Launchpad.net

CVE 2011-0441

The Debian GNU/Linux /etc/cron.d/php5 cron job for PHP 5.3.5 allows local users to delete arbitrary files via a symlink attack on a directory under /var/lib/php5/.

Related bugs and status

CVE-2011-0441 (Candidate) is related to these bugs:

Bug #910296: Please backport the upstream patch to prevent attacks based on hash collisions

		In	Importance	Status
910296	Please backport the upstream patch to prevent attacks based on hash collisions	php5 (Ubuntu)	Medium	Fix Released
910296	Please backport the upstream patch to prevent attacks based on hash collisions	php5 (Ubuntu Lucid)	Medium	Fix Released
910296	Please backport the upstream patch to prevent attacks based on hash collisions	php5 (Ubuntu Oneiric)	Medium	Fix Released
910296	Please backport the upstream patch to prevent attacks based on hash collisions	php5 (Ubuntu Maverick)	Medium	Fix Released
910296	Please backport the upstream patch to prevent attacks based on hash collisions	php5 (Ubuntu Hardy)	Medium	Fix Released
910296	Please backport the upstream patch to prevent attacks based on hash collisions	php5 (Ubuntu Natty)	Medium	Fix Released
910296	Please backport the upstream patch to prevent attacks based on hash collisions	php5 (Ubuntu Precise)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2011-0441

Related bugs and status

Related bugs

References