What is the severity of CVE-2010-2531?

CVE-2010-2531 has been classified as a moderate security vulnerability.

How do I fix CVE-2010-2531?

To fix CVE-2010-2531, upgrade to PHP versions 5.2.14 or 5.3.3 or later.

What types of systems are affected by CVE-2010-2531?

CVE-2010-2531 affects systems running PHP versions up to 5.2.14 and 5.3.3, particularly on Red Hat and Debian distributions.

What does CVE-2010-2531 mean for my PHP applications?

CVE-2010-2531 could lead to sensitive data exposure in PHP applications during fatal errors due to recursive calls or resource limits.

Is CVE-2010-2531 a zero-day vulnerability?

No, CVE-2010-2531 is not a zero-day vulnerability as it was publicly disclosed and patched in 2010.

Vulnerability/
CVE-2010-2531

medium

4.3

CWE

200

9/7/2010

20/8/2010

7/8/2024

CVE-2010-2531: Infoleak

First published: Fri Jul 09 2010(Updated: )

The upstream PHP 5.2.14 and 5.3.3 releases corrected an information disclosure flaw where the var_export() function would disclose data if a fatal error occurred due to recursion, memory_limit, or execution time. The buffer is never cleared and is flushed to the user, regardless of the configured display_errors setting, because it is considered part of the output. This could lead to a disclosure of possibly sensitive information. The name <a href="https://access.redhat.com/security/cve/CVE-2010-2531">CVE-2010-2531</a> has been assigned to this issue. An example to test: % cat test.php #!/usr/bin/php <?php @$obj->p =& $obj; var_export($obj, true); ?> % php test.php PHP Fatal error: Nesting level too deep - recursive dependency? in test.php on line 4 stdClass::__set_state(array( 'p' => stdClass::__set_state(array( 'p' => stdClass::__set_state(array( 'p' => stdClass::__set_state(array( % cat test2.php #!/usr/bin/php <?php $a[] =& $a; var_export($a, true); ?> % php test2.php PHP Fatal error: Nesting level too deep - recursive dependency? in test.php on line 4 array ( 0 => array ( 0 => array ( 0 => array ( 0 => array ( The upstream changes prevent any output from displaying, so should only display the "PHP Fatal error". The upstream fix: <a href="http://svn.php.net/viewvc?view=revision&revision=301143">http://svn.php.net/viewvc?view=revision&revision=301143</a>

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
redhat/php	<0:5.1.6-27.el5_5.3	0:5.1.6-27.el5_5.3
PHP	>=5.2.0<5.2.14
PHP	>=5.3.0<5.3.3
Debian Linux	=5.0
Debian Linux	=6.0

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

RHSA-2010:0919

Frequently Asked Questions

What is the severity of CVE-2010-2531?
CVE-2010-2531 has been classified as a moderate security vulnerability.
How do I fix CVE-2010-2531?
To fix CVE-2010-2531, upgrade to PHP versions 5.2.14 or 5.3.3 or later.
What types of systems are affected by CVE-2010-2531?
CVE-2010-2531 affects systems running PHP versions up to 5.2.14 and 5.3.3, particularly on Red Hat and Debian distributions.
What does CVE-2010-2531 mean for my PHP applications?
CVE-2010-2531 could lead to sensitive data exposure in PHP applications during fatal errors due to recursive calls or resource limits.
Is CVE-2010-2531 a zero-day vulnerability?
No, CVE-2010-2531 is not a zero-day vulnerability as it was publicly disclosed and patched in 2010.

collector/redhat-cve
agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/severity
agent/author
agent/references
agent/description
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2010-2531
agent/trending
agent/source
agent/tags
agent/softwarecombine
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
package-manager/redhat
vendor/php
canonical/php
version/php/5.2.0
version/php/5.3.0
vendor/debian
canonical/debian linux
version/debian linux/5.0
version/debian linux/6.0