[Kolab-devel] Supercolliding a PHP array - DoS Attacks

ABBAS Alain alain.abbas at libertech.fr
Mon Jan 9 23:48:02 CET 2012


Hello

There are a serious Dos Attack issue in PHP prior to 5.3.9

This attack is more than easy and serious. 
PHP 5.3.9 has a change to prevent this DoS attack. Microsoft's also has this issue which MS and made an
emergency patch available last week  to fix this.

see the links

http://nikic.github.com/2011/12/28/Supercolliding-a-PHP-array.html
http://cryptanalysis.eu/blog/2011/12/28/effective-dos-attacks-against-web-application-plattforms-hashdos/
http://williamedwardscoder.tumblr.com/post/14939418095/hash-table-attacks-impervious-hash-tables

doesnt Kolab.org plan to give an update of php for this security issue? 

Regards




More information about the devel mailing list