Moderate: Red Hat Security Advisory: php security update

Updated PHP packages that fix several security issues are now available for Red Hat Application Stack. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server. The...

openSUSE 10 Security Update : php5 (php5-3745)

The following issues have been fixed in PHP, which were spotted by the MOPB project or fixed in PHP 5.2.3 release : - missing openbasedir and safemode restriction CVE-2007-3007 - chunksplit integer overflow CVE-2007-2872 - DoS condition in libgd's image processing CVE-2007-2756 - possible...

php security update

CentOS Errata and Security Advisory CESA-2007:0889 Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting languag...

Moderate: Red Hat Security Advisory: php security update

Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web server...

CentOS 4 / 5 : php (CESA-2007:0890)

Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 4 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Web...

CVE-2007-4661

The chunksplit function in string.c in PHP 5.2.3 does not properly calculate the needed buffer size due to precision loss when performing integer arithmetic with floating point numbers, which has unknown attack vectors and impact, possibly resulting in a heap-based buffer overflow. NOTE: this is...

CVE-2007-4660

Unspecified vulnerability in the chunksplit function in PHP before 5.2.4 has unknown impact and attack vectors, related to an incorrect size calculation...

CVE-2007-4661

The chunksplit function in string.c in PHP 5.2.3 does not properly calculate the needed buffer size due to precision loss when performing integer arithmetic with floating point numbers, which has unknown attack vectors and impact, possibly resulting in a heap-based buffer overflow. NOTE: this is...

CVE-2007-4660

Unspecified vulnerability in the chunksplit function in PHP before 5.2.4 has unknown impact and attack vectors, related to an incorrect size calculation...

Heap overflow

The chunksplit function in string.c in PHP 5.2.3 does not properly calculate the needed buffer size due to precision loss when performing integer arithmetic with floating point numbers, which has unknown attack vectors and impact, possibly resulting in a heap-based buffer overflow. NOTE: this is...

CVE-2007-4661

The chunksplit function in string.c in PHP 5.2.3 does not properly calculate the needed buffer size due to precision loss when performing integer arithmetic with floating point numbers, which has unknown attack vectors and impact, possibly resulting in a heap-based buffer overflow. NOTE: this is...

CVE-2007-4661

CVE-2007-4661 affects PHP 5.2.3: the chunk_split function miscomputes the required buffer size due to precision loss in floating point arithmetic, which can lead to a heap-based buffer overflow. The description notes this stems from an incomplete fix for CVE-2007-2872 and lists the impact as unkn...

CVE-2007-4660

CVE-2007-4660 concerns PHP

CVE-2007-2872

Multiple integer overflows in the chunksplit function in PHP 5 before 5.2.3 and PHP 4 before 4.4.8 allow remote attackers to cause a denial of service crash or execute arbitrary code via the 1 chunks, 2 srclen, and 3 chunklen arguments...

Integer overflow

Multiple integer overflows in the chunksplit function in PHP 5 before 5.2.3 and PHP 4 before 4.4.8 allow remote attackers to cause a denial of service crash or execute arbitrary code via the 1 chunks, 2 srclen, and 3 chunklen arguments...

CVE-2007-2872

CVE-2007-2872: Multiple integer overflows in PHP’s chunk_split function affect PHP 5 prior to 5.2.3 and PHP 4 prior to 4.4.8. An attacker can provide crafted values for the third argument (chunklen) and related parameters (chunks, srclen) to trigger a crash or potentially execute arbitrary code r...

PHP chunk_split()函数整数溢出漏洞

PHP是一种流行的WEB服务器端编程语言。 PHP中的chunksplit函数在处理畸形参数时存在整数溢出漏洞，本地攻击者可能利用此漏洞提升自己的权限。 PHP中chunksplit函数的1963行试图为函数结果分配充分的内存大小，但没有执行任何检查便使用了srclen和chunklen参数块。如果值的块和endlen大于65534字节的话，就会触发整数溢出，分配错误的内存大小，导致堆溢出。 ext/standard/string.c： 1953 static char phpchunksplitchar src, int srclen, char end, int endlen, in...

PHP multiple security vulnerabilities

chunksplit integer overflow...

PHP 5.1.6 - 'Chunk_Split()' Integer Overflow

source: https://www.securityfocus.com/bid/24261/info PHP is prone to an integer-overflow vulnerability because it fails to ensure that integer values aren't overrun. Attackers may exploit this issue to cause a buffer overflow and to corrupt process memory. Attackers may be able to execute arbitra...