CVE-2010-4150
Published: 7 December 2010
Double free vulnerability in the imap_do_open function in the IMAP extension (ext/imap/php_imap.c) in PHP 5.2 before 5.2.15 and 5.3 before 5.3.4 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors.
Notes
Author | Note |
---|---|
jdstrand | imap plugin is in a separate package (php-imap) |
Priority
Status
Package | Release | Status |
---|---|---|
php5 Launchpad, Ubuntu, Debian |
trusty |
Ignored
|
lucid |
Ignored
|
|
maverick |
Ignored
|
|
natty |
Ignored
|
|
oneiric |
Ignored
|
|
precise |
Ignored
|
|
quantal |
Ignored
|
|
raring |
Ignored
|
|
saucy |
Ignored
|
|
dapper |
Ignored
|
|
hardy |
Ignored
|
|
karmic |
Ignored
|
|
upstream |
Released
(5.2.15, 5.3.4)
|
|
php-imap Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
hardy |
Ignored
(end of life)
|
|
karmic |
Ignored
(end of life)
|
|
lucid |
Ignored
(end of life)
|
|
maverick |
Ignored
(end of life)
|
|
natty |
Ignored
(end of life)
|
|
oneiric |
Ignored
(end of life)
|
|
precise |
Not vulnerable
(5.3.5-0ubuntu1)
|
|
quantal |
Ignored
(end of life)
|
|
raring |
Ignored
(end of life)
|
|
saucy |
Ignored
(end of life)
|
|
upstream |
Released
(5.2.15, 5.3.4)
|
|
trusty |
Not vulnerable
(5.3.5-0ubuntu1)
|