CVE-2007-5898

Impact:
Moderate
Public Date:
2007-11-08
Bugzilla:
382411: CVE-2007-5898 php htmlentities/htmlspecialchars multibyte sequences

The MITRE CVE dictionary describes this issue as:

The (1) htmlentities and (2) htmlspecialchars functions in PHP before 5.2.5 accept partial multibyte sequences, which has unknown impact and attack vectors, a different issue than CVE-2006-5465.

Find out more about CVE-2007-5898 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

This issue was fixed in all affected PHP versions shipped in Red Hat products. For list of security advisories, visit: https://rhn.redhat.com/errata/CVE-2007-5898.html

Red Hat Security Errata

Platform Errata Release Date
Red Hat Application Stack v1 for Enterprise Linux AS (v.4) (php) RHSA-2008:0582 2008-07-22
Red Hat Enterprise Linux 3 (php) RHSA-2008:0544 2008-07-16
Red Hat Application Stack v2 for Enterprise Linux (v.5) RHSA-2008:0505 2008-07-02
Red Hat Enterprise Linux 4 (php) RHSA-2008:0545 2008-07-16
Red Hat Enterprise Linux 5 (php) RHSA-2008:0544 2008-07-16
Red Hat Enterprise Linux 2.1 (php) RHSA-2008:0546 2008-07-16
Last Modified

CVE description copyright © 2017, The MITRE Corporation