CVE-2010-1915

Priority
Description
The preg_quote function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2
allows context-dependent attackers to obtain sensitive information (memory
contents) by causing a userspace interruption of an internal function,
related to the call time pass by reference feature, modification of ZVALs
whose values are not updated in the associated local variables, and access
of previously-freed memory.
Notes
mdeslaursee CVE-2010-1864 for patch
interruption issue, safe_mode - open_basedir bypass, ignoring
This is MOPS-2010-017
Package
Source: php5 (LP Ubuntu Debian)
Upstream:released (5.3.3)
More Information

Updated: 2019-10-09 08:05:58 UTC (commit 33aea848a182c0afcd0a3f927a01a7ecd9a061ee)