php5-pspell: PHP5 pspell extension
----------------------------------------------------------------------
File: php5-pspell-5.1.2-29.50.i586.rpm
Patchrpm: php5-pspell-5.1.2-29.50.i586.patch.rpm
Version: 5.1.2-29.50
Size: 40 kB
Patchsize: 40 kB
Date: Wed 12 Dec 2007 3:43:31 CET
Source: php5-5.1.2-29.50.src.rpm
Security: Yes
----------------------------------------------------------------------
Description: This update fixes multiple bugs in php:

- use system pcre library to fix several pcre vulnerabilities
  (CVE-2007-1659, CVE-2006-7230, CVE-2007-1660, CVE-2006-7227
   CVE-2005-4872, CVE-2006-7228)

- Flaws in processing multi byte sequences in htmlentities/htmlspecialchars
  (CVE-2007-5898)

- overly long arguments to the dl() function could crash php
  (CVE-2007-4825)

- overy long arguments to the glob() function could crash php
  (CVE-2007-4782)

- overly long arguments to some iconv functions could crash php
  (CVE-2007-4840)

- overy long arguments to the setlocale() function could crash php
  (CVE-2007-4784)

- the wordwrap-Function could cause a floating point exception
  (CVE-2007-3998)

- overy long arguments to the fnmatch() function could crash php
  (CVE-2007-4782)

- incorrect size calculation in the chunk_split function could lead
  to a buffer overflow
  (CVE-2007-4661)

- Flaws in the GD extension could lead to integer overflows
  (CVE-2007-3996)

- The money_format function contained format string flaws
  (CVE-2007-4658)

- Data for some time zones has been updated