The update for CVE-2010-2531 for the old stabledistribution (lenny) introduced a regression, which lead to additional output being written to stdout.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -------------------------------------------------------------------------
Debian Security Advisory DSA-2266-2                   This email address is being protected from spambots. You need JavaScript enabled to view it.
http://www.debian.org/security/                        Moritz Muehlenhoff
July 01, 2011                          http://www.debian.org/security/faq
- -------------------------------------------------------------------------

Package        : php5
Vulnerability  : several
Problem type   : remote
Debian-specific: no
CVE ID         : CVE-2010-2531 CVE-2011-0420 CVE-2011-0421 CVE-2011-0708 
                 CVE-2011-1153 CVE-2011-1466 CVE-2011-1471 CVE-2011-2202 

The update for CVE-2010-2531 for the old stabledistribution (lenny)
introduced a regression, which lead to additional output being written
to stdout. 

For the oldstable distribution (lenny), this problem has been fixed in
version 5.2.6.dfsg.1-1+lenny13.

We recommend that you upgrade your php5 packages.

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: http://www.debian.org/security/

Mailing list: This email address is being protected from spambots. You need JavaScript enabled to view it.