3 matches found
CVE-2012-2317
The Debian phpcryptrevamped.patch patch for PHP 5.3.x, as used in the php5 package before 5.3.3-7+squeeze4 in Debian GNU/Linux squeeze, the php5 package before 5.3.2-1ubuntu4.17 in Ubuntu 10.04 LTS, and the php5 package before 5.3.5-1ubuntu7.10 in Ubuntu 11.04, does not properly handle an empty...
CVE-2012-2317
CVE-2012-2317 concerns a vulnerability in the Debian/Ubuntu patch for PHP 5.3.x where an empty salt string is not handled properly by the crypt() password hashing path. This could let remote attackers bypass authentication if an application relies on PHP’s crypt() salt selection. Affected package...
Ubuntu: Security Advisory (USN-1481-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...