1
Candidate: CVE-2010-4657
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4657
6
memory content leak when using xmlTextWriterWriteAttribute with malformed
10
jdstrand> per Debian, This was initially reported to be a bug in libxml2, but
11
it later showed that PHP
12
mdeslaur> can't reproduce on quantal+
13
mdeslaur> The reproducer only displays garbage if the suhosin patch is
14
mdeslaur> applied, which is why it doesn't appear to work on quantal+
15
mdeslaur> Need to check if libxml2 still walks past the end of the string
16
mdeslaur> if the suhosin patch isn't applied.
17
mdeslaur> we will not be fixing this issue
19
https://bugzilla.gnome.org/show_bug.cgi?id=631551
20
https://bugs.php.net/bug.php?id=52998 (private)
21
https://bugs.launchpad.net/php/+bug/655442
27
upstream_php5: needs-triage
28
hardy_php5: ignored (reached end-of-life)
29
lucid_php5: ignored (reached end-of-life)
30
maverick_php5: ignored (reached end-of-life)
31
natty_php5: ignored (reached end-of-life)
32
oneiric_php5: ignored (reached end-of-life)
34
quantal_php5: not-affected (5.4.6-1ubuntu1.1)
35
raring_php5: not-affected (5.4.9-4ubuntu1)
36
saucy_php5: not-affected (5.4.9-4ubuntu1)
37
trusty_php5: not-affected (5.4.9-4ubuntu1)
38
utopic_php5: not-affected (5.4.9-4ubuntu1)
39
vivid_php5: not-affected (5.4.9-4ubuntu1)
40
vivid/stable-phone-overlay_php5: DNE
41
vivid/ubuntu-core_php5: DNE
42
wily_php5: not-affected (5.4.9-4ubuntu1)