LeakedIn Logo
Stories About Data Leaks and Related Stuff
«
»

Potential leak of data: CVE Reference

0 votedvote

Detected 53 occurrence(s) of ‘CVE\-20[0-1]{1}[0-9]{1}\-[0-9]{4}’: 

when safemode checks fails (Ilia)
- Fixed possible relative path issues in zip_open and TS mode (old API) (Pierre)
- Fixed zend_llist_remove_tail (Michael Wallner, Dmitry)
- Fixed a thread safety issue in gd gif read code (Nuno, Roman Nemecek)
- Fixed CVE-2007-1001, GD wbmp used with invalid image size (Pierre)
- Fixed unallocated memory access/double free in in array_user_key_compare()
  (MOPB-24 by Stefan Esser) (Stas)
- Fixed wrong length calculation in unserialize S type
  (MOPB-29 by Stefan Esser) (Stas)

Detected 4 occurrence(s) of ‘mysql_[p]*connect\([^\$]‘: 


- Fixed bug #41215 (setAttribute return code reversed). (Ilia)
- Fixed bug #41192 (Per Directory Values only work for one key). (Dmitry)
- Fixed bug #41175 (addAttribute() fails to add an attribute with an empty
  value). (Ilia)
- Fixed bug #41159 (mysql_pconnect() hash does not account for connect
  flags). (Ilia)
- Fixed bug #41121 (range() overflow handling for large numbers on 32bit
  machines). (Ilia)
- Fixed bug #41118 (PHP does not handle overflow of octal integers). (Tony)
- Fixed bug #41109 (recursivei

Detected 1 occurrence(s) of ‘default (pass|passwd|password|secret)’: 

ption). (Dmitry)
- Fixed bug #32981 (ReflectionMethod::getStaticVariables() causes apache2.0.54
  seg fault). (Dmitry)
- Fixed bug #32956 (mysql_bind_result() doesn't support MYSQL_TYPE_NULL).
  (Georg)
- Fixed bug #32947 (Incorrect option for mysqli default password). (Georg)
- Fixed bug #32944 (Disabling session.use_cookies doesn't prevent reading
  session cookies). (Jani, Tony)
- Fixed bug #32941 (Sending structured SOAP fault kills a php). (Dmitry)
- Fixed bug #32937 (open_basedir looses trailing / in the

Source: http://pastebin.com/raw.php?i=RDmEMcbp

Tags: , , ,

This entry was posted on Saturday, June 16th, 2012 at 05:15 and is filed under PasteMon. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

Comments are closed.