Lucene search

K
archlinuxArch LinuxASA-201503-25
HistoryMar 28, 2015 - 12:00 a.m.

php: integer overflow

2015-03-2800:00:00
Arch Linux
lists.archlinux.org
29

EPSS

0.951

Percentile

99.4%

An integer overflow flaw, leading to a heap-based buffer overflow, was found in
the way libzip, which is embedded in PHP, processed certain ZIP archives. If an
attacker were able to supply a specially crafted ZIP archive to an application
using libzip, it could cause the application to crash or, possibly, execute
arbitrary code.

OSVersionArchitecturePackageVersionFilename
anyanyanyphp< 5.6.7-1UNKNOWN