CVE-2008-2051

Publication date 5 May 2008

Last updated 24 July 2024

Ubuntu priority

Low

Why this priority?

The escapeshellcmd API function in PHP before 5.2.6 has unknown impact and context-dependent attack vectors related to “incomplete multibyte chars.”

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
php5 8.04 LTS hardy
Fixed 5.2.4-2ubuntu5.3
7.10 gutsy
Fixed 5.2.3-1ubuntu6.4
7.04 feisty
Fixed 5.2.1-0ubuntu1.6
6.06 LTS dapper
Fixed 5.1.2-1ubuntu3.12

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
php5

References

Related Ubuntu Security Notices (USN)

Other references