oss-sec mailing list archives

Re: CVE Request -- PHP 5 - 5.2.11


From: Joe Orton <jorton () redhat com>
Date: Fri, 18 Sep 2009 14:56:29 +0100

On Fri, Sep 18, 2009 at 03:23:43PM +0200, Nico Golde wrote:
Hi,
* Jan Lieskovsky <jlieskov () redhat com> [2009-09-18 13:52]:
  PHP has released another upstream 5.2 release, fixing
four security issues:

http://www.php.net/ChangeLog-5.php
http://www.php.net/downloads.php

Could you please allocate CVE identifiers?

What is the security impact of:
Fixed bug #44683 (popen crashes when an invalid mode is passed). (Pierre)
?

This would appear to be:

http://svn.php.net/viewvc?view=revision&revision=287779

which is Windows-specific.

Regards, Joe


Current thread: