2110 matches found
Debian DLA-341-1 : php5 security update
CVE-2015-6831 Use after free vulnerability was found in unserialize function. We can create ZVAL and free it via Serializable::unserialize. However the unserialize will still allow to use R: or r: to set references to that already freed memory. It is possible to use-after-free attack and execute...
DLA-341-1 php5 - security update
Bulletin has no description...
CVE-2008-2934
Mozilla Firefox 3 before 3.0.1 on Mac OS X allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted GIF file that triggers a free of an uninitialized pointer...
Amazon Linux AMI : php56 (ALAS-2015-601)
As reported upstream, A NULL pointer dereference flaw was found in the way PHP's Phar extension parsed Phar archives. A specially crafted archive could cause PHP to crash. CVE-2015-7803 A flaw was discovered in the way PHP performed object unserialization. Specially crafted input processed by the...
Amazon Linux: Security Advisory (ALAS-2015-601)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2015-7804
Off-by-one error in the pharparsezipfile function in ext/phar/zip.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service uninitialized pointer dereference and application crash by including the / filename in a .zip PHAR archive...
PHP 5.5.x < 5.5.30 / 5.6.x < 5.6.14 Multiple Vulnerabilities
Binary data 8956.prm...
PHP 5.5.x < 5.5.30 Multiple Vulnerabilities
According to its banner, the version of PHP running on the remote web server is 5.5.x prior to 5.5.30. It is, therefore, affected by the following vulnerabilities : - A NULL pointer dereference flaw exists in the phargetfpoffset function in ext/phar/util.c that is triggered when pointing to a...
PHP 5.6.x < 5.6.14 Multiple Vulnerabilities
According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.14. It is, therefore, affected by multiple vulnerabilities : - A NULL pointer dereference flaw exists in the phargetfpoffset function in ext/phar/util.c that is triggered when pointing to a...
Amazon Linux: Security Advisory (ALAS-2012-114)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Internet Bug Bounty: Uninitialized pointer in phar_make_dirstream
https://bugs.php.net/bug.php?id=70433...
VLC uninitialized pointer dereference
Uninitialized pointer dereference on 3GP parsing...
php: Free called on unitialized pointer in exif.c
An uninitialized pointer use flaw was found in PHP's Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifreaddata function to crash or, possibly, execute arbitrary code with the privileges of the user running that PHP application...
Moderate: Red Hat Security Advisory: php security update
Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are available for...
php: Free called on unitialized pointer in exif.c
An uninitialized pointer use flaw was found in PHP's Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifreaddata function to crash or, possibly, execute arbitrary code with the privileges of the user running that PHP application...
php: Free called on unitialized pointer in exif.c
An uninitialized pointer use flaw was found in PHP's Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifreaddata function to crash or, possibly, execute arbitrary code with the privileges of the user running that PHP application...
php: Free called on unitialized pointer in exif.c
An uninitialized pointer use flaw was found in PHP's Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifreaddata function to crash or, possibly, execute arbitrary code with the privileges of the user running that PHP application...
FreeBSD : chrony -- multiple vulnerabilities (c4571ca8-053d-44c9-ab3c-89b1372ad0a5)
Chrony News reports : CVE-2015-1853: DoS attack on authenticated symmetric NTP associations CVE-2015-1821: Heap-based buffer overflow in access configuration CVE-2015-1822: Use of uninitialized pointer in command processing %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...
chrony multiple security vulnerabilities
Memory corruption, uninitialized pointer dereference, DoS...
CVE-2015-1822
chrony before 1.31.1 does not initialize the last "next" pointer when saving unacknowledged replies to command requests, which allows remote authenticated users to cause a denial of service uninitialized pointer dereference and daemon crash or possibly execute arbitrary code via a large number of...