Lucene search
Ubuntu.comUB:CVE-2011-1468HistoryMar 19, 2011 - 12:00 a.m.
CVE-2011-1468
2011-03-1900:00:00
ubuntu.com
ubuntu.com
12
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.13 Low
EPSS
Percentile
95.4%
Multiple memory leaks in the OpenSSL extension in PHP before 5.3.6 might
allow remote attackers to cause a denial of service (memory consumption)
via (1) plaintext data to the openssl_encrypt function or (2) ciphertext
data to the openssl_decrypt function.
Bugs
Notes
| Author | Note |
|---|---|
| sbeattie | openssl_{en,de}crypt are not available in php 5.2.x. There are possibly other memory leaks in php 5.2.x openssl code. |
Related
seebug
seebug
PHP "OpenSSL"ζ©ε±ε€δΈͺζη»ζε‘ζΌζ΄
2011-03-27 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:03:24
cve
cve
CVE-2011-1468
2011-03-20 02:00:00
prion
prion
Design/Logic Flaw
2011-03-20 02:00:00
openvas
openvas
CentOS Update for php53 CESA-2011:1423 centos5 i386
2011-11-03 00:00:00
CentOS Update for php53 CESA-2011:1423 centos5 x86_64
2012-07-30 00:00:00
CentOS Update for php53 CESA-2011:1423 centos5 x86_64
2012-07-30 00:00:00
nessus
nessus
Oracle Linux 5 / 6 : php / php53 (ELSA-2011-1423)
2013-07-12 00:00:00
Scientific Linux Security Update : php53 and php on SL5.x, SL6.x i386/x86_64
2012-08-01 00:00:00
CentOS 5 : php53 (CESA-2011:1423)
2011-11-03 00:00:00
redhat
redhat
(RHSA-2011:1423) Moderate: php53 and php security update
2011-11-02 00:00:00
centos
centos
php53 security update
2011-11-03 03:59:22
oraclelinux
oraclelinux
php53 and php security update
2011-11-02 00:00:00
php security update
2012-06-29 00:00:00
debian
debian
[SECURITY] [DSA 2408-1] php5 security update
2012-02-13 18:15:24
osv
osv
php5 - several
2012-02-13 00:00:00
securityvulns
securityvulns
PHP multiple security vulnerabilities
2011-05-01 00:00:00
[USN-1126-1] PHP vulnerabilities
2011-05-01 00:00:00
[ GLSA 201110-06 ] PHP: Multiple vulnerabilities
2011-10-12 00:00:00
ubuntu
ubuntu
PHP Regressions
2011-05-05 00:00:00
PHP vulnerabilities
2011-04-29 00:00:00
f5
f5
Multiple PHP vulnerabilities
2012-04-05 02:07:00
SOL13518 - Multiple PHP vulnerabilities
2012-04-04 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2011-10-10 00:00:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.13 Low
EPSS
Percentile
95.4%
Related for UB:CVE-2011-1468