Summary: | dev-lang/php: multiple vuln + "htmlentities()" and "htmlspecialchars()" Buffer Overflows (CVE-2006-5465) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Raphael Marichez (Falco) (RETIRED) <falco> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | aiwa_azca, benkoren, bernd, boss.gentoo, chainsaw, dave, golk, hanno, karsten.elfenbein, keith, php-bugs, rodrigo, rusxakep, sgtphou |
Priority: | Highest | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.hardened-php.net/advisory_132006.138.html | ||
Whiteboard: | B1 [glsa] Falco | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 166048 | ||
Bug Blocks: |
Description
Raphael Marichez (Falco) (RETIRED)
2006-11-03 02:51:35 UTC
UTF8 character sed needs to be selected --> B1 *** Bug 153853 has been marked as a duplicate of this bug. *** *** Bug 154083 has been marked as a duplicate of this bug. *** php-bugs any news on this one? will we ever get PHP 5.2 ebuild in portage??? I'm working on the security issue for 4.4 and 5.1. There won't be a 5.2.0 ebuild in Portage, I'll only consider adding PHP 5.2 to Portage when 5.2.1 is out, for now just get it from the PHP Overlay [1] if you really need it. Best regards, CHTEKK. [1] http://overlays.gentoo.org/proj/php/ Just wondering - does php 5.2 have some kind of a problem? Why wait until 5.2.1? (In reply to comment #6) > I'm working on the security issue for 4.4 and 5.1. > There won't be a 5.2.0 ebuild in Portage, I'll only consider adding PHP 5.2 to > Portage when 5.2.1 is out, for now just get it from the PHP Overlay [1] if you > really need it. > Best regards, CHTEKK. > > [1] http://overlays.gentoo.org/proj/php/ > (In reply to comment #7) > Just wondering - does php 5.2 have some kind of a problem? Why wait until > 5.2.1? Lots of issues. Please, this is a security bug, not a discussion forum. Feel free to ask in #gentoo-php, not here. PHP 5.2.1 fixes several vulnerabilities in the 5.x branch. It could be good if it was feasible to bump php-5.2.1. Could you have a look please? *** Bug 166683 has been marked as a duplicate of this bug. *** Bug 166779 is somewhat related to this one as it effects 5.2.1 Can seem to find 5.2.x in the overlay. *** Bug 166779 has been marked as a duplicate of this bug. *** *** Bug 167028 has been marked as a duplicate of this bug. *** Ok people it's finally all done! Lots of work and fixes went into this, finally we have the new releases, that bring us again up-to-date PHP and a whole lot of security fixes (all fixed in 4.4.6 and 5.2.1-r3, not all fixed in 5.1.6-r11, but that's needed stable too for backwards compatibility). Usual testing rules apply, ie. FEATURES="test" will work, remember to have all your dbs turned on if you want to test the db extensions too, and don't let failures stop you (unless they're reeeaallly many, like >20), a couple of failures are expected, and the results vary from system to system. If in doubt, just ping me via mail or IRC and tell me the test results. This time also a few extensions need stabling, pecl-zip fixes a few security-related issues in the newest version, suhosin is the successor to hardenedphp (which was dropped as it's unmaintained and known to be broken), and we need a stable pecl-filter for backwards compatibility of 5.1 with 5.2. Usual testing rules apply here too... Just emerge and see if it loads. ;) Here all the packages I'd like you to stabilize ASAP: PHP: dev-lang/php-4.4.6 dev-lang/php-5.1.6-r11 dev-lang/php-5.2.1-r3 Extensions: (security-related) dev-php4/suhosin-0.9.17 dev-php4/pecl-zip-1.8.6 dev-php5/suhosin-0.9.17 dev-php5/pecl-zip-1.8.6 Extensions: (needed for correct backwards compatibility of 5.1 to 5.2) dev-php5/pecl-filter-0.11.0 As usual, thanks a lot, love ya all! Best regards, CHTEKK. AMD64 all done! Btw, please *REMEMBER* to update your eclass/ directory before doing any testing&keywording, thanks! Best regards, CHTEKK. thank you very much, bro! ppc64 stable x86 stable ppc stable Stable for HPPA. dev-lang/php-4.4.6 dev-lang/php-5.1.6-r11 dev-lang/php-5.2.1-r3 dev-php4/suhosin-0.9.17 dev-php4/pecl-zip-1.8.6 dev-php5/suhosin-0.9.17 dev-php5/pecl-zip-1.8.6 dev-php5/pecl-filter-0.11.0 sparc stable. also sent dev-php5/pecl-fileinfo-1.0.4 stable directly for php-5.2 (build issues). will do others as we find them out. I've been working during the last two days in this bug for alpha. Unluckily, I found several failing tests in the three php versions. I'm currently reviewing the archives (aka #143126) to check which are save to ignore. I'll post the list in some hours. Thanks guys. Here we go: these are the test I found on alpha and which don't appear in previous versions (check #143126 for details). PHP-4.6.6 -------------------------- - Bug #35239 (Objects can lose references) [tests/lang/bug35239.phpt] - Bug #24155 (gdImageRotate270 rotation problem). [ext/gd/tests/bug24155.phpt] - Bug #27582 (ImageFillToBorder() on alphablending image looses alpha on fill color) [ext/gd/tests/bug27582_1.phpt] - Bug #16069 [ext/iconv/tests/bug16069.phpt] COMMON PHP-5 -------------------------- - Test for buffering in core functions with implicit flush off [tests/func/008.phpt] - Bug #16069 [ext/iconv/tests/bug16069.phpt] - iconv stream filter [ext/iconv/tests/iconv_stream_filter.phpt] - HTML input/output [ext/mbstring/tests/htmlent.phpt] - mb_output_handler() (Shift_JIS) [ext/mbstring/tests/mb_output_handler_shift_jis.phpt] PHP 5.1 -------------------------- - Test for abstract static classes [Zend/tests/abstract-static.phpt] PHP - 5.2.1 -------------------------- - Bug #30549 (incorrect character translations for some ISO8859 charsets) [ext/mbstring/tests/bug30549.phpt] - stream_socket_client() and invalid arguments [ext/standard/tests/file/stream_002.phpt] - touch() tests [ext/standard/tests/file/touch.phpt] - inet_ntop() & inet_pton() tests [ext/standard/tests/network/inet.phpt] BTW, php seems to compile and work fine in basics test of php+mysql apps. Luca, what do you think? :) (In reply to comment #25) > Luca, what do you think? :) Fine to go, all those are known failures and shouldn't worry anybody. Best regards, CHTEKK. dev-lang/php-4.4.6 dev-lang/php-5.1.6-r11 dev-lang/php-5.2.1-r3 dev-php4/suhosin-0.9.17 dev-php4/pecl-zip-1.8.6 dev-php5/suhosin-0.9.17 dev-php5/pecl-zip-1.8.6 dev-php5/pecl-filter-0.11.0 Stable on alpha. Thanks guys. I'll do more keywording on monday. GLSA 200703-21 ia64 stable |