CVE-2010-2225

Priority
Medium
Description
Use-after-free vulnerability in the SplObjectStorage unserializer in PHP
5.2.x and 5.3.x through 5.3.2 allows remote attackers to execute arbitrary
code or obtain sensitive information via serialized data, related to the
PHP unserialize function.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2225
http://twitter.com/i0n1c/status/16447867829
http://php-security.org/2010/06/25/mops-2010-061-php-splobjectstorage-deserialization-use-after-free-vulnerability/
http://nibbles.tuxfamily.org/?p=1837
http://www.ubuntu.com/usn/usn-989-1
Bugs
https://bugzilla.redhat.com/show_bug.cgi?id=605641
Notes
mdeslaur> SplObjectStorage doesn't have an unserializer in php 5.1.x
Package
Source: php5 (LP Ubuntu Debian)
Upstream:released (5.3.3)
Ubuntu 8.04 LTS (Hardy Heron):released (5.2.4-2ubuntu5.12)
Ubuntu 10.04 LTS (Lucid Lynx):released (5.3.2-1ubuntu4.5)
Patches:
Upstream:http://svn.php.net/viewvc?view=revision&revision=300843
More Information

Valid XHTML 1.0 Strict

Updated: 2012-06-01 15:21:06 UTC (commit 5347)