CVE-2013-4635
Publication date 21 June 2013
Last updated 24 July 2024
Ubuntu priority
Integer overflow in the SdnToJewish function in jewish.c in the Calendar component in PHP before 5.3.26 and 5.4.x before 5.4.16 allows context-dependent attackers to cause a denial of service (application hang) via a large argument to the jdtojewish function.
Status
Package | Ubuntu Release | Status |
---|---|---|
php5 | ||
Notes
seth-arnold
codesearch.debian.net shows no callers of this jdtojewish php function. Flaws in PHP itself that allow crashing the interpreter are not in themselves security problems.
Patch details
Package | Patch details |
---|---|
php5 |
References
Related Ubuntu Security Notices (USN)
- USN-1905-1
- PHP vulnerabilities
- 16 July 2013