[v2.7] php: CVE-2013-6420 - memory corruption in openssl_x509_parse
The vulnerability allows remote attacker to execute any code on the target system.
Affected versions: PHP 5.3.27, 5.4.22, 5.5.6 and all earlier versions.
CONFIRM:
http://git.php.net/?p=php-src.git;a=commit;h=c1224573c773b6845e83505f717fbf820fc18415
http://git.php.net/?p=php-src.git&a=search&h=HEAD&st=commit&s=Fix+CVE-2013-6420+-+memory+corruption+in+openssl\_x509\_parse
(from redmine: issue id 2517, created on 2013-12-17, closed on 2013-12-18)
- Relations:
- parent #2513 (closed)
- Changesets:
- Revision 38d8abae by Natanael Copa on 2013-12-17T16:26:08Z:
main/php: security upgrade to 5.5.7 (CVE-2013-6420)
fixes #2517