CVE-2007-5900
Publication date 20 November 2007
Last updated 24 July 2024
Ubuntu priority
PHP before 5.2.5 allows local users to bypass protection mechanisms configured through php_admin_value or php_admin_flag in httpd.conf by using ini_set to modify arbitrary configuration variables, a different issue than CVE-2006-4625.
Status
Package | Ubuntu Release | Status |
---|---|---|
php5 | 8.10 intrepid |
Not affected
|
8.04 LTS hardy |
Fixed 5.2.4-2ubuntu5.5
|
|
7.10 gutsy |
Fixed 5.2.3-1ubuntu6.5
|
|
7.04 feisty | Ignored end of life, was needed | |
6.06 LTS dapper |
Fixed 5.1.2-1ubuntu3.13
|