CVE-2008-7068

The dba_replace function in PHP 5.2.6 and 4.x allows context-dependent attackers to cause a denial of service (file truncation) via a key with the NULL byte. NOTE: this might only be a vulnerability in limited circumstances in which the attacker can modify or add database entries but does not have permissions to truncate the file.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
php4	9.10 karmic	Not in release
	9.04 jaunty	Not in release
	8.10 intrepid	Not in release
	8.04 LTS hardy	Not in release
	6.06 LTS dapper	Ignored end of life
php5	9.10 karmic	Not affected
	9.04 jaunty	Not affected
	8.10 intrepid	Fixed 5.2.6-2ubuntu4.5
	8.04 LTS hardy	Fixed 5.2.4-2ubuntu5.9
	6.06 LTS dapper	Fixed 5.1.2-1ubuntu3.17

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
php5	Upstream: http://cvs.php.net/viewvc.cgi/php-src/ext/dba/libinifile/inifile.c?r1=1.14.2.1.2.4&r2=1.14.2.1.2.5 Upstream: http://cvs.php.net/viewvc.cgi/php-src/ext/dba/libinifile/inifile.c?r1=1.21&r2=1.22 Upstream: http://cvs.php.net/viewvc.cgi/php-src/ext/dba/libinifile/inifile.c?r1=1.14.2.1.2.3.2.1&r2=1.14.2.1.2.3.2.2

Status

Patch details

References

Related Ubuntu Security Notices (USN)

Other references