{"id":"DSA-168","summary":"php - bypassing safe_mode, CRLF injection","modified":"2026-03-09T01:18:52.637484Z","published":"2002-09-18T00:00:00Z","upstream":["CVE-2002-0985","CVE-2002-0986","DEBIAN-CVE-2002-0985","DEBIAN-CVE-2002-0986"],"affected":[{"package":{"name":"php3","ecosystem":"Debian:3.0","purl":"pkg:deb/debian/php3?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.0.18-23.1woody1"}]}],"database_specific":{"source":"https://storage.googleapis.com/debian-osv/dsa-osv/DSA-168.json"}},{"package":{"name":"php4","ecosystem":"Debian:3.0","purl":"pkg:deb/debian/php4?arch=source"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"4.1.2-5"}]}],"database_specific":{"source":"https://storage.googleapis.com/debian-osv/dsa-osv/DSA-168.json"}}],"schema_version":"1.7.3"}