Red Hat Bugzilla – Bug 240157
CVE-2007-1380 php session extension information leak
Last modified: 2007-05-15 11:36:14 EDT
Description of problem:
The php_binary serialization handler in the session extension in PHP before
4.4.5, and 5.x before 5.2.1, allows context-dependent attackers to obtain
sensitive information (memory contents) via a serialized variable entry with a
large length value, which triggers a buffer over-read.
This CVE name covered the issues mentioned in CVE-2007-0906 relating to the
session extension. The fixes were originally included under the name
CVE-2007-0906 in published errata, though the errata have now been updated to
add the reference to CVE-2007-1380.
*** Bug 239291 has been marked as a duplicate of this bug. ***