CVE-2007-3998

Impact:
Low
Public Date:
2007-08-30
Bugzilla:
276081: CVE-2007-3998 php floating point exception inside wordwrap

The MITRE CVE dictionary describes this issue as:

The wordwrap function in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, does not properly use the breakcharlen variable, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash, or infinite loop) via certain arguments, as demonstrated by a 'chr(0), 0, ""' argument set.

Find out more about CVE-2007-3998 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This issue did not affect the versions of PHP as shipped with Red Hat Enterprise Linux 2.1.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (php) RHSA-2007:0890 2007-09-20
Red Hat Application Stack v1 for Enterprise Linux AS (v.4) (php) RHSA-2007:0891 2007-10-25
Red Hat Enterprise Linux 5 (php) RHSA-2007:0890 2007-09-20
Red Hat Enterprise Linux 3 (php) RHSA-2007:0889 2007-09-26
Red Hat Application Stack v2 for Enterprise Linux (v.5) (php) RHSA-2007:0917 2007-10-23

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.