oss-sec mailing list archives

CVE Request - php 5.3.27 fixing heap corruption in the XML parser

From: Jan Lieskovsky <jlieskov () redhat com>
Date: Thu, 11 Jul 2013 13:23:57 -0400 (EDT)

Hello Kurt, Steve, vendors,

  PHP upstream has released 5.3.27 version:
  [1] http://php.net/archive/2013.php#id2013-07-11-1

correcting one security flaw (upstream bug #65236):
[2] http://php.net/ChangeLog-5.php
[3] https://bugs.php.net/bug.php?id=65236

Could you allocate a CVE id for this?

Thank you && Regards, Jan.
--
Jan iankko Lieskovsky / Red Hat Security Response Team

Current thread:

CVE Request - php 5.3.27 fixing heap corruption in the XML parser Jan Lieskovsky (Jul 11)
- Re: CVE Request - php 5.3.27 fixing heap corruption in the XML parser Kurt Seifried (Jul 11)