Launchpad CVE tracker

CVE 2010-4409

Integer overflow in the NumberFormatter::getSymbol (aka numfmt_get_symbol) function in PHP 5.3.3 and earlier allows context-dependent attackers to cause a denial of service (application crash) via an invalid argument.

Related bugs and status

CVE-2010-4409 (Candidate) is related to these bugs:

Bug #697181: DoS: Infinite loop processing 2.2250738585072011e-308

		In	Importance	Status
697181	DoS: Infinite loop processing 2.2250738585072011e-308	php5 (Ubuntu)	Undecided	Fix Released
697181	DoS: Infinite loop processing 2.2250738585072011e-308	php	Unknown	Unknown
697181	DoS: Infinite loop processing 2.2250738585072011e-308	php5 (Ubuntu Lucid)	Undecided	Fix Released
697181	DoS: Infinite loop processing 2.2250738585072011e-308	php5 (Ubuntu Maverick)	Undecided	Fix Released
697181	DoS: Infinite loop processing 2.2250738585072011e-308	php5 (Ubuntu Natty)	Undecided	Fix Released
697181	DoS: Infinite loop processing 2.2250738585072011e-308	php5 (Fedora)	Medium	Fix Released
697181	DoS: Infinite loop processing 2.2250738585072011e-308	php5 (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

CERT-VN: VU#479900
EXPLOIT-DB: 15722
BID: 45119
MANDRIVA: MDVSA-2010:255
FEDORA: FEDORA-2010-18976
FEDORA: FEDORA-2010-19011
VUPEN: ADV-2011-0020
CONFIRM: http://www.php.net/Cha...
UBUNTU: USN-1042-1
SECUNIA: 42812
VUPEN: ADV-2011-0021
VUPEN: ADV-2011-0077
MANDRIVA: MDVSA-2010:254
CONFIRM: http://support.apple.c...
APPLE: APPLE-SA-2011-03-21-1
SUSE: openSUSE-SU-2012:0100
SECUNIA: 47674
CONFIRM: http://svn.php.net/vie...
CONFIRM: http://svn.php.net/vie...
BUGTRAQ: 20101210 PHP 5.3.3 Num...

Launchpad.net

CVE 2010-4409

Related bugs and status

Related bugs

References