,
-- 
William

--- End Message ---
--- Begin Message --- 
Version: 5.4.4-14+deb7u6

php5 (5.4.4-14+deb7u6) stable; urgency=low

  [ William Dauchy ]
  * upstream fix: curl memory leak (Closes: #725868)
  * upstream fix: allow root to run php-fpm (Closes: #725890)
  * upstream fix: remove annoying warnings with php-fpm and user usage
    (Closes: #725972)
  * upstream fix: memoryleak in function declaration (Closes: #726033)
  * upstream fix: munmap() is called with the incorrect length (Closes: 
#726037)
  * upstream fix: segfault on zend_deactivate (Closes: #726295)
  * upstream fix: Possible null dereference (Closes: #726320)
  * upstream fix: Phar::buildFromDirectory creates corrupt archives
    (Closes: #726379)
  * upstream fix: segfault while loading extensions (Closes: #726627)
  * upstream fix: (un)serialize() leaves dangling pointers, causes crashes
    (Closes: #726633)

Attachment: signature.asc
Description: This is a digitally signed message part.


--- End Message ---

Reply via email to