Oval Definition:	oval:org.mitre.oval:def:23479
Revision Date: 2014-07-21 Version: 30 Title: ELSA-2011:0195: php security update (Moderate) Description: strtod.c, as used in the zend_strtod function in PHP 5.2 before 5.2.17 and 5.3 before 5.3.5, and other products, allows context-dependent attackers to cause a denial of service (infinite loop) via a certain floating-point value in scientific notation, which is not properly handled in x87 FPU registers, as demonstrated using 2.2250738585072011e-308. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2009-5016 CVE-2010-3709 CVE-2010-3870 CVE-2010-4645 ELSA-2011:0195-01 Platform(s): Oracle Linux 6 Product(s): php Definition Synopsis Oracle Linux 6.x AND rpm test php-pdo is earlier than 0:5.3.2-6.el6_0.1 OR php-common is earlier than 0:5.3.2-6.el6_0.1 OR php-xmlrpc is earlier than 0:5.3.2-6.el6_0.1 OR php-embedded is earlier than 0:5.3.2-6.el6_0.1 OR php-snmp is earlier than 0:5.3.2-6.el6_0.1 OR php-enchant is earlier than 0:5.3.2-6.el6_0.1 OR php-pgsql is earlier than 0:5.3.2-6.el6_0.1 OR php-recode is earlier than 0:5.3.2-6.el6_0.1 OR php-devel is earlier than 0:5.3.2-6.el6_0.1 OR php is earlier than 0:5.3.2-6.el6_0.1 OR php-gd is earlier than 0:5.3.2-6.el6_0.1 OR php-imap is earlier than 0:5.3.2-6.el6_0.1 OR php-odbc is earlier than 0:5.3.2-6.el6_0.1 OR php-soap is earlier than 0:5.3.2-6.el6_0.1 OR php-tidy is earlier than 0:5.3.2-6.el6_0.1 OR php-mysql is earlier than 0:5.3.2-6.el6_0.1 OR php-bcmath is earlier than 0:5.3.2-6.el6_0.1 OR php-zts is earlier than 0:5.3.2-6.el6_0.1 OR php-intl is earlier than 0:5.3.2-6.el6_0.1 OR php-process is earlier than 0:5.3.2-6.el6_0.1 OR php-ldap is earlier than 0:5.3.2-6.el6_0.1 OR php-mbstring is earlier than 0:5.3.2-6.el6_0.1 OR php-dba is earlier than 0:5.3.2-6.el6_0.1 OR php-cli is earlier than 0:5.3.2-6.el6_0.1 OR php-pspell is earlier than 0:5.3.2-6.el6_0.1 OR php-xml is earlier than 0:5.3.2-6.el6_0.1
BACK