Bug 5575

Summary: php new security issue CVE-2012-1172
Product: Mageia Reporter: David Walser <luigiwalser>
Component: SecurityAssignee: Mageia Bug Squad <bugsquad>
Status: RESOLVED FIXED QA Contact:
Severity: normal    
Priority: Normal    
Version: Cauldron   
Target Milestone: ---   
Hardware: i586   
OS: Linux   
URL: http://lwn.net/Alerts/494009/
Whiteboard:
Source RPM: php-5.3.10-1.mga1.src.rpm CVE:
Status comment:
Attachments: php-5.3.10-CVE-2012-1172.diff

Description David Walser 2012-04-23 23:52:59 CEST 
Scripts using PHP 5.3 that accept multiple file uploads in a single
request are potentially vulnerable to a directory traversal attack.

References:
http://support.novell.com/security/cve/CVE-2012-1172.html
https://bugzilla.novell.com/show_bug.cgi?id=752030

PHP file to reproduce the issue should be here:
http://svn.php.net/viewvc/php/php-src/trunk/tests/basic/bug55500.phpt?revision=321664&view=markup&pathrev=321664

Cauldron is also affected.
Comment 1 David Walser 2012-04-23 23:53:57 CEST 
Created attachment 2086 [details]
php-5.3.10-CVE-2012-1172.diff

Upstream patch to fix the issue.
David Walser 2012-04-23 23:54:30 CEST

Blocks: (none) => 5046

Comment 2 David Walser 2012-04-24 00:52:14 CEST 
Freeze push requested for Cauldron.

For Mageia 1 I'll fold this into Bug 5063.

Version: 1 => Cauldron

Comment 3 David Walser 2012-04-25 12:42:55 CEST 
Fixed in php-5.3.10-8.mga2

Status: NEW => RESOLVED
Resolution: (none) => FIXED

Anne Nicolas 2012-05-05 09:43:30 CEST

Blocks: 5046 => (none)