CVE-2010-3065

Published: 20 August 2010

The default session serializer in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 does not properly handle the PS_UNDEF_MARKER marker, which allows context-dependent attackers to modify arbitrary session variables via a crafted session variable name.

Notes

Author	Note
mdeslaur	This is MOPS-2010-060

Priority

Status

Package	Release	Status
php5 Launchpad, Ubuntu, Debian	dapper	Released (5.1.2-1ubuntu3.19)
	hardy	Released (5.2.4-2ubuntu5.12)
	jaunty	Released (5.2.6.dfsg.1-3ubuntu4.6)
	karmic	Released (5.2.10.dfsg.1-2ubuntu6.5)
	lucid	Released (5.3.2-1ubuntu4.5)
	upstream	Released (5.3.3, 5.2.14)
	Patches: upstream: http://svn.php.net/viewvc?view=revision&revision=298608

References

http://php-security.org/2010/05/31/mops-2010-060-php-session-serializer-session-data-injection-vulnerability/index.html
http://www.debian.org/security/2010/dsa-2089
https://ubuntu.com/security/notices/USN-989-1
https://www.cve.org/CVERecord?id=CVE-2010-3065
NVD
Launchpad
Debian

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›