CVE-2007-0909

Name	CVE-2007-0909
Description	Multiple format string vulnerabilities in PHP before 5.2.1 might allow attackers to execute arbitrary code via format string specifiers to (1) all of the *print functions on 64-bit systems, and (2) the odbc_result_all function.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DSA-1264-1
Debian Bugs	410561, 410995

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Urgency	Origin	Debian Bugs
php4	source	sarge	4:4.3.10-19		DSA-1264-1
php4	source	etch	6:4.4.4-8+etch1
php4	source	(unstable)	6:4.4.4-9
php5	source	etch	5.2.0-8+etch1
php5	source	(unstable)	5.2.0-9	medium		410561, 410995