[php-maint] Bug#542514: libapache2-mod-php5 with segmentation fault and efree heap overflow

Marc Dequènes (Duck) duck at duckcorp.org
Fri Aug 21 09:19:01 UTC 2009


severity 542514 grave
thanks


Coin,

I con also confirm this bug after an upgrade from 5.2.9.dfsg.1-4 to  
5.2.10.dfsg.1-2, but with apache2 2.2.11-6 (i downgraded apache2  
because of #541607).

With this bug, all PHP webapps are segfaulting very often, which  
renders the service quite useless and then the package almost  
unusuable, thus the severity increase. Such a segfault may also be  
exploitable and is a potential security risk.

Regards.

-- 
Marc Dequènes (Duck)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: PGP Digital Signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-php-maint/attachments/20090821/2fb61774/attachment.pgp>


More information about the pkg-php-maint mailing list