oss-sec mailing list archives
CVE request: php 5.2.6 ext/imap buffer overflows
From: Christian Hoffmann <hoffie () gentoo org>
Date: Thu, 19 Jun 2008 18:37:54 +0200
Heya,php-5.2.6 uses old c-client API calls in ext/imap, which do not have any bound checkings, as such it seems to be vulnerable to buffer overflow problems. Can we get a CVE id for this issue please?
References: http://bugs.php.net/bug.php?id=42862 http://bugs.php.net/bug.php?id=40925 https://bugs.gentoo.org/show_bug.cgi?id=221969 -- Christian Hoffmann
Attachment:
signature.asc
Description: OpenPGP digital signature
Current thread:
- CVE request: php 5.2.6 ext/imap buffer overflows Christian Hoffmann (Jun 19)
- Re: CVE request: php 5.2.6 ext/imap buffer overflows Steven M. Christey (Jun 23)
- Re: CVE request: php 5.2.6 ext/imap buffer overflows Christian Hoffmann (Jun 24)
- Re: CVE request: php 5.2.6 ext/imap buffer overflows Steven M. Christey (Jun 23)