For reference: php5 (5.3.10-1ubuntu3.1) precise-security; urgency=low
* SECURITY UPDATE: php5-cgi query string parameters parsing vulnerability - debian/patches/php5-CVE-2012-1823.patch: filter query strings that are prefixed with '-' - CVE-2012-1823 - CVE-2012-2311 -- Steve Beattie <sbeat...@ubuntu.com> Thu, 03 May 2012 15:42:08 -0700 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2012-1823 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2012-2311 ** Changed in: php5 (Ubuntu) Status: New => Confirmed -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to php5 in Ubuntu. https://bugs.launchpad.net/bugs/995901 Title: no changelog for 5.3.10-1ubuntu3.1 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/php5/+bug/995901/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs