LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

php5: remote denial of service

Package(s):php5 CVE #(s):CVE-2009-2687
Created:August 25, 2009 Updated:February 23, 2010
Description: From the Ubuntu advisory: It was discovered that PHP did not properly handle certain malformed JPEG images when being parsed by the Exif module. A remote attacker could exploit this flaw and cause the PHP server to crash, resulting in a denial of service.
Alerts:
SuSE SUSE-SR:2010:005 2010-02-23
CentOS CESA-2010:0040 2010-01-15
Red Hat RHSA-2010:0040-01 2010-01-13
CentOS CESA-2010:0040 2010-01-13
Gentoo 201001-03 2010-01-05
Mandriva MDVSA-2009:324 2009-12-07
Red Hat RHSA-2009:1461-01 2009-09-23
Ubuntu USN-824-1 2009-08-24
SuSE SUSE-SR:2009:017 2009-10-26
Debian DSA-1940-1 2009-11-25
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds