FreeBSD VuXML

Documenting security issues in FreeBSD and the FreeBSD Ports Collection

Security issues that affect the FreeBSD operating system or applications in the FreeBSD Ports Collection are documented using the Vulnerabilities and Exposures Markup Language (VuXML). The current VuXML document that serves as the source for the content of this site can be found:

Please report security issues to the FreeBSD Security Team at . Full contact details, including information handling policies and PGP key, can be found on the FreeBSD Security page.

php5


Entered Topic
2013-12-14 PHP5 -- memory corruption in openssl_x509_parse()
2013-07-16 PHP5 -- Integer overflow in Calendar module
2013-06-07 php5 -- Heap based buffer overflow in quoted_printable_encode
2013-03-18 php5 -- Multiple vulnerabilities
2012-09-19 php5 -- Denial of Service in php_date_parse_tzfile()
2012-09-05 php5 -- header splitting attack via carriage-return character
2012-07-23 php -- potential overflow in _php_stream_scandir
2012-05-12 php -- multiple vulnerabilities
2012-05-05 php -- vulnerability in certain CGI-based setups
2012-04-28 php -- multiple vulnerabilities
2012-02-04 php -- arbitrary remote code execution vulnerability
2012-01-11 php -- multiple vulnerabilities
2011-08-23 PHP -- crypt() returns only the salt for MD5
2011-08-20 php -- multiple vulnerabilities
2011-01-13 php -- corruption of $GLOBALS and $this variables via extract() method
php -- NULL byte poisoning
php -- open_basedir bypass
2011-01-09 php -- multiple vulnerabilities
2009-12-17 php -- multiple vulnerabilities
2009-10-12 php5 -- Multiple security issues
2008-12-08 php5 -- potential magic_quotes_gpc vulnerability
2008-12-07 php -- multiple vulnerabilities
2008-06-22 php -- input validation error in safe_mode
2008-04-25 php -- integer overflow vulnerability
2007-11-16 php -- multiple security vulnerabilities
2007-09-11 php -- multiple vulnerabilities
2007-05-07 php -- multiple vulnerabilities
2007-02-17 php -- multiple vulnerabilities
2006-10-06 php -- _ecalloc Integer Overflow Vulnerability
2006-10-05 php -- open_basedir Race Condition Vulnerability
2006-09-13 php -- multiple vulnerabilities
2004-12-17 php -- multiple vulnerabilities
2004-10-05 php -- php_variables memory disclosure
2004-09-27 php -- memory_limit related vulnerability
php -- strip_tags cross-site scripting vulnerability
2004-09-15 php -- vulnerability in RFC 1867 file upload processing