Red Hat Bugzilla – Bug 213732
CVE-2006-5465 PHP buffer overflow
Last modified: 2007-11-30 17:11:47 EST
+++ This bug was initially created as a clone of Bug #213543 +++
Stefan Esser told vendor-sec about a buffer overflow in PHP's
htmlentities/htmlspecialchars internal routines. These flaws are triggered when
handling utf-8 data. The danger in this flaw is that these functions are
usually passed user input.
The patch for this issue can be found here:
-- Additional comment from firstname.lastname@example.org on 2006-11-02 13:39 EST --
This issue is public:
This issue should also affect FC5
php-5.1.6-1.2 has been pushed for fc5, which should resolve this issue. If these problems are still present in this version, then please make note of it in this bug report.
php-5.1.6-3.1.fc6 has been pushed for fc6, which should resolve this issue. If these problems are still present in this version, then please make note of it in this bug report.