Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 335889

Summary: dev-lang/php: multiple vulnerabilites (CVE-2010-2484)
Product: Gentoo Security Reporter: Stefan Behte (RETIRED) <craig>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: minor CC: php-bugs
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: https://bugzilla.redhat.com/show_bug.cgi?id=619324
Whiteboard: B4 [ebuild]
Package list:
Runtime testing required: ---

Description Stefan Behte (RETIRED) gentoo-dev Security 2010-09-03 21:25:44 UTC 
CVE-2010-2484 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2010-2484):
  The strrchr function in PHP 5.2 before 5.2.14 allows
  context-dependent attackers to obtain sensitive information (memory
  contents) or trigger memory corruption by causing a userspace
  interruption of an internal function or handler.
Comment 1 Stefan Behte (RETIRED) gentoo-dev Security 2010-09-03 21:26:59 UTC 

*** This bug has been marked as a duplicate of bug 332039 ***