Launchpad CVE tracker

CVE 2005-3391

Multiple vulnerabilities in PHP before 4.4.1 allow remote attackers to bypass safe_mode and open_basedir restrictions via unknown attack vectors in (1) ext/curl and (2) ext/gd.

Related bugs and status

CVE-2005-3391 (Candidate) is related to these bugs:

Bug #24363: php-pear: pear upgrade-all gives me Fatal error: Cannot instantiate

Summary				In	Importance	Status
	24363	php-pear: pear upgrade-all gives me Fatal error: Cannot instantiate		php5 (Ubuntu)	High	Invalid
	24363	php-pear: pear upgrade-all gives me Fatal error: Cannot instantiate		php5 (Debian)	Unknown	Fix Released

Bug #24857: PHP 5.0.5 fixes security bugs

Summary				In	Importance	Status
	24857	PHP 5.0.5 fixes security bugs		php5 (Ubuntu)	High	Fix Released
	24857	PHP 5.0.5 fixes security bugs		php5 (Debian)	Unknown	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://www.php.net/rel...
SECUNIA: 17371
GENTOO: GLSA-200511-08
BID: 15411
OPENPKG: OpenPKG-SA-2005.027
SECUNIA: 18054
SECUNIA: 18198
MANDRIVA: MDKSA-2006:035
SECUNIA: 18763
APPLE: APPLE-SA-2006-03-01
BID: 16907
SECUNIA: 19064
SECUNIA: 17510
OSVDB: 20898
HP: HPSBMA02159
HP: SSRT061238
SECUNIA: 22691
SREASON: 525
CONFIRM: http://docs.info.apple...
CERT: TA06-062A
VUPEN: ADV-2005-2254
VUPEN: ADV-2006-0791
VUPEN: ADV-2006-4320
UBUNTU: USN-232-1
SUSE: SUSE-SA:2005:069

Launchpad.net

CVE 2005-3391

Related bugs and status

Related bugs

References