Ubuntu
php5 package

CVE-2009-1271: denial of service via segfault (ext/json)

  1. Jaunty (9.04)
  2. Bug #364346
Bug #364346 reported by Mark Lee
258
This bug affects 1 person
Affects Status Importance Assigned to Milestone
php5 (Ubuntu)
Fix Released
Undecided
Unassigned
Hardy
Fix Released
Undecided
Unassigned
Intrepid
Fix Released
Undecided
Unassigned
Jaunty
Fix Released
Undecided
Unassigned

Bug Description

Binary package hint: php5

See: <http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1271>.

Debian has already patched this: <http://www.debian.org/security/2009/dsa-1775>.

CVE References

Mark Lee (malept)
visibility: private → public
Revision history for this message
Marc Deslauriers (mdeslaur) wrote :

Updates for Hardy and Intrepid were released today:

http://www.ubuntu.com/usn/USN-761-1

Jaunty update is pending.

Changed in php5 (Ubuntu):
status: New → Fix Released
Thierry Carrez (ttx)
Changed in php5 (Ubuntu Hardy):
status: New → Fix Released
Changed in php5 (Ubuntu Intrepid):
status: New → Fix Released
Changed in php5 (Ubuntu Jaunty):
status: New → Fix Released
To post a comment you must log in.
This report contains Public Security information  
Everyone can see this security related information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.