CVE-2011-1657
Publication date 25 August 2011
Last updated 24 July 2024
Ubuntu priority
The (1) ZipArchive::addGlob and (2) ZipArchive::addPattern functions in ext/zip/php_zip.c in PHP 5.3.6 allow context-dependent attackers to cause a denial of service (application crash) via certain flags arguments, as demonstrated by (a) GLOB_ALTDIRFUNC and (b) GLOB_APPEND.
Status
Package | Ubuntu Release | Status |
---|---|---|
php5 | ||
Notes
Patch details
Package | Patch details |
---|---|
php5 |
References
Related Ubuntu Security Notices (USN)
- USN-1231-1
- PHP Vulnerabilities
- 18 October 2011