LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

php: denial of service and information disclosure

Package(s):php5 php CVE #(s):CVE-2011-4566
Created:December 14, 2011 Updated:April 13, 2012
Description: PHP incorrectly handles EXIF headers in JPEG files; an attacker could exploit this vulnerability to crash the PHP server or view (unspecified) sensitive information.
Alerts:
Ubuntu USN-1307-1 2011-12-14
Red Hat RHSA-2012:0019-01 2012-01-11
Mandriva MDVSA-2011:197 2011-12-30
CentOS CESA-2012:0019 2012-01-11
CentOS CESA-2012:0019 2012-01-11
Oracle ELSA-2012-0019 2012-01-12
Scientific Linux SL-NotF-20120112 2012-01-12
Oracle ELSA-2012-0019 2012-01-13
Red Hat RHSA-2012:0033-01 2012-01-18
CentOS CESA-2012:0033 2012-01-18
Oracle ELSA-2012-0033 2012-01-18
Scientific Linux SL-php-20120119 2012-01-19
Fedora FEDORA-2012-0504 2012-01-19
Fedora FEDORA-2012-0504 2012-01-19
Fedora FEDORA-2012-0504 2012-01-19
Fedora FEDORA-2012-0420 2012-01-26
Fedora FEDORA-2012-0420 2012-01-26
Fedora FEDORA-2012-0420 2012-01-26
Red Hat RHSA-2012:0071-01 2012-01-30
CentOS CESA-2012:0071 2012-01-30
Debian DSA-2399-1 2012-01-31
Oracle ELSA-2012-0071 2012-01-31
Scientific Linux SL-php-20120130 2012-01-30
openSUSE openSUSE-SU-2012:0426-1 2012-03-29
SUSE SUSE-SU-2012:0496-1 2012-04-12
Mandriva MDVSA-2012:071 2012-05-10
Oracle ELSA-2012-1046 2012-06-30
Gentoo 201209-03 2012-09-23
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds