CVE 2011-3267
PHP before 5.3.7 does not properly implement the error_log function, which allows context-dependent attackers to cause a denial of service (application crash) via unspecified vectors.
Related bugs and status
CVE-2011-3267 (Candidate) is related to these bugs:
Bug #813110: CVE-2011-1938
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
813110 | CVE-2011-1938 | php5 (Ubuntu) | Low | Fix Released | ||
813110 | CVE-2011-1938 | php5 (Ubuntu Lucid) | Low | Fix Released | ||
813110 | CVE-2011-1938 | php5 (Ubuntu Maverick) | Low | Fix Released | ||
813110 | CVE-2011-1938 | php5 (Ubuntu Oneiric) | Low | Fix Released | ||
813110 | CVE-2011-1938 | php5 (Ubuntu Natty) | Low | Fix Released |
Bug #813115: CVE-2011-2202
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
813115 | CVE-2011-2202 | php5 (Ubuntu) | Medium | Fix Released | ||
813115 | CVE-2011-2202 | php5 (Ubuntu Hardy) | Medium | Fix Released | ||
813115 | CVE-2011-2202 | php5 (Ubuntu Lucid) | Medium | Fix Released | ||
813115 | CVE-2011-2202 | php5 (Ubuntu Natty) | Medium | Fix Released | ||
813115 | CVE-2011-2202 | php5 (Ubuntu Maverick) | Medium | Fix Released | ||
813115 | CVE-2011-2202 | php5 (Ubuntu Oneiric) | Medium | Fix Released |
Bug #852871: PHP ZEND_SL Opcode Interruption Address Information Leak Vulnerability
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
852871 | PHP ZEND_SL Opcode Interruption Address Information Leak Vulnerability | php5 (Ubuntu) | Undecided | Fix Released | ||
852871 | PHP ZEND_SL Opcode Interruption Address Information Leak Vulnerability | php5 (Ubuntu Hardy) | Low | Won't Fix | ||
852871 | PHP ZEND_SL Opcode Interruption Address Information Leak Vulnerability | php5 (Ubuntu Lucid) | Low | Fix Released |
See the
CVE page on Mitre.org
for more details.