exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

Mandriva Linux Security Advisory 2010-140
Posted Jul 28, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-140 - This is a maintenance and security update that upgrades php to 5.3.3 for 2010.0/2010.1. Rewrote var_export() to use smart_str rather than output buffering, prevents data disclosure if a fatal error occurs. Fixed a possible resource destruction issues in shm_put_var(). Fixed a possible information leak because of interruption of XOR operator. Fixed a possible memory corruption because of unexpected call-time pass by reference and following memory clobbering through callbacks. Fixed a possible memory corruption in ArrayObject::uasort(). Fixed a possible memory corruption in parse_str(). Fixed a possible memory corruption in pack(). Fixed a possible memory corruption in substr_replace(). Fixed a possible memory corruption in addcslashes(). Fixed a possible stack exhaustion inside fnmatch(). Fixed a possible dechunking filter buffer overflow. Fixed a possible arbitrary memory access inside sqlite extension. Fixed string format validation inside phar extension. Fixed handling of session variable serialization on certain prefix characters. Fixed a NULL pointer dereference when processing invalid XML-RPC requests. Fixed SplObjectStorage unserialization problems. Fixed possible buffer overflows in mysqlnd_list_fields, mysqlnd_change_user. Fixed possible buffer overflows when handling error packets in mysqlnd. Additionally some of the third party extensions and required dependencies has been upgraded and/or rebuilt for the new php version.

tags | advisory, overflow, arbitrary, php
systems | linux, mandriva
advisories | CVE-2010-2531, CVE-2010-0397, CVE-2010-2225
MD5 | 9728cbfda6ca6f7ff1a4ca0bc367b17c
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Google Workers Can Listen To What People Say To Its AI Home Devices
Posted Jul 12, 2019

tags | headline, privacy, data loss, google, spyware
Eavesdropping Flaw Prompts Apple To Suspend Walkie Talkie App
Posted Jul 12, 2019

tags | headline, privacy, flaw, apple
Approaches To Implementing Bug Bounty Programs
Posted Jul 12, 2019

tags | headline, hacker, flaw
Engineer Flees To China After Stealing Source Code Of US Train Firm
Posted Jul 12, 2019

tags | headline, china, data loss
Anaesthetic Devices Vulnerable To Hackers
Posted Jul 10, 2019

tags | headline, hacker, flaw
Agent Smith Malware Infects 25 Million Android Phones
Posted Jul 10, 2019

tags | headline, malware, linux, phone, google
This New Ransomware Is Targeting NAS Devices
Posted Jul 10, 2019

tags | headline, hacker, malware, data loss
Brazilians Report Lack Of Cybersecurity Skills
Posted Jul 10, 2019

tags | headline, hacker, cyberwar, brazil
BianLian Banking Trojan Adds Screen Recorder
Posted Jul 9, 2019

tags | headline, malware, bank, phone, trojan, cybercrime, fraud, google
Cyber Spies Take A Step Out Of The Shadows With History Of Codebreaking
Posted Jul 9, 2019

tags | headline, government, britain, cyberwar, spyware
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close