Ubuntu Security Notice USN-5902-1
Ubuntu Security Notice 5902-1 - It was discovered that PHP incorrectly
handled certain invalid Blowfish password hashes. An invalid password hash could possibly allow applications to accept any password as valid,
contrary to expectations. It was discovered that PHP incorrectly handled resolving long paths. A remote attacker could possibly use this issue to
obtain or modify sensitive information. It was discovered that PHP
incorrectly handled a large number of parts in HTTP form uploads. A remote attacker could possibly use this issue to cause PHP to consume resources, leading to a denial of service.
https://packetstormsecurity.com/files/171192/USN-5902-1.txt
Tue, 28 Feb 2023 17:29:38 GMT
________________________________
--- The information is for inforamtional purposes only.
* Origin: Read us with
http://winpoint.org JID:
rs@captflint.com (2:467/4.444)