3 matches found
libzip 0.9.3 _zip_name_locate空指针引用(incl PHP 5.3.5)
CVE ID: CVE-2011-0421 libzip是读取、创建和修改zip文档的库。 libzip 0.9.3 zipnamelocate在实现上存在空指针引用漏洞,远程攻击者可利用此漏洞进行拒绝服务。 设置ZIPFLUNCHANGED标签后,libzip可使远程和本地攻击者进行拒绝服务攻击。对于空zip文件和ZIPFLUNCHANGED旗标,libzip会发生崩溃。目前对于PHP,安全影响只是远程拒绝服务。 PHP PHP 5.3.5 libzip libzip 0.9.3 厂商补丁: libzip ------...
PHP 5.3.5 libzip 0.9.3 - _zip_name_locate Null Pointer Dereference
Source: http://securityreason.com/securityalert/8146 libzip 0.9.3 zipnamelocate NULL Pointer Dereference incl PHP 5.3.5 Author: Maksymilian Arciemowicz http://securityreason.com/ http://cxib.net/ Date: - Dis.: 03.01.2011 - Pub.: 18.03.2011 CVE: CVE-2011-0421 CERT: VU325039 Affected Software: -...
PHP 5.3.5 libzip 0.9.3 - _zip_name_locate Null Pointer Dereference
PHP 5.3.5 libzip 0.9.3 - zipnamelocate Null Pointer Dereference Source: http://securityreason.com/securityalert/8146 libzip 0.9.3 zipnamelocate NULL Pointer Dereference incl PHP 5.3.5 Author: Maksymilian Arciemowicz http://securityreason.com/ http://cxib.net/ Date: - Dis.: 03.01.2011 - Pub.:...