Bug 60855

Summary: Buffer overrun and crasher
Product: [Retired] Red Hat Linux Reporter: Peter Bowen <pzbowen+rhbeta>
Component: phpAssignee: Phil Copeland <copeland>
Status: CLOSED RAWHIDE QA Contact: David Lawrence <dkl>
Severity: medium Docs Contact:
Priority: medium    
Version: 7.2   
Target Milestone: ---   
Target Release: ---   
Hardware: i386   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2002-03-07 22:30:00 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
changes on the 4.1.x branch none

Description Peter Bowen 2002-03-07 22:29:12 UTC 
php-4.1.2-2 is missing fixes for a crasher bug in session.c and potential
exploit in rfc1867.c that are in PHP's CVS.

The branch for PHP 4.1.x is very stable, but has had a couple of important bug
fixes since 4.1.2.  It would be nice if the patch was included in the errata.
Comment 1 Peter Bowen 2002-03-07 22:29:56 UTC 
Created attachment 47801 [details]
changes on the 4.1.x branch
Comment 2 Peter Bowen 2002-04-14 19:48:35 UTC 
Fixed in 4.1.2-5