Debian Security Advisory 1940 php5 – multiple issues

22
Article Source Debian Security Advisories
November 24, 2009, 4:00 pm

 

Several remote vulnerabilities have been discovered in the PHP 5 hypertext preprocessor. The Common Vulnerabilities and Exposures project identifies the following problems:

The following issues have been fixed in both the stable (lenny) and the oldstable (etch) distributions:

  • CVE-2009-2687CVE-2009-3292

    The exif module did not properly handle malformed jpeg files, allowing an attacker to cause a segfault, resulting in a denial of service…