241641 – (CVE-2007-2844) CVE-2007-2844 php crypt function not re-entrant

Bug 241641 (CVE-2007-2844) - CVE-2007-2844 php crypt function not re-entrant

Summary: CVE-2007-2844 php crypt function not re-entrant

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2007-2844
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2007-05-29 10:07 UTC by Joe Orton
Modified:	2007-05-29 10:11 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2007-05-29 10:11:29 UTC
Embargoed:

Attachments	(Terms of Use)

Description Joe Orton 2007-05-29 10:07:15 UTC

Description of problem:
PHP 4.x and 5.x before 5.2.1, when running on multi-threaded systems, does not
ensure thread safety for libc crypt function calls using protection schemes such
as a mutex, which creates race conditions that allow remote attackers to
overwrite internal program memory and gain system access.

http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2844
http://blog.php-security.org/archives/82-Suhosin-0.9.20-and-crypt-Thread-Safety-Vulnerability.html

Comment 1 Joe Orton 2007-05-29 10:11:29 UTC

PHP is not built or supported in a multi-threaded environment in the packages
distributed in Red Hat Enterprise Linux.

Note You need to log in before you can comment on or make changes to this bug.