|
|
Log in / Subscribe / Register

php: denial of service

Package(s):php CVE #(s):CVE-2011-4885
Created:December 30, 2011 Updated:April 13, 2012
Description: From the Mandriva advisory:

PHP before 5.3.9 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters.

Alerts:
SUSE SUSE-SU-2013:1351-1 PHP5 2013-08-16
Gentoo 201209-03 php 2012-09-23
Oracle ELSA-2012-1046 php 2012-06-30
Mandriva MDVSA-2012:071 php 2012-05-10
SUSE SUSE-SU-2012:0496-1 PHP5 2012-04-12
openSUSE openSUSE-SU-2012:0426-1 php5 2012-03-29
SUSE SUSE-SU-2012:0411-1 PHP5 2012-03-24
Ubuntu USN-1358-1 php5 2012-02-09
Oracle ELSA-2012-0093 php 2012-02-03
Oracle ELSA-2012-0093 php 2012-02-03
Oracle ELSA-2012-0093 php 2012-02-03
Scientific Linux SL-php-20120130 php 2012-01-30
Oracle ELSA-2012-0071 php 2012-01-31
Debian DSA-2399-1 php5 2012-01-31
CentOS CESA-2012:0071 php 2012-01-30
Red Hat RHSA-2012:0071-01 php 2012-01-30
Fedora FEDORA-2012-0420 maniadrive 2012-01-26
Fedora FEDORA-2012-0420 php-eaccelerator 2012-01-26
Fedora FEDORA-2012-0420 php 2012-01-26
Fedora FEDORA-2012-0504 maniadrive 2012-01-19
Fedora FEDORA-2012-0504 php-eaccelerator 2012-01-19
Fedora FEDORA-2012-0504 php 2012-01-19
Scientific Linux SL-php-20120119 php 2012-01-19
Oracle ELSA-2012-0033 php 2012-01-18
CentOS CESA-2012:0033 php 2012-01-18
Red Hat RHSA-2012:0033-01 php 2012-01-18
Oracle ELSA-2012-0019 php53 2012-01-13
Scientific Linux SL-NotF-20120112 php/php53 2012-01-12
Oracle ELSA-2012-0019 php 2012-01-12
CentOS CESA-2012:0019 php 2012-01-11
CentOS CESA-2012:0019 php53 2012-01-11
Red Hat RHSA-2012:0019-01 php/php53 2012-01-11
Mandriva MDVSA-2011:197 php 2011-12-30
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds