LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

php: multiple vulnerabilities

Package(s):php CVE #(s):CVE-2011-0421 CVE-2011-1092 CVE-2011-1153 CVE-2011-1464 CVE-2011-1466 CVE-2011-1467 CVE-2011-1468 CVE-2011-1469 CVE-2011-1470 CVE-2011-1471
Created:March 23, 2011 Updated:April 13, 2012
Description: PHP contains a number of vulnerabilities, including denial of service via an empty ZIP archive (CVE-2011-0421), denial of service and information disclosure (CVE-2011-1092), code execution via multiple format string vulnerabilities in the phar extension (CVE-2011-1153), denial of service in strval() (CVE-2011-1464), denial of service via an "unspecified vulnerability" (CVE-2011-1467), denial of service via memory leaks in the openssl extension (CVE-2011-1468), and two other ZIP-related denial of service issues (CVE-2011-1470, CVE-2011-1471).
Alerts:
Oracle ELSA-2011-1423 2011-11-03
Oracle ELSA-2011-1423 2011-11-03
Scientific Linux SL-NotF-20111102 2011-11-02
CentOS CESA-2011:1423 2011-11-03
Red Hat RHSA-2011:1423-01 2011-11-02
Gentoo 201110-06 2011-10-10
Slackware SSA:2011-210-01 2011-08-01
Debian DSA-2266-1 2011-06-29
openSUSE openSUSE-SU-2011:0645-1 2011-06-16
Ubuntu USN-1126-1 2011-04-29
Pardus 2011-63 2011-04-07
Fedora FEDORA-2011-3666 2011-03-19
Fedora FEDORA-2011-3636 2011-03-19
Fedora FEDORA-2011-3666 2011-03-19
Fedora FEDORA-2011-3636 2011-03-19
Fedora FEDORA-2011-3666 2011-03-19
Fedora FEDORA-2011-3636 2011-03-19
SUSE SUSE-SR:2011:009 2011-05-17
Mandriva MDVSA-2011:052 2011-03-23
Mandriva MDVSA-2011:053 2011-03-23
Mandriva MDVSA-2011:099 2011-05-24
openSUSE openSUSE-SU-2011:0449-1 2011-05-06
Ubuntu USN-1126-2 2011-05-05
Red Hat RHSA-2012:0033-01 2012-01-18
CentOS CESA-2012:0033 2012-01-18
Oracle ELSA-2012-0033 2012-01-18
Scientific Linux SL-php-20120119 2012-01-19
Red Hat RHSA-2012:0071-01 2012-01-30
CentOS CESA-2012:0071 2012-01-30
Oracle ELSA-2012-0071 2012-01-31
Scientific Linux SL-php-20120130 2012-01-30
Debian DSA-2408-1 2012-02-13
openSUSE openSUSE-SU-2012:0426-1 2012-03-29
SUSE SUSE-SU-2012:0496-1 2012-04-12
Oracle ELSA-2012-1046 2012-06-30
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds