8 matches found
SUSE CVE-2010-1860
The htmlentitydecode function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents or trigger memory corruption by causing a userspace interruption of an internal call, related to the call time pass by reference feature...
openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2010:0599-1)
PHP was updated to version 5.3.3 to fix serveral security issues. CVE-2010-0397, CVE-2010-1860, CVE-2010-1862, CVE-2010-1864, CVE-2010-1866, CVE-2010-1914, CVE-2010-1915, CVE-2010-1917, CVE-2010-2093, CVE-2010-2094, CVE-2010-2097, CVE-2010-2100, CVE-2010-2101, CVE-2010-2190, CVE-2010-2191,...
SuSE 11 / 11.1 Security Update : Apache 2 (SAT Patch Numbers 2880 / 2881)
PHP was updated to version 5.2.14 to fix serveral security issues : - CVE-2010-1860 - CVE-2010-1862 - CVE-2010-1864 - CVE-2010-1914 - CVE-2010-1915 - CVE-2010-1917 - CVE-2010-2093 - CVE-2010-2094 - CVE-2010-2097 - CVE-2010-2100 - CVE-2010-2101 - CVE-2010-2190 - CVE-2010-2191 - CVE-2010-2225 -...
openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2010:0678-1)
PHP was updated to version 5.2.14 to fix several security issues : - CVE-2010-1860 - CVE-2010-1862 - CVE-2010-1864 - CVE-2010-1914 - CVE-2010-1915 - CVE-2010-1917 - CVE-2010-2093 - CVE-2010-2094 - CVE-2010-2097 - CVE-2010-2100 - CVE-2010-2101 - CVE-2010-2190 - CVE-2010-2191 - CVE-2010-2225 -...
openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2010:0599-1)
PHP was updated to version 5.3.3 to fix serveral security issues. CVE-2010-0397, CVE-2010-1860, CVE-2010-1862, CVE-2010-1864, CVE-2010-1866, CVE-2010-1914, CVE-2010-1915, CVE-2010-1917, CVE-2010-2093, CVE-2010-2094, CVE-2010-2097, CVE-2010-2100, CVE-2010-2101, CVE-2010-2190, CVE-2010-2191,...
PHP 5.2 < 5.2.14 Multiple Vulnerabilities
According to its banner, the version of PHP 5.2 installed on the remote host is older than 5.2.14. Such versions may be affected by several security issues : - An error exists when processing invalid XML-RPC requests that can lead to a NULL pointer dereference. bug 51288 CVE-2010-0397 - An error...
CVE-2010-1860
The CVE-2010-1860 entry concerns PHP HTML entity decoding in PHP 5.2.x (up to 5.2.13) and 5.3.x (up to 5.3.2), enabling context-dependent information disclosure (memory contents) or memory corruption via interruption of an internal call related to call_time_pass_by_reference. Connected advisories...
CVE-2010-1860
The htmlentitydecode function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents or trigger memory corruption by causing a userspace interruption of an internal call, related to the call time pass by reference feature...