News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Secunia.com:
rPath update for gd, php, php-mysql, and php-pgsql
June 08, 2007 @ 08:49:00

Secunia has posted this advisory for rPath users to point out an update to several packages including gd, php, php-mysql, and php-pgsql.

rPath has issued an update for gd, php, php-mysql, and php-pgsql. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service).

Users can grab the updated packages as linked to from the original advisory notice on the rPath mailing list:

Previous versions of the gd and php packages are vulnerable to a Denial of Service attack in which an attacker can use a truncated PNG image to cause unbounded CPU consumption. The libgd library is not exposed via any privileged or remote interfaces within rPath Linux per se, but it is exposed by some web applications, such as php (which provides its own internal version of libgd).
0 comments voice your opinion now!
secunia update rpath gd phpmysql phppgsql package secunia update rpath gd phpmysql phppgsql package


blog comments powered by Disqus

Similar Posts

Alexander Netkachev's Blog: "PHP IDE" is superseded by "PDT, PHP Development Tools"

Community News: DreamStats "rootpath" File Inclusion Vulnerability Identified

Jose de Silva's Blog: Speeding up your application with Cache_Lite

Secunia.com: phpMyAdmin Cross-Site Scripting Vulnerabilities

Secunia.com: SUSE update for PHP


Community Events

Don't see your event here?
Let us know!


install release performance framework api podcast library conference application example community composer symfony2 opinion version laravel interview series introduction php7

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework