1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
|
PublicDateAtUSN: 2011-03-02
Candidate: CVE-2011-1072
PublicDate: 2011-03-02
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1072
http://www.ubuntu.com/usn/usn-1126-1
Description:
The installer in PEAR before 1.9.2 allows local users to overwrite
arbitrary files via a symlink attack on the package.xml file, related to
the (1) download_dir, (2) cache_dir, (3) tmp_dir, and (4)
pear-build-download directories, a different vulnerability than
CVE-2007-2519.
Ubuntu-Description:
Notes:
mdeslaur> pear 1.9.2 contains an incomplete fix. CVE-2011-1144 was
mdeslaur> assigned to incomplete fix.
sbeattie> maverick and lucid at least are affected, as they contain
sbeattie> PEAR 1.9.1 and 1.9.0 respectively.
Bugs:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=546164
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-1072
http://pear.php.net/bugs/bug.php?id=18056
Priority: low
Discovered-by: Raphael Geisert
Assigned-to: sbeattie
Patches_php5:
upstream: http://svn.php.net/viewvc?view=revision&revision=308687
upstream_php5: released (5.2.11.dsfg.1-1)
dapper_php5: released (5.1.2-1ubuntu3.22)
hardy_php5: released (5.2.4-2ubuntu5.15)
karmic_php5: released (5.2.10.dfsg.1-2ubuntu6.9)
lucid_php5: released (5.3.2-1ubuntu4.8)
maverick_php5: released (5.3.3-1ubuntu9.4)
natty_php5: not-affected
devel_php5: not-affected
|