LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

php: information disclosure

Package(s):php CVE #(s):CVE-2008-5498
Created:January 22, 2009 Updated:January 6, 2010
Description: php has an information disclosure vulnerability. From the Mandriva alert: An array index error in the imageRotate() function in PHP allowed context-dependent attackers to read the contents of arbitrary memory locations via a crafted value of the third argument to the function for an indexed image (CVE-2008-5498).
Alerts:
Gentoo 201001-03 2010-01-05
Fedora FEDORA-2009-3848 2009-04-21
Fedora FEDORA-2009-3768 2009-04-21
Red Hat RHSA-2009:0350-01 2009-04-14
Slackware SSA:2009-098-02 2009-04-08
CentOS CESA-2009:0338 2009-04-07
CentOS CESA-2009:0337 2009-04-06
Red Hat RHSA-2009:0337-01 2009-04-06
Red Hat RHSA-2009:0338-01 2009-04-06
Mandriva MDVSA-2009:023 2009-01-21
Mandriva MDVSA-2009:022 2009-01-21
Mandriva MDVSA-2009:021 2009-01-21
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds