CVE-2014-4721

Priority
Medium
Description
The phpinfo implementation in ext/standard/info.c in PHP before 5.4.30 and
5.5.x before 5.5.14 does not ensure use of the string data type for the
PHP_AUTH_PW, PHP_AUTH_TYPE, PHP_AUTH_USER, and PHP_SELF variables, which
might allow context-dependent attackers to obtain sensitive information
from process memory by using the integer data type with crafted values,
related to a "type confusion" vulnerability, as demonstrated by reading a
private SSL key in an Apache HTTP Server web-hosting environment with
mod_ssl and a PHP 5.3.x mod_php.
References
Bugs
Assigned-to
mdeslaur
Package
Source: php5 (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 10.04 LTS (Lucid Lynx):released (5.3.2-1ubuntu4.26)
Ubuntu 12.04 LTS (Precise Pangolin):released (5.3.10-1ubuntu3.13)
Ubuntu 13.10 (Saucy Salamander):released (5.5.3+dfsg-1ubuntu2.6)
Ubuntu 14.04 LTS (Trusty Tahr):released (5.5.9+dfsg-1ubuntu4.3)
Ubuntu 14.10 (Utopic Unicorn):released (5.5.12+dfsg-2ubuntu3)
Patches:
Upstream:http://git.php.net/?p=php-src.git;a=commit;h=fb0128af2a95ec0d1a0360be49776c5b056d1f33
More Information

Valid XHTML 1.0 Strict

Updated: 2014-07-09 21:14:26 UTC (commit 8221)