CVE-2010-4645

2011-01-1100:00:00

ubuntu.com

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.021

Percentile

89.2%

JSON

strtod.c, as used in the zend_strtod function in PHP 5.2 before 5.2.17 and
5.3 before 5.3.5, and other products, allows context-dependent attackers to
cause a denial of service (infinite loop) via a certain floating-point
value in scientific notation, which is not properly handled in x87 FPU
registers, as demonstrated using 2.2250738585072011e-308.

Notes

Author	Note
sbeattie	unabele to reproduce on 9.10 and before; however, the code in question looks like it ought to be vulnerable. Looking at the compiler flag differences between lucid and karmic’s builds didn’t show any obvious reason why karmic wouldn’t be affected. Released an update for all releases anyway.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchphp5< 5.1.2-1ubuntu3.20UNKNOWN
ubuntu8.04noarchphp5< 5.2.4-2ubuntu5.13UNKNOWN
ubuntu9.10noarchphp5< 5.2.10.dfsg.1-2ubuntu6.6UNKNOWN
ubuntu10.04noarchphp5< 5.3.2-1ubuntu4.6UNKNOWN
ubuntu10.10noarchphp5< 5.3.3-1ubuntu9.2UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.06	noarch	php5	< 5.1.2-1ubuntu3.20	UNKNOWN
ubuntu	8.04	noarch	php5	< 5.2.4-2ubuntu5.13	UNKNOWN
ubuntu	9.10	noarch	php5	< 5.2.10.dfsg.1-2ubuntu6.6	UNKNOWN
ubuntu	10.04	noarch	php5	< 5.3.2-1ubuntu4.6	UNKNOWN
ubuntu	10.10	noarch	php5	< 5.3.3-1ubuntu9.2	UNKNOWN