PHP Exploit Fixed in Ubuntu 12.04 LTS

view story

http://news.softpedia.com – On January 22, Canonical published, in a security notice, details about an AppArmor update for its Ubuntu 12.04 LTS (Precise Pangolin) operating system. According to Canonical, PHP could be made to expose sensitive information over the network. It was discovered that PHP incorrectly handled the openssl_encrypt function when used with an empty string. An attacker could have used this flaw to cause PHP to disclose arbitrary memory contents and possibly expose sensitive ... (read more) (General)