Candidate: CVE-2010-4150
PublicDate: 2010-12-07 22:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4150
Description:
 Double free vulnerability in the imap_do_open function in the IMAP
 extension (ext/imap/php_imap.c) in PHP 5.2 before 5.2.15 and 5.3 before
 5.3.4 allows attackers to cause a denial of service (memory corruption) or
 possibly execute arbitrary code via unspecified vectors.
Ubuntu-Description:
Notes:
 jdstrand> imap plugin is in a separate package (php-imap)
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_php5:
upstream_php5: released (5.2.15, 5.3.4)
dapper_php5: ignored
hardy_php5: ignored
karmic_php5: ignored
lucid_php5: ignored
maverick_php5: ignored
natty_php5: ignored
oneiric_php5: ignored
precise_php5: ignored
quantal_php5: ignored
raring_php5: ignored
saucy_php5: ignored
trusty_php5: ignored
trusty/esm_php5: ignored
devel_php5: ignored

Patches_php-imap:
upstream_php-imap: released (5.2.15, 5.3.4)
dapper_php-imap: ignored (reached end-of-life)
hardy_php-imap: ignored (reached end-of-life)
karmic_php-imap: ignored (reached end-of-life)
lucid_php-imap: ignored (reached end-of-life)
maverick_php-imap: ignored (reached end-of-life)
natty_php-imap: ignored (reached end-of-life)
oneiric_php-imap: ignored (reached end-of-life)
precise_php-imap: not-affected (5.3.5-0ubuntu1)
quantal_php-imap: ignored (reached end-of-life)
raring_php-imap: ignored (reached end-of-life)
saucy_php-imap: ignored (reached end-of-life)
trusty_php-imap: not-affected (5.3.5-0ubuntu1)
trusty/esm_php-imap: DNE (trusty was not-affected [5.3.5-0ubuntu1])
devel_php-imap: not-affected (5.3.5-0ubuntu1)