Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 651204 - (CVE-2010-3436) CVE-2010-3436 php: open_basedir bypass via fopen_wrappers.c
CVE-2010-3436 php: open_basedir bypass via fopen_wrappers.c
Status: CLOSED DUPLICATE of bug 169857
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
unspecified Severity unspecified
: ---
: ---
Assigned To: Red Hat Product Security
public=20100928,reported=20101108,sou...
: Security
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2010-11-08 19:15 EST by Vincent Danen
Modified: 2015-08-19 04:59 EDT (History)
4 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2010-11-08 19:18:13 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

  None (edit)
Description Vincent Danen 2010-11-08 19:15:41 EST 
Common Vulnerabilities and Exposures assigned an identifier CVE-2010-3436 to
the following vulnerability:

Name: CVE-2010-3436
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3436
Assigned: 20100917
Reference: CONFIRM: http://security-tracker.debian.org/tracker/CVE-2010-3436
Reference: CONFIRM: http://svn.php.net/viewvc/php/php-src/trunk/main/fopen_wrappers.c?r1=303824&r2=303823&pathrev=303824
Reference: CONFIRM: http://svn.php.net/viewvc?view=revision&revision=303824
Reference: MANDRIVA:MDVSA-2010:218
Reference: URL: http://www.mandriva.com/security/advisories?name=MDVSA-2010:218

fopen_wrappers.c in PHP 5.3.x through 5.3.3 might allow remote
attackers to bypass open_basedir restrictions via vectors related to
the length of a filename.
Comment 1 Vincent Danen 2010-11-08 19:18:13 EST 
Closing as dupe of bug 169857.

*** This bug has been marked as a duplicate of bug 169857 ***
Comment 2 Tomas Hoger 2012-05-15 12:29:29 EDT 
Statement:

We do not consider safe_mode / open_basedir restriction bypass issues to be security sensitive.  For more details see http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=169857#c1 and http://www.php.net/security-note.php
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.