CVE-2010-2531 (retired)

The var_export function in PHP 5.2 before 5.2.14 and 5.3 before 5.3.3
flushes the output buffer to the user when certain fatal errors occur, even
if display_errors is off, which allows remote attackers to obtain sensitive
information by causing the application to exceed limits for memory,
execution time, or recursion.
 kees> 5.2.14 and 5.3.3
More Information

Updated: 2019-08-23 08:39:06 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)