From ${URL} : An array index error, leading to invalid free flaw was found in the way XML extension of PHP, a scripting language for creating dynamic web sites, used to convert certain XML files into PHP language internal structures. Remote attacker could provide a specially-crafted XML file, that when opened in an PHP application would lead to that application crash or, potentially, arbitrary code execution with the privileges of the user running the application. References: [1] http://php.net/archive/2013.php#id2013-07-11-1 [2] http://php.net/ChangeLog-5.php Upstream bug report: [3] https://bugs.php.net/bug.php?id=65236 Relevant patch: [4] https://bugs.php.net/patch-display.php?bug_id=65236&patch=bug65236.diff&revision=latest @maintainer(s): after the bump, in case we need to stabilize the package, please say explicitly if it is ready for the stabilization or not.
Ebuild in the tree. Go ahead and stabilise if necessary.
Stable request updated in bug 476570.
@php can we stabilize 5.4.18?
CVE-2013-4113 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-4113): ext/xml/xml.c in PHP before 5.3.27 does not properly consider parsing depth, which allows remote attackers to cause a denial of service (heap memory corruption) or possibly have unspecified other impact via a crafted document that is processed by the xml_parse_into_struct function.
Will handle stabilizing in bug 483212.
Added to an existing GLSA request.
This issue was resolved and addressed in GLSA 201408-11 at http://security.gentoo.org/glsa/glsa-201408-11.xml by GLSA coordinator Kristian Fiskerstrand (K_F).