Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 166683 - dev-lang/php <= 5.2.0 Multiple Vulnerabilities
Summary: dev-lang/php <= 5.2.0 Multiple Vulnerabilities
Status: RESOLVED DUPLICATE of bug 153911
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All Linux
: High normal (vote)
Assignee: Gentoo Security
URL: http://www.securityfocus.com/bid/2249...
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2007-02-13 16:49 UTC by Executioner
Modified: 2007-02-13 17:14 UTC (History)
1 user (show)

See Also:
Package list:
Runtime testing required: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Executioner 2007-02-13 16:49:09 UTC 
PHP version 5.2.0 and prior is prone to multiple security vulnerabilities. Successful exploits could allow an attacker to write files in unauthorized locations, cause a denial-of-service condition, and potentially execute code.

These issues are reported to affect PHP 4.4.4 and prior versions in the 4 branch, and 5.2.0 and prior versions in the 5 branch; other versions may also be vulnerable.



Reproducible: Didn't try




http://www.php.net/ChangeLog-5.php#5.2.1
http://www.php.net/releases/5_2_1.php
Comment 1 Executioner 2007-02-13 16:52:42 UTC 
This is sort of unrelated, but it would be nice if metadata.xml made reference to php-bugs@gentoo.org.  I forget every time :-(
Comment 2 Jakub Moc (RETIRED) gentoo-dev 2007-02-13 17:14:52 UTC 

*** This bug has been marked as a duplicate of bug 153911 ***