Debian セキュリティ勧告

DSA-1331-1 php4 -- 複数の脆弱性

報告日時:

2007-07-07

影響を受けるパッケージ:

php4

危険性:

あり

参考セキュリティデータベース:

Mitre の CVE 辞書: CVE-2006-4486, CVE-2006-0207, CVE-2007-1864.

詳細:

サーバサイドで動作する HTML 埋め込み式のスクリプト言語 PHP に、任意のコードをリモートから実行可能となる恐れがある脆弱性が複数見つかっています。 Common Vulnerabilities and Exposures プロジェクトでは以下の問題を認識しています:

CVE-2006-0207
Stefan Esser さんは、セッション拡張モジュール中に HTTP レスポンス分割攻撃が可能となる脆弱性を発見しました。これは Debian 3.1 (Sarge) にのみ影響します。
CVE-2006-4486
Stefan Esser さんは、メモリ割り当てルーチン中に、メモリ制限設定を迂回可能となるバッファオーバフローを発見しました。これは、64 bit アーキテクチャ上の Debian 3.1 (Sarge) にのみ影響します。
CVE-2007-1864
xmlpc 拡張モジュールに、任意のコードが実行可能となるバッファオーバフローが見つかっています。

旧安定版ディストリビューション (oldstable、コードネーム sarge) では、これらの問題はバージョン 4.3.10-22 で修正されています。

安定版ディストリビューション (stable、コードネーム etch) では、これらの問題はバージョン 4.4.4-8+etch4 で修正されています。

不安定版ディストリビューション (unstable、コードネーム sid) には、もはや php4 は含まれていません。

PHP パッケージのアップグレードをお勧めします。sarge の hppa、mips、powerpc アーキテクチャ用パッケージは、ビルド用ホストの問題のためにまだ入手可能になっていません。後ほど提供される予定です。

修正:

Debian GNU/Linux 3.1 (sarge)

ソース:: http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-22.dsc; http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-22.diff.gz; http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10.orig.tar.gz
アーキテクチャ非依存コンポーネント:: http://security.debian.org/pool/updates/main/p/php4/php4-pear_4.3.10-22_all.deb; http://security.debian.org/pool/updates/main/p/php4/php4_4.3.10-22_all.deb
Alpha:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_alpha.deb
AMD64:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_amd64.deb
ARM:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_arm.deb
Intel IA-32:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_i386.deb
Intel IA-64:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_ia64.deb
Motorola 680x0:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_m68k.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_m68k.deb
Little endian MIPS:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_mipsel.deb
IBM S/390:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_s390.deb
Sun Sparc:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.3.10-22_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.3.10-22_sparc.deb

Debian GNU/Linux 4.0 (etch)

ソース:: http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4-8+etch4.dsc; http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4-8+etch4.diff.gz; http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4.orig.tar.gz
アーキテクチャ非依存コンポーネント:: http://security.debian.org/pool/updates/main/p/php4/php4-pear_4.4.4-8+etch4_all.deb; http://security.debian.org/pool/updates/main/p/php4/php4_4.4.4-8+etch4_all.deb
Alpha:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_alpha.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_alpha.deb
AMD64:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-interbase_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_amd64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_amd64.deb
ARM:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_arm.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_arm.deb
HPPA:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_hppa.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_hppa.deb
Intel IA-32:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-interbase_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_i386.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_i386.deb
Intel IA-64:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_ia64.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_ia64.deb
Little endian MIPS:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_mipsel.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_mipsel.deb
PowerPC:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_powerpc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_powerpc.deb
IBM S/390:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_s390.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_s390.deb
Sun Sparc:: http://security.debian.org/pool/updates/main/p/php4/libapache-mod-php4_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/libapache2-mod-php4_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-cli_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-common_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-curl_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-dev_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-domxml_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-gd_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-imap_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-ldap_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcal_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mcrypt_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mhash_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-mysql_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-odbc_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pgsql_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-pspell_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-recode_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-snmp_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-sybase_4.4.4-8+etch4_sparc.deb; http://security.debian.org/pool/updates/main/p/php4/php4-xslt_4.4.4-8+etch4_sparc.deb

一覧にあるファイルの MD5 チェックサムは勧告の原文にあります。