RHSA-2012:1047Medium

Red Hat Security Advisory: php53 security update

Published
June 27, 2012
Last Modified
June 27, 2026

🔗 CVE IDs covered (8)

📋 Description

CVE-2010-2950 — php: Format string flaw in phar extension via phar_stream_flush() (MOPS-2010-024) CVE-2011-4153 — php: zend_strndup() NULL pointer dereference may cause DoS CVE-2012-0057 — php: XSLT file writing vulnerability CVE-2012-0789 — php: strtotime timezone memory leak CVE-2012-1172 — php: $_FILES array indexes corruption CVE-2012-2143 — crypt(): DES encrypted password weakness CVE-2012-2336 — php: incomplete CVE-2012-1823 fix - missing filtering of -T and -h CVE-2012-2386 — php: Integer overflow leading to heap-buffer overflow in the Phar extension

🔗 References (12)