/[advisories]/10492.adv
ViewVC logotype

Diff of /10492.adv

Parent Directory Parent Directory | Revision Log Revision Log | View Patch Patch

revision 208 by boklm, Wed Jun 19 10:20:11 2013 UTC revision 209 by claire, Wed Jul 17 06:37:30 2013 UTC
# Line 2  type: security Line 2  type: security
2  subject: Updated php package fixes several issues  subject: Updated php package fixes several issues
3  CVE:  CVE:
4   - CVE-2013-2110   - CVE-2013-2110
5     - CVE-2013-4635
6  src:  src:
7    2:    2:
8     core:     core:
# Line 14  src: Line 15  src:
15       - php-pdo_firebird-5.3.26-1.mga2       - php-pdo_firebird-5.3.26-1.mga2
16  description: |  description: |
17    Fixed php bug #64879 (Heap based buffer overflow in quoted_printable_encode,    Fixed php bug #64879 (Heap based buffer overflow in quoted_printable_encode,
18    CVE-2013-2110). See the changelog for additional bug fixes.    CVE-2013-2110).
19      
20      Integer overflow in the SdnToJewish function in jewish.c in the Calendar
21      component in PHP before 5.3.26 and 5.4.x before 5.4.16 allows
22      context-dependent attackers to cause a denial of service (application hang)
23      via a large argument to the jdtojewish function. (CVE-2013-4635)
24      
25      See the changelog for additional bug fixes.
26  references:  references:
27   - https://bugs.mageia.org/show_bug.cgi?id=10492   - https://bugs.mageia.org/show_bug.cgi?id=10492
28   - https://bugs.php.net/bug.php?id=64879   - https://bugs.php.net/bug.php?id=64879
29   - http://www.php.net/ChangeLog-5.php   - http://www.php.net/ChangeLog-5.php
30     - http://lwn.net/Vulnerabilities/559055
31  ID: MGASA-2013-0176  ID: MGASA-2013-0176

Legend:
Removed from v.208  
changed lines
  Added in v.209

  ViewVC Help
Powered by ViewVC 1.1.30