GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Fri Nov 11, 2011 11:26 pm Post subject: [ GLSA 201111-04 ] phpDocumentor: Function call injection |
 |
|
Gentoo Linux Security Advisory
Title: phpDocumentor: Function call injection (GLSA 201111-04)
Severity: normal
Exploitable: remote
Date: November 11, 2011
Bug(s): #213318
ID: 201111-04
Synopsis
phpDocumentor bundles Smarty which contains an input sanitation
flaw, allowing attackers to call arbitrary PHP functions.
Background
The phpDocumentor package provides automatic documenting of PHP API
directly from the source.
Affected Packages
Package: dev-php/PEAR-PhpDocumentor
Vulnerable: < 1.4.3-r1
Unaffected: >= 1.4.3-r1
Architectures: All supported architectures
Description
phpDocumentor bundles Smarty with the modifier.regex_replace.php plug-in
which does not properly sanitize input related to the ASCII NUL character
in a search string.
Impact
A remote attacker could call arbitrary PHP functions via templates.
Workaround
There is no known workaround at this time.
Resolution
All phpDocumentor users should upgrade to the latest stable version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose
">=dev-php/PEAR-PhpDocumentor-1.4.3-r1"
|
NOTE: This is a legacy GLSA. Updates for all affected architectures are
available since February 12, 2011. It is likely that your system is
already no longer affected by this issue.
References
CVE-2008-1066
|
|
News & Announcements
