Auke van Slooten reported: [1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=573573 a deficiency in the way php's XML-RPC protocol extension decoded specific requests. Decoding a certain XML file, in an application using the php's XML-RPC protocol extension would lead to crash of that application.
Example XML file leading to crash (from [1]): <?php $req = '<?xml version="1.0"?> <methodCall> </methodCall>'; $result = xmlrpc_decode_request( $req, $frop ); ?>
Upstream bug report: http://bugs.php.net/bug.php?id=51288 Upstream commit: http://svn.php.net/viewvc?view=revision&revision=296152 http://marc.info/?l=php-cvs&m=126850564920095&w=2 follow-up commit fixing memleak in the patch: http://svn.php.net/viewvc?view=revision&revision=296153 http://marc.info/?l=php-cvs&m=126851202625683&w=2
This issue affects PHP packages in Red Hat Enterprise Linux 4 and 5. XMLRPC extension is not enabled in Red Hat Enterprise Linux 3 PHP packages.
Fixed upstream in 5.3.3: http://www.php.net/releases/5_3_3.php
This issue has been addressed in following products: Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5 Via RHSA-2010:0919 https://rhn.redhat.com/errata/RHSA-2010-0919.html
Statement: This issue was addressed in the php packages as shipped with Red Hat Enterprise Linux 4 and 5 via: https://rhn.redhat.com/errata/RHSA-2010-0919.html