This issue was reported to bugtraq on 2004-09-15. http://www.securityfocus.com/archive/1/375294 Bad array parsing in php_variables.c could lead to show arbitrary memory content such as pieces of php code and other data. This affects all GET, POST or COOKIES variables. This issue also affects RHEL2.1
Created attachment 104909 [details] Patch from upstream CVS
Thanks for finding the patches Josh.
Joe, do we know if this affects the RHEL2.1 PHP?
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHSA-2004-687.html