FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-27 18:04:16 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
a2074ac6-124c-11de-a964-0030843d3802php-mbstring -- php mbstring buffer overflow vulnerability

SecurityFocus reports:

PHP is prone to a buffer-overflow vulnerability because it fails to perform boundary checks before copying user-supplied data to insufficiently sized memory buffers. The issue affects the 'mbstring' extension included in the standard distribution.

An attacker can exploit this issue to execute arbitrary machine code in the context of the affected webserver. Failed exploit attempts will likely crash the webserver, denying service to legitimate users.


Discovery 2008-12-21
Entry 2009-03-16
php4-mbstring
< 4.4.9

php5-mbstring
< 5.2.9

32948
CVE-2008-5557