Bug 1116532 - PHP 5.3 vulnerability leading to potential SSL key leakage
Summary: PHP 5.3 vulnerability leading to potential SSL key leakage
Keywords:
Status: CLOSED DUPLICATE of bug 1116662
Alias: None
Product: Red Hat Enterprise Linux 6
Classification: Red Hat
Component: php
Version: 6.7
Hardware: Unspecified
OS: Unspecified
unspecified
urgent
Target Milestone: rc
: ---
Assignee: Web Stack Team
QA Contact: BaseOS QE - Apps
URL:
Whiteboard:
Depends On:
Blocks: CVE-2014-4721
TreeView+ depends on / blocked
 
Reported: 2014-07-05 21:24 UTC by Loganaden Velvindron
Modified: 2014-07-07 08:39 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Release Note
Doc Text:
Clone Of:
Environment:
Last Closed: 2014-07-07 08:39:06 UTC
Target Upstream Version:


Attachments (Terms of Use)
PHP 5.3 infoleak vulnerability patch (1.65 KB, text/plain)
2014-07-05 21:24 UTC, Loganaden Velvindron
no flags Details

Description Loganaden Velvindron 2014-07-05 21:24:30 UTC
Created attachment 914870 [details]
PHP 5.3 infoleak vulnerability patch

Description of problem:
PHP infoleak vulnerability that can potentially be used to leak private SSL keys

Version-Release number of selected component (if applicable):
5.x

How reproducible:
Please see:

https://www.sektioneins.de/en/blog/14-07-04-phpinfo-infoleak.html
Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:

Comment 2 Huzaifa S. Sidhpurwala 2014-07-07 08:39:06 UTC

*** This bug has been marked as a duplicate of bug 1116662 ***


Note You need to log in before you can comment on or make changes to this bug.