Upstream information

CVE-2013-2110 at MITRE


Heap-based buffer overflow in the php_quot_print_encode function in ext/standard/quot_print.c in PHP before 5.3.26 and 5.4.x before 5.4.16 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted argument to the quoted_printable_encode function.

SUSE information

Overall state of this security issue: Does not affect SUSE products

Note from the SUSE Security Team

This issue does not affect our php 5.2 and 5.3 or older versions, so SUSE Linux Enterprise 11 or older version are not affected.

SUSE Bugzilla entry: 827317 [RESOLVED / INVALID]

No SUSE Security Announcements cross referenced.