CVE-2010-1914

Priority
Description
The Zend Engine in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows
context-dependent attackers to obtain sensitive information by interrupting
the handler for the (1) ZEND_BW_XOR opcode (shift_left_function), (2)
ZEND_SL opcode (bitwise_xor_function), or (3) ZEND_SR opcode
(shift_right_function), related to the convert_to_long_base function.
Bugs
launchpad: https://bugs.launchpad.net/ubuntu/+source/php5/+bug/852871
Notes
mdeslaurinterruption issue, safe_mode - open_basedir bypass, ignoring
This is MOPS-2010-014, MOPS-2010-015, MOPS-2010-016
Package
Source: php5 (LP Ubuntu Debian)
Upstream:released (5.3.3)
Patches:
Upstream:http://svn.php.net/viewvc?view=revision&revision=299280
More Information

Updated: 2020-03-18 22:03:13 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)