News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Secunia.com:
rPath update for gd, php, php-mysql, and php-pgsql
June 08, 2007 @ 08:49:00

Secunia has posted this advisory for rPath users to point out an update to several packages including gd, php, php-mysql, and php-pgsql.

rPath has issued an update for gd, php, php-mysql, and php-pgsql. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

Users can grab the updated packages as linked to from the original advisory notice on the rPath mailing list:

Previous versions of the gd and php packages are vulnerable to a Denial of Service attack in which an attacker can use a truncated PNG image to cause unbounded CPU consumption. The libgd library is not exposed via any privileged or remote interfaces within rPath Linux per se, but it is exposed by some web applications, such as php (which provides its own internal version of libgd).
0 comments voice your opinion now!
secunia update rpath gd phpmysql phppgsql package secunia update rpath gd phpmysql phppgsql package


blog comments powered by Disqus

Similar Posts

Lorenzo Alberton's Blog: Things are moving... (PEAR Package Updates)

Secunia.com: rPath update for gd, php, php-mysql, and php-pgsql

Cory Borrow's Blog: Creating thumbs from textfiles with PHP and GD

Rob Allen's Blog: More translations

Joshua Eichorn's Blog: Writing again (HTML_AJAX Manual)


Community Events

Don't see your event here?
Let us know!


composer series list example interview framework conference yii2 api language php7 project laravel introduction symfony opinion podcast application part2 community

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework