5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.055 Low
EPSS
Percentile
93.2%
Heap based buffer overflow in quoted_printable_encode() in PHP before version 5.4.16 (CVE-2013-2110). Integer overflow in the SdnToJewish function in jewish.c in the Calendar component in PHP before 5.3.26 and 5.4.x before 5.4.16 allows context-dependent attackers to cause a denial of service (application hang) via a large argument to the jdtojewish function. (CVE-2013-4635) This update provides PHP version 5.4.16 which fixes this as well as several other issues.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Mageia | 3 | noarch | php | <Β 5.4.16-1 | php-5.4.16-1.mga3 |
Mageia | 3 | noarch | php-apc | <Β 3.1.14-7.1 | php-apc-3.1.14-7.1.mga3 |
Mageia | 3 | noarch | php-gd-bundled | <Β 5.4.16-1 | php-gd-bundled-5.4.16-1.mga3 |
Mageia | 3 | noarch | php-timezonedb | <Β 2013.3-1 | php-timezonedb-2013.3-1.mga3 |