[php-maint] Bug#323366: SECURITY: XML::RPC remote code injections
(CAN-2005-2498)
Zoran Dzelajlija
jelly at srce.hr
Mon Aug 22 18:00:47 UTC 2005
Quoting Christian Hammers (ch at debian.org):
> Package: php4
> Version: 4:4.3.10-15
> Severity: grave
> Tags: security
>
> Hello
>
> A security flaw in XML::RPC has become known. From the version numbers
> it seems to affect Debian. (I did not check which distributions and packages
> exactly though).
>
> More information is available here:
>
> http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2498
> (not yet)
FWIW, patches from Ubuntu might help:
http://www.ubuntulinux.org/support/documentation/usn/usn-171-1
http://secunia.com/advisories/16512/
Regards,
Zoran
More information about the pkg-php-maint
mailing list