php: CVE-2013-6420 - memory corruption in openssl_x509_parse
The vulnerability allows remote attacker to execute any code on the target system.
Affected versions: PHP 5.3.27, 5.4.22, 5.5.6 and all earlier versions.
CONFIRM:
http://git.php.net/?p=php-src.git;a=commit;h=c1224573c773b6845e83505f717fbf820fc18415
http://git.php.net/?p=php-src.git&a=search&h=HEAD&st=commit&s=Fix+CVE-2013-6420+-+memory+corruption+in+openssl\_x509\_parse
(from redmine: issue id 2513, created on 2013-12-17, closed on 2013-12-18)
- Relations:
- child #2514 (closed)
- child #2515 (closed)
- child #2516 (closed)
- child #2517 (closed)