{"id":"MGASA-2013-0176","summary":"Updated php package fixes several issues","details":"Fixed php bug #64879 (Heap based buffer overflow in quoted_printable_encode,\nCVE-2013-2110).\n\nInteger overflow in the SdnToJewish function in jewish.c in the Calendar\ncomponent in PHP before 5.3.26 and 5.4.x before 5.4.16 allows\ncontext-dependent attackers to cause a denial of service (application hang)\nvia a large argument to the jdtojewish function. (CVE-2013-4635)\n\nSee the changelog for additional bug fixes.\n","modified":"2026-04-16T04:41:45.954796095Z","published":"2013-06-19T10:20:15Z","upstream":["CVE-2013-2110","CVE-2013-4635"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2013-0176.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=10492"},{"type":"REPORT","url":"https://bugs.php.net/bug.php?id=64879"},{"type":"WEB","url":"http://www.php.net/ChangeLog-5.php"},{"type":"WEB","url":"http://lwn.net/Vulnerabilities/559055"}],"affected":[{"package":{"name":"php","ecosystem":"Mageia:2","purl":"pkg:rpm/mageia/php?arch=source&distro=mageia-2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.3.26-1.mga2"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2013-0176.json"}},{"package":{"name":"php-apc","ecosystem":"Mageia:2","purl":"pkg:rpm/mageia/php-apc?arch=source&distro=mageia-2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"3.1.13-1.8.mga2"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2013-0176.json"}},{"package":{"name":"php-eaccelerator","ecosystem":"Mageia:2","purl":"pkg:rpm/mageia/php-eaccelerator?arch=source&distro=mageia-2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.9.6.1-10.10.mga2"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2013-0176.json"}},{"package":{"name":"php-gd-bundled","ecosystem":"Mageia:2","purl":"pkg:rpm/mageia/php-gd-bundled?arch=source&distro=mageia-2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.3.26-1.mga2"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2013-0176.json"}},{"package":{"name":"php-timezonedb","ecosystem":"Mageia:2","purl":"pkg:rpm/mageia/php-timezonedb?arch=source&distro=mageia-2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"2013.3-1.mga2"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2013-0176.json"}},{"package":{"name":"php-firebird","ecosystem":"Mageia:2","purl":"pkg:rpm/mageia/php-firebird?arch=source&distro=mageia-2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.3.26-1.mga2"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2013-0176.json"}},{"package":{"name":"php-pdo_firebird","ecosystem":"Mageia:2","purl":"pkg:rpm/mageia/php-pdo_firebird?arch=source&distro=mageia-2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.3.26-1.mga2"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2013-0176.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}