CVE-2011-0753

Public Date:
2010-09-06
Bugzilla:
674705: CVE-2011-0753 php: race condition when handling many concurrent signals may lead to memory corruption

The MITRE CVE dictionary describes this issue as:

Race condition in the PCNTL extension in PHP before 5.3.4, when a user-defined signal handler exists, might allow context-dependent attackers to cause a denial of service (memory corruption) via a large number of concurrent signals.

Find out more about CVE-2011-0753 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Red Hat does not consider this issue to be a security vulnerability since no trust boundary is crossed. Any process able to send signals to a running PHP process can terminate it by sending a carefully-chosen signal.

Affected Packages State

Platform Package State
Red Hat Enterprise Linux 6 php Affected
Red Hat Enterprise Linux 5 php Under investigation
Red Hat Enterprise Linux 5 php53 Affected
Red Hat Enterprise Linux 4 php Under investigation
Last Modified

CVE description copyright © 2017, The MITRE Corporation