Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:32372 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 696 invoked by uid 1010); 18 Sep 2007 20:56:27 -0000 Delivered-To: ezmlm-scan-internals@lists.php.net Delivered-To: ezmlm-internals@lists.php.net Received: (qmail 681 invoked from network); 18 Sep 2007 20:56:27 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 18 Sep 2007 20:56:27 -0000 Authentication-Results: pb1.pair.com header.from=stas@zend.com; sender-id=pass Authentication-Results: pb1.pair.com smtp.mail=stas@zend.com; spf=pass; sender-id=pass Received-SPF: pass (pb1.pair.com: domain zend.com designates 212.25.124.162 as permitted sender) X-PHP-List-Original-Sender: stas@zend.com X-Host-Fingerprint: 212.25.124.162 mail.zend.com Windows 2000 SP4, XP SP1 Received: from [212.25.124.162] ([212.25.124.162:13285] helo=mx1.zend.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id 1C/18-56209-97B30F64 for ; Tue, 18 Sep 2007 16:56:26 -0400 Received: from us-ex1.zend.com ([192.168.16.5]) by mx1.zend.com with Microsoft SMTPSVC(6.0.3790.1830); Tue, 18 Sep 2007 22:56:27 +0200 Received: from [127.0.0.1] ([192.168.16.180]) by us-ex1.zend.com with Microsoft SMTPSVC(6.0.3790.1830); Tue, 18 Sep 2007 13:56:23 -0700 Message-ID: <46F03B70.1040405@zend.com> Date: Tue, 18 Sep 2007 13:56:16 -0700 Organization: Zend Technologies User-Agent: Thunderbird 2.0.0.6 (Windows/20070728) MIME-Version: 1.0 To: sean finney CC: internals@lists.php.net References: <200709182130.44018.seanius@seanius.net> <46F02CDD.50706@zend.com> <200709182252.11222.seanius@seanius.net> In-Reply-To: <200709182252.11222.seanius@seanius.net> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-OriginalArrivalTime: 18 Sep 2007 20:56:23.0574 (UTC) FILETIME=[5F338B60:01C7FA36] Subject: Re: [PHP-DEV] CVE-2007-4840 From: stas@zend.com (Stanislav Malyshev) > ah, so it's a glibc issue then? istr a similar thing come up with truetype > fonts that ended up being a bug in the tr1 lib, but because the PoC used php > it was classified as a php vulnerabity. if it's the same case here then i > think the onus is on glibc... Well, I think we can still impose limit on iconv parameters, it doesn't seem to hurt anything. But the problem is reproduceable in pure C... -- Stanislav Malyshev, Zend Software Architect stas@zend.com http://www.zend.com/ (408)253-8829 MSN: stas@zend.com