5575 – php new security issue CVE-2012-1172

Bug 5575 - php new security issue CVE-2012-1172

Summary: php new security issue CVE-2012-1172

Status:	RESOLVED FIXED

Alias:	None

Product:	Mageia
Classification:	Unclassified
Component:	Security (show other bugs)
Version:	Cauldron
Hardware:	i586 Linux

Priority:	Normal Severity: normal
Target Milestone:	---
Assignee:	Mageia Bug Squad
QA Contact:

URL:	http://lwn.net/Alerts/494009/
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2012-04-23 23:52 CEST by David Walser
Modified:	2012-05-05 09:43 CEST (History)
CC List:	0 users

See Also:
Source RPM:	php-5.3.10-1.mga1.src.rpm
CVE:
Status comment:

Attachments
php-5.3.10-CVE-2012-1172.diff (299 bytes, patch) 2012-04-23 23:53 CEST, David Walser	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2012-04-23 23:52:59 CEST

Scripts using PHP 5.3 that accept multiple file uploads in a single
request are potentially vulnerable to a directory traversal attack.

References:
http://support.novell.com/security/cve/CVE-2012-1172.html
https://bugzilla.novell.com/show_bug.cgi?id=752030

PHP file to reproduce the issue should be here:
http://svn.php.net/viewvc/php/php-src/trunk/tests/basic/bug55500.phpt?revision=321664&view=markup&pathrev=321664

Cauldron is also affected.

Comment 1 David Walser 2012-04-23 23:53:57 CEST

Created attachment 2086 [details]
php-5.3.10-CVE-2012-1172.diff

Upstream patch to fix the issue.

David Walser 2012-04-23 23:54:30 CEST

Blocks: (none) => 5046

Comment 2 David Walser 2012-04-24 00:52:14 CEST

Freeze push requested for Cauldron.

For Mageia 1 I'll fold this into Bug 5063.

Version: 1 => Cauldron

Comment 3 David Walser 2012-04-25 12:42:55 CEST

Fixed in php-5.3.10-8.mga2

Status: NEW => RESOLVED
Resolution: (none) => FIXED

Anne Nicolas 2012-05-05 09:43:30 CEST

Blocks: 5046 => (none)

Note You need to log in before you can comment on or make changes to this bug.