Your submission was sent successfully! Close

CVE-2013-4635

Published: 21 June 2013

Integer overflow in the SdnToJewish function in jewish.c in the Calendar component in PHP before 5.3.26 and 5.4.x before 5.4.16 allows context-dependent attackers to cause a denial of service (application hang) via a large argument to the jdtojewish function.

Priority

Negligible

Notes

AuthorNote
seth-arnold
codesearch.debian.net shows no callers of this jdtojewish php
function. Flaws in PHP itself that allow crashing the interpreter are not in
themselves security problems.

References

Bugs