[Mageia-dev] Fwd: Re: [Kolab-devel] Supercolliding a PHP array - DoS Attacks
Thomas Spuhler
thomas at btspuhler.com
Tue Jan 10 03:48:31 CET 2012
I got this from the Kolab folks:
---------- Forwarded Message ----------
-----Message original-----
De: "ABBAS Alain" <alain.abbas at libertech.fr>
Envoyé: 9 janvier 2012 22:48:02 UTC
A: kolab-users at kolab.org
Cc: kolab-devel at kolab.org
Sujet : [Kolab-devel] Supercolliding a PHP array - DoS Attacks
Hello
There are a serious Dos Attack issue in PHP prior to 5.3.9
This attack is more than easy and serious.
PHP 5.3.9 has a change to prevent this DoS attack. Microsoft's also has this
issue which MS and made an
emergency patch available last week to fix this.
see the links
http://nikic.github.com/2011/12/28/Supercolliding-a-PHP-array.html
http://cryptanalysis.eu/blog/2011/12/28/effective-dos-attacks-against-web-
application-plattforms-hashdos/
http://williamedwardscoder.tumblr.com/post/14939418095/hash-table-attacks-
impervious-hash-tables
oops typo
does Kolab.org plan to give an update of php for this security issue?
Regards
_______________________________________________
Kolab-devel mailing list
Kolab-devel at kolab.org
https://kolab.org/mailman/listinfo/kolab-devel
--
Best regards
Thomas Spuhler
More information about the Mageia-dev
mailing list