{"id":7865,"date":"2007-09-10T17:39:19","date_gmt":"2007-09-10T15:39:19","guid":{"rendered":"https:\/\/destinationcyber.com\/?p=7865"},"modified":"2007-09-10T17:39:19","modified_gmt":"2007-09-10T15:39:19","slug":"une-dizaine-de-failles-dans-les-versions-de-php-anterieures-a-la-5-2-4","status":"publish","type":"post","link":"https:\/\/destinationcyber.com\/?p=7865","title":{"rendered":"Une dizaine de failles dans les versions de PHP ant\u00e9rieures \u00e0 la 5.2.4"},"content":{"rendered":"<p>Les utilisateurs de PHP ont tout int\u00e9r\u00eat \u00e0 migrer vers la derni\u00e8re version, la 5.2.4, pr\u00e9sent\u00e9e le 30 ao\u00fbt dernier.<\/p>\n<p>Les cons\u00e9quences potentielles li\u00e9es \u00e0 ces vuln\u00e9rabilit\u00e9s sont assez variables.<\/p>\n<p>Deux d&rsquo;entre elles autorisent l&rsquo;ex\u00e9cution de code arbitraire par d\u00e9bordement de m\u00e9moire tampon.<\/p>\n<p>Cela concerne les fonctions gdImageCreate, gdImageCreateTrueColor, gdImageCopyResized.<\/p>\n<p>D&rsquo;autres failles permettent de contourner des directives comme open_basedir (qui restreint l&rsquo;acc\u00e8s dans l&rsquo;arborescence des fichiers) ou safe_mode (qui active le mode s\u00e9curit\u00e9 de PHP).<\/p>\n<p>Fanch<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Les utilisateurs de PHP ont tout int\u00e9r\u00eat \u00e0 migrer vers la derni\u00e8re version, la 5.2.4, pr\u00e9sent\u00e9e le 30 ao\u00fbt dernier. Les cons\u00e9quences potentielles li\u00e9es \u00e0 ces vuln\u00e9rabilit\u00e9s sont assez variables. Deux d&rsquo;entre elles autorisent l&rsquo;ex\u00e9cution de code arbitraire par d\u00e9bordement de m\u00e9moire tampon. Cela concerne les fonctions gdImageCreate, gdImageCreateTrueColor, gdImageCopyResized. D&rsquo;autres failles permettent de contourner [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_citadela_custom_class":"","footnotes":""},"categories":[15],"tags":[],"class_list":["post-7865","post","type-post","status-publish","format-standard","hentry","category-securite"],"_links":{"self":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts\/7865","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=7865"}],"version-history":[{"count":0,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=\/wp\/v2\/posts\/7865\/revisions"}],"wp:attachment":[{"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=7865"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=7865"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/destinationcyber.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=7865"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}