Upstream information
Description
Heap-based buffer overflow in the php_quot_print_encode function in ext/standard/quot_print.c in PHP before 5.3.26 and 5.4.x before 5.4.16 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted argument to the quoted_printable_encode function.SUSE information
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having moderate severity.
| National Vulnerability Database | |
|---|---|
| Base Score | 5 |
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
| Access Vector | Network |
| Access Complexity | Low |
| Authentication | None |
| Confidentiality Impact | None |
| Integrity Impact | None |
| Availability Impact | Partial |
Note from the SUSE Security Team
This issue does not affect our php 5.2 and 5.3 or older versions, so SUSE Linux Enterprise 11 or older version are not affected. SUSE Bugzilla entries: 827317 [RESOLVED / INVALID], 880238 [NEW] No SUSE Security Announcements cross referenced.SUSE Timeline for this CVE
CVE page created: Fri Oct 7 12:46:28 2022CVE page last modified: Sat Jul 1 11:20:43 2023