FAQ
Edit report at http://pear.php.net/bugs/bug.php?id=16200&edit=1

ID: 16200
Updated by: daniel.oconnor@gmail.com
Reported By: root at 80sec dot com
Summary: security hole allow to read/write Arbitrary File
-Status: Assigned
+Status: Closed
Type: Bug
Package: Mail
Operating System: linux
Package Version: 1.1.14
PHP Version: 5.2.5
Assigned To: davidc
Roadmap Versions:
New Comment:

-Status: Assigned
+Status: Closed
This bug has been fixed in SVN.

If this was a documentation problem, the fix will appear on
pear.php.net by the end of next Sunday (CET).

If this was a problem with the pear.php.net website, the change should
be live shortly.

Otherwise, the fix will appear in the package's next release.

Thank you for the report and for helping us make PEAR better.

[294744]


Previous Comments:
------------------------------------------------------------------------

[2010-01-05 10:26:01] alec

-Status: Closed
+Status: Open


------------------------------------------------------------------------

[2009-11-21 08:19:39] rgeissert

The fix is incomplete, $recipients also needs to be properly escaped.

- $recipients = escapeShellCmd(implode(' ', $recipients));
+ $recipients = implode(' ', array_map('escapeshellarg',
$recipients));

------------------------------------------------------------------------

[2009-11-20 13:08:45] dnikolaenko

Please request a CVE identifier for this bug to be noticed in Linux
distros.

------------------------------------------------------------------------

[2009-05-09 16:17:14] davidc

-Status: Critical
+Status: Closed

This bug has been fixed in CVS.

If this was a documentation problem, the fix will appear on
pear.php.net by the end of next Sunday (CET).

If this was a problem with the pear.php.net website, the change should
be live shortly.

Otherwise, the fix will appear in the package's next release.

Thank you for the report and for helping us make PEAR better.

Could you guys please roll a release? Cheers.

------------------------------------------------------------------------

[2009-05-09 16:16:49] davidc

-Assigned To:
+Assigned To: davidc


------------------------------------------------------------------------

The remainder of the comments for this report are too long. To view
the rest of the comments, please view the bug report online at
http://pear.php.net/bugs/bug.php?id=16200

Search Discussions

Related Discussions

Discussion Navigation
viewthread | post
posts ‹ prev | 1 of 1 | next ›
Discussion Overview
grouppear-bugs @
categoriesphp
postedFeb 8, '10 at 8:04a
activeFeb 8, '10 at 8:04a
posts1
users1
websitepear.php.net

1 user in discussion

Daniel Oconnor: 1 post

People

Translate

site design / logo © 2022 Grokbase