Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSDD2A892B9-2605-11E4-9DA0-00A0986F28C4
HistoryAug 14, 2014 - 12:00 a.m.

PHP multiple vulnerabilities

2014-08-1400:00:00
vuxml.freebsd.org
23

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.948 High

EPSS

Percentile

99.2%

JSON

The PHP Team reports:

insecure temporary file use in the configure script
unserialize() SPL ArrayObject / SPLObjectStorage Type Confusion

Heap buffer over-read in DateInterval
fileinfo: cdf_read_short_sector insufficient boundary check
fileinfo: CDF infinite loop in nelements DoS
fileinfo: fileinfo: numerous file_printf calls resulting in
performance degradation)
Fix potential segfault in dns_check_record()

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchphp53< 5.3.29UNKNOWN

Related

nessus 48
amazon 6
openvas 53
ibm 1
suse 1
ubuntu 3
fedora 6
mageia 5
securityvulns 4
f5 4
oraclelinux 3
redhat 5
centos 2
slackware 2
debian 11
osv 9
cve 7
checkpoint_advisories 4
prion 7
veracode 7
ubuntucve 7
debiancve 3
hackerone 1
nessus
nessus
Amazon Linux AMI : php (ALAS-2014-393)
2014-10-12 00:00:00
FreeBSD : PHP multiple vulnerabilities (d2a892b9-2605-11e4-9da0-00a0986f28c4)
2014-08-19 00:00:00
PHP 5.3.x < 5.3.29 Multiple Vulnerabilities
2014-08-20 00:00:00
amazon
amazon
Medium: php
2014-08-21 11:15:00
Medium: php55
2014-06-15 16:29:00
Medium: php54
2014-06-15 16:29:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2014-393)
2015-09-08 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:0869-1)
2021-06-09 00:00:00
SUSE: Security Advisory for php53 (SUSE-SU-2014:0869-1)
2015-10-13 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in PHP as used by IBM QRadar Incident Forensics 7.2 MR2. (CVE-2014-3515, CVE-2014-4049, CVE-2014-3981, CVE-2014-0238, CVE-2014-0237, CVE-2014-4721)
2018-06-16 21:19:23
suse
suse
Security update for php53 (important)
2014-07-04 01:04:18
ubuntu
ubuntu
PHP updates
2014-06-25 00:00:00
PHP vulnerabilities
2014-06-23 00:00:00
PHP vulnerabilities
2013-12-12 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: php-phpunit-PHPUnit-MockObject-1.2.3-4.fc19
2014-06-17 23:36:22
[SECURITY] Fedora 20 Update: php-phpunit-PHPUnit-MockObject-1.2.3-4.fc20
2014-06-17 23:31:30
[SECURITY] Fedora 19 Update: php-doctrine-orm-2.4.2-2.fc19
2014-06-17 23:36:22
mageia
mageia
Updated file packages fix CVE-2014-0237-8
2014-06-06 09:52:39
Updated php packages fix CVE-2014-0237-8
2014-06-06 21:54:14
Updated php packages fix multiple vulnerabilities
2014-07-09 02:30:04
securityvulns
securityvulns
[ MDVSA-2014:116 ] file
2014-06-14 00:00:00
PHP/fileinfo/file DoS
2014-06-14 00:00:00
PHP security vulnerabilities
2014-06-17 00:00:00
f5
f5
K16954 : Multiple PHP CDF vulnerabilities CVE-2014-0237 and CVE-2014-0238
2015-09-16 00:00:00
SOL16954 - Multiple PHP CDF vulnerabilities CVE-2014-0237 and CVE-2014-0238
2015-07-14 00:00:00
SOL15498 - Multiple PHP vulnerabilities
2014-08-12 00:00:00
oraclelinux
oraclelinux
php security update
2014-08-06 00:00:00
php53 and php security update
2014-08-06 00:00:00
file security and bug fix update
2014-10-15 00:00:00
redhat
redhat
(RHSA-2014:1013) Moderate: php security update
2014-08-06 00:00:00
(RHSA-2014:1012) Moderate: php53 and php security update
2014-08-06 00:00:00
(RHSA-2014:1765) Important: php54-php security update
2014-10-30 00:00:00
centos
centos
php security update
2014-08-06 14:38:20
php, php53 security update
2014-08-06 14:53:37
slackware
slackware
[slackware-security] php
2014-07-12 03:48:04
[slackware-security] php
2014-06-09 21:04:52
debian
debian
[DLA 27-1] file security update
2014-07-31 14:47:17
[SECURITY] [DSA 2943-1] php5 security update
2014-06-01 08:38:03
[DLA-0018-1] php5 security update
2014-07-23 19:10:58
osv
osv
file - security update
2014-07-31 00:00:00
php5 - security update
2014-06-01 00:00:00
php5 - security update
2014-07-23 00:00:00
cve
cve
CVE-2013-6712
2013-11-28 04:37:00
CVE-2014-0237
2014-06-01 04:29:00
CVE-2014-3981
2014-06-08 18:55:00
checkpoint_advisories
checkpoint_advisories
PHP DateInterval Heap Buffer Overread Denial of Service (CVE-2013-6712)
2014-01-22 00:00:00
PHP CDF File Handling Infinite Loop (CVE-2014-0238)
2014-08-03 00:00:00
PHP php_parserr DNS_TXT Heap Buffer Overflow (CVE-2014-4049)
2014-07-16 00:00:00
prion
prion
Heap overflow
2013-11-28 04:37:00
Code injection
2014-06-08 18:55:00
Code injection
2014-06-01 04:29:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:02:52
Denial Of Service (DoS)
2019-01-15 09:02:49
Arbitrary Code Execution
2019-05-02 05:04:21
ubuntucve
ubuntucve
CVE-2013-6712
2013-11-27 00:00:00
CVE-2014-0237
2014-06-01 00:00:00
CVE-2014-3981
2014-06-08 00:00:00
debiancve
debiancve
CVE-2014-0237
2014-06-01 04:29:00
CVE-2014-0207
2014-07-09 11:07:00
CVE-2014-0238
2014-06-01 04:29:00
hackerone
hackerone
Internet Bug Bounty: SPL ArrayObject/SPLObjectStorage Unserialization Type Confusion Vulnerabilities
2014-06-20 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.948 High

EPSS

Percentile

99.2%

JSON
Related for D2A892B9-2605-11E4-9DA0-00A0986F28C4
nessus48amazon6openvas53ibm1suse1ubuntu3fedora6mageia5securityvulns4f54oraclelinux3redhat5centos2slackware2debian11osv9cve7checkpoint_advisories4prion7veracode7ubuntucve7debiancve3hackerone1