In Ubuntu, the php imap plugin is in a separate php-imap source package. Although USN-628-1 says CVE-2008-2829 was fixed, it was a mistake. The actual binary isn't built from the php5 source package.
CVE-2008-2829 needs to be fixed in the php-imap source package that's in universe. ** Package changed: php5 (Ubuntu) => php-imap (Ubuntu) -- php5-cgi: IMAP toolkit crash https://bugs.launchpad.net/bugs/485973 You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs -- universe-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/universe-bugs
