PHP4 vulnerabilities

To: debian-security@lists.debian.org
Subject: PHP4 vulnerabilities
From: Allard Hoeve <allard@byte.nl>
Date: Wed, 12 Apr 2006 13:22:48 +0200 (CEST)
Message-id: <[🔎] Pine.LNX.4.62.0604121318570.5846@passoa.internal>


Dear debian-security,

Please take note of bugs:

- #361853: [CVE-2006-0996] phpinfo() Cross Site Scripting
- #361855: [CVE-2006-1494] tempnam() open_basedir bypass
- #361856: [CVE-2006-1608] copy() Safe Mode Bypass

All of which seem to affect sarge.

Regards,

Allard Hoeve

Reply to:

Follow-Ups:
- Re: PHP4 vulnerabilities
  - From: Jan Wagner <waja@gmx.de>

Prev by Date: debsums online database
Next by Date: Re: PHP4 vulnerabilities
Previous by thread: debsums online database
Next by thread: Re: PHP4 vulnerabilities
Index(es):
- Date
- Thread