Create an account

Subscribe to LWN

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Weekly edition	Kernel	Security	Distributions	Contact Us	Search
Archives	Calendar	Subscribe	Write for LWN	LWN.net FAQ	Sponsors

php: casting vulnerability

Package(s):

php

CVE #(s):

CVE-2011-0708

Created:

February 28, 2011

Updated:

January 19, 2012

Description:

From the Pardus advisory:

PHP Exif extension for 64bit platforms is affected by a casting vulnerability that occurs during the image header parsing.

Alerts:

Oracle	ELSA-2011-1423	2011-11-03
Oracle	ELSA-2011-1423	2011-11-03
Scientific Linux	SL-NotF-20111102	2011-11-02
CentOS	CESA-2011:1423	2011-11-03
Red Hat	RHSA-2011:1423-01	2011-11-02
Gentoo	201110-06	2011-10-10
Debian	DSA-2266-1	2011-06-29
Ubuntu	USN-1126-2	2011-05-05
Fedora	FEDORA-2011-3666	2011-03-19
Fedora	FEDORA-2011-3636	2011-03-19
Fedora	FEDORA-2011-3666	2011-03-19
Fedora	FEDORA-2011-3636	2011-03-19
Fedora	FEDORA-2011-3666	2011-03-19
Fedora	FEDORA-2011-3636	2011-03-19
SUSE	SUSE-SR:2011:006	2011-04-05
openSUSE	openSUSE-SU-2011:0276-1	2011-04-01
Ubuntu	USN-1126-1	2011-04-29
Mandriva	MDVSA-2011:052	2011-03-23
Mandriva	MDVSA-2011:053	2011-03-23
Pardus	2011-51	2011-02-28
Red Hat	RHSA-2012:0033-01	2012-01-18
CentOS	CESA-2012:0033	2012-01-18
Oracle	ELSA-2012-0033	2012-01-18
Scientific Linux	SL-php-20120119	2012-01-19
Red Hat	RHSA-2012:0071-01	2012-01-30
CentOS	CESA-2012:0071	2012-01-30
Oracle	ELSA-2012-0071	2012-01-31
Scientific Linux	SL-php-20120130	2012-01-30
Oracle	ELSA-2012-1046	2012-06-30

(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds