OS X security update 2011-006 for PHP (CVE-2011-1092)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
8 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | March 15, 2011 | December 16, 2011 | August 28, 2013 |
Description
Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the shmop_read function.
Free Nexpose Download
Discover, prioritize, and remediate security risks today!
References
Solution
apple-osx-security-update-2011-006Related Vulnerabilities
- SUSE Linux Security Vulnerability: CVE-2011-1092
- Gentoo Linux: CVE-2011-1092: PHP: Multiple vulnerabilities
- Vulnerabilities deemed not relevant on Red Hat Enterprise Linux 5
- Vulnerabilities deemed not relevant on Red Hat Enterprise Linux 7
- USN-1126-1: PHP vulnerabilities
- DSA-2408-1 php5 -- several vulnerabilities
- Vulnerabilities deemed not relevant on Red Hat Enterprise Linux 4
- Vulnerabilities deemed not relevant on Red Hat Enterprise Linux 3
- Vulnerabilities deemed not relevant on Red Hat Enterprise Linux 6
- PHP Vulnerability: CVE-2011-1092
- OS X update for Apache (CVE-2011-1092)