Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Sun, 6 Jul 2014 08:33:48 +0400
From: Loganaden Velvindron <loganaden@...il.com>
To: oss-security@...ts.openwall.com
Subject: Re: Possible CVE request: php5: phpinfo() Type Confusion Information
 Leak Vulnerability

Stefan Esser has written a blog post about a PoC that can be used
to disclose the SSL private key.

https://www.sektioneins.de/en/blog/14-07-04-phpinfo-infoleak.html

Kind regards,
//Logan
C-x-C-c


-- 
This message is strictly personal and the opinions expressed do not
represent those of my employers, either past or present.

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ