ID: 15772
Updated by: [EMAIL PROTECTED]
Reported By: [EMAIL PROTECTED]
Status: Closed
Bug Type: *General Issues
Operating System: all
PHP Version: 4.0.6
New Comment:
The current patch fixes the exploit. Yes, there is a memchr() crash
bug left in it which is fixed in CVS, and the 4.2 code has been
completely rewritten. Basically the issue has been addressed.
Previous Comments:
------------------------------------------------------------------------
[2002-03-05 09:23:49] [EMAIL PROTECTED]
I note that '[EMAIL PROTECTED]' submitted another patch that seems to
fix the issue. What about that patch?
------------------------------------------------------------------------
[2002-03-05 08:05:14] [EMAIL PROTECTED]
Make that european...
Derick
------------------------------------------------------------------------
[2002-03-05 08:01:03] [EMAIL PROTECTED]
This would be a violation of (at least german) userdata protection
laws.
------------------------------------------------------------------------
[2002-03-05 07:12:57] [EMAIL PROTECTED]
Would it be possible to post the IP addresses of the users of php.net?
Some would very much appreciate that.
------------------------------------------------------------------------
[2002-03-04 12:22:19] [EMAIL PROTECTED]
Folks, please, we need a working fix, stop bitching at each other.
Is the official response from the PHP team that "the fix is in CVS, so
it is fixed"?
------------------------------------------------------------------------
The remainder of the comments for this report are too long. To view
the rest of the comments, please view the bug report online at
http://bugs.php.net/15772
--
Edit this bug report at http://bugs.php.net/?id=15772&edit=1
