News Feed
Jobs Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Secunia.com:
rPath update for gd, php, php-mysql, and php-pgsql
June 08, 2007 @ 08:49:00

Secunia has posted this advisory for rPath users to point out an update to several packages including gd, php, php-mysql, and php-pgsql.

rPath has issued an update for gd, php, php-mysql, and php-pgsql. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

Users can grab the updated packages as linked to from the original advisory notice on the rPath mailing list:

Previous versions of the gd and php packages are vulnerable to a Denial of Service attack in which an attacker can use a truncated PNG image to cause unbounded CPU consumption. The libgd library is not exposed via any privileged or remote interfaces within rPath Linux per se, but it is exposed by some web applications, such as php (which provides its own internal version of libgd).
0 comments voice your opinion now!
secunia update rpath gd phpmysql phppgsql package secunia update rpath gd phpmysql phppgsql package


blog comments powered by Disqus

Similar Posts

Pierre-Alain Joye's Blog: Filter 0.10.0 released

Christopher Jones' Blog: Bigger, better, faster

Greg Beaver's Blog: PHP_LexerGenerator 0.2.2 released at pear.php.net

Greg Beaver's Blog: problem with PHP_Archive-based phars tracked to odd unpack() bug

Dan Scott's Blog: PEAR File_MARC 0.1.0 alpha officially released


Community Events











Don't see your event here?
Let us know!


component overview symfony2 opinion framework hhvm example unittest facebook language composer hack install introduction release security package code application podcast

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework