CVE-2007-4662

Published: 04 September 2007

Buffer overflow in the php_openssl_make_REQ function in PHP before 5.2.4 has unknown impact and attack vectors.

Priority

Medium

Status

Package Release Status
php5
Launchpad, Ubuntu, Debian
Upstream
Released (5.2.4)

Notes

AuthorNote
kees
http://cvs.php.net/viewcvs.cgi/php-src/ext/openssl/openssl.c?r1=1.146&r2=1.147
upstream is wrong: should be 199 not 200.
203-openssl_make_REQ-overflow.patch

References