CVE-2008-2050
Published: 5 May 2008
Stack-based buffer overflow in the FastCGI SAPI (fastcgi.c) in PHP before 5.2.6 has unknown impact and attack vectors.
Notes
Author | Note |
---|---|
jdstrand | from redhat bug: Since the FastCGI server is local trusted code and not under the control of an attacker Dapper not affected (code does not exist) |
Priority
Status
Package | Release | Status |
---|---|---|
php5 Launchpad, Ubuntu, Debian |
dapper |
Not vulnerable
|
feisty |
Released
(5.2.1-0ubuntu1.6)
|
|
gutsy |
Released
(5.2.3-1ubuntu6.4)
|
|
hardy |
Released
(5.2.4-2ubuntu5.3)
|
|
upstream |
Released
(5.2.6)
|
|
Patches: debdiff: http://launchpadlibrarian.net/15065228/php5_5.2.4-2ubuntu5.2.debdiff vendor: http://www.debian.org/security/2008/dsa-1572 |