CVE-2010-2531

Published: 20 August 2010

The var_export function in PHP 5.2 before 5.2.14 and 5.3 before 5.3.3 flushes the output buffer to the user when certain fatal errors occur, even if display_errors is off, which allows remote attackers to obtain sensitive information by causing the application to exceed limits for memory, execution time, or recursion.

Notes

Author	Note
kees	5.2.14 and 5.3.3

Priority

Status

Package	Release	Status
php5 Launchpad, Ubuntu, Debian	dapper	Released (5.1.2-1ubuntu3.19)
	hardy	Released (5.2.4-2ubuntu5.12)
	jaunty	Released (5.2.6.dfsg.1-3ubuntu4.6)
	karmic	Released (5.2.10.dfsg.1-2ubuntu6.5)
	lucid	Released (5.3.2-1ubuntu4.5)
	upstream	Released (5.3.3)
	Patches: upstream: http://svn.php.net/viewvc?view=revision&revision=301143 upstream: http://svn.php.net/viewvc?view=revision&revision=301144 upstream: http://svn.php.net/viewvc?view=revision&revision=301245 upstream: http://svn.php.net/viewvc?view=revision&revision=301863

References

Bugs

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-2531

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›