php -- multiple vulnerabilities

ID 7FCF1727-BE71-11DB-B2EC-000C6EC775D9
Type freebsd
Reporter FreeBSD
Modified 2013-04-01T00:00:00


Multiple vulnerabilities have been found in PHP, including: buffer overflows, stack overflows, format string, and information disclosure vulnerabilities. The session extension contained safe_mode and open_basedir bypasses, but the FreeBSD Security Officer does not consider these real security vulnerabilities, since safe_mode and open_basedir are insecure by design and should not be relied upon.