CVE-2013-4113
First published: Thu Jul 11 2013(Updated: )
An array index error, leading to invalid free flaw was found in the way XML extension of PHP, a scripting language for creating dynamic web sites, used to convert certain XML files into PHP language internal structures. Remote attacker could provide a specially-crafted XML file, that when opened in an PHP application would lead to that application crash or, potentially, arbitrary code execution with the privileges of the user running the application. References: <a href="http://php.net/archive/2013.php#id2013-07-11-1">http://php.net/archive/2013.php#id2013-07-11-1</a> <a href="http://www.php.net/ChangeLog-5.php#5.3.27">http://www.php.net/ChangeLog-5.php#5.3.27</a> Upstream bug report: <a href="https://bugs.php.net/bug.php?id=65236">https://bugs.php.net/bug.php?id=65236</a> Relevant patch: <a href="https://bugs.php.net/patch-display.php?bug_id=65236&patch=bug65236.diff&revision=latest">https://bugs.php.net/patch-display.php?bug_id=65236&patch=bug65236.diff&revision=latest</a> <a href="http://git.php.net/?p=php-src.git;a=commitdiff;h=7d163e8a0880ae8af2dd869071393e5dc07ef271">http://git.php.net/?p=php-src.git;a=commitdiff;h=7d163e8a0880ae8af2dd869071393e5dc07ef271</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/php | <5.3.27 | 5.3.27 |
| redhat/php | <5.4.18 | 5.4.18 |
| PHP | >=5.3.0<5.3.27 | |
| PHP | >=5.4.0<5.4.18 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://php.net/archive/2013.php#id2013-07-11-1
- http://www.php.net/ChangeLog-5.php#5.3.27
- https://bugs.php.net/bug.php?id=65236
- https://bugs.php.net/patch-display.php?bug_id=65236&patch=bug65236.diff&revision=latest
- http://git.php.net/?p=php-src.git;a=commitdiff;h=7d163e8a0880ae8af2dd869071393e5dc07ef271
- http://git.php.net/?p=php-src.git;a=commitdiff;h=710eee5555bc5c95692bd3c84f5d2b5d687349b6
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=983698
- https://access.redhat.com/security/cve/CVE-2013-4113
- http://www.openwall.com/lists/oss-security/2013/07/11/6
- https://rhn.redhat.com/errata/RHSA-2013-1050.html
- https://rhn.redhat.com/errata/RHSA-2013-1049.html
- https://rhn.redhat.com/errata/RHSA-2013-1063.html
- https://rhn.redhat.com/errata/RHSA-2013-1062.html
- https://rhn.redhat.com/errata/RHSA-2013-1061.html
- http://www.php.net/ChangeLog-5.php#5.4.18
- https://bugzilla.redhat.com/show_bug.cgi?id=983689
- http://git.php.net/?p=php-src.git;a=commit;h=7d163e8a0880ae8af2dd869071393e5dc07ef271
- http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00034.html
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00006.html
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00007.html
- http://php.net/ChangeLog-5.php
- http://rhn.redhat.com/errata/RHSA-2013-1049.html
- http://rhn.redhat.com/errata/RHSA-2013-1050.html
- http://rhn.redhat.com/errata/RHSA-2013-1061.html
- http://rhn.redhat.com/errata/RHSA-2013-1062.html
- http://rhn.redhat.com/errata/RHSA-2013-1063.html
- http://secunia.com/advisories/54071
- http://secunia.com/advisories/54104
- http://secunia.com/advisories/54163
- http://secunia.com/advisories/54165
- http://support.apple.com/kb/HT6150
- http://www.debian.org/security/2013/dsa-2723
- http://www.ubuntu.com/usn/USN-1905-1
- collector/redhat-bugzilla
- alias/CVE-2013-4113
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/tags
- agent/softwarecombine
- agent/first-publish-date
- agent/references
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/php
- canonical/php
- version/php/5.3.0
- version/php/5.4.0