MGASA-2013-0172
- Source
- https://advisories.mageia.org/MGASA-2013-0172.html
- Import Source
- https://advisories.mageia.org/MGASA-2013-0172.json
- JSON Data
- https://api.osv.dev/v1/vulns/MGASA-2013-0172
- Upstream
- Published
- 2013-06-18T15:00:10Z
- Modified
- 2026-04-16T04:44:41.542403906Z
- Summary
- Updated php packages fix security vulnerabilies
- Details
-
Heap based buffer overflow in quotedprintableencode() in PHP before version 5.4.16 (CVE-2013-2110).
Integer overflow in the SdnToJewish function in jewish.c in the Calendar component in PHP before 5.3.26 and 5.4.x before 5.4.16 allows context-dependent attackers to cause a denial of service (application hang) via a large argument to the jdtojewish function. (CVE-2013-4635)
This update provides PHP version 5.4.16 which fixes this as well as several other issues.
- References
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:3 / php
Package
- Name
- php
- Purl
- pkg:rpm/mageia/php?arch=source&distro=mageia-3
Mageia:3 / php-apc
Package
- Name
- php-apc
- Purl
- pkg:rpm/mageia/php-apc?arch=source&distro=mageia-3
Mageia:3 / php-gd-bundled
Package
- Name
- php-gd-bundled
- Purl
- pkg:rpm/mageia/php-gd-bundled?arch=source&distro=mageia-3
Mageia:3 / php-timezonedb
Package
- Name
- php-timezonedb
- Purl
- pkg:rpm/mageia/php-timezonedb?arch=source&distro=mageia-3