EUVD-2016-8012

Malware in sbrugna...

USN-3095-1: PHP vulnerabilities

Taoguang Chen discovered that PHP incorrectly handled certain invalid objects when unserializing data. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2016-7124 Taoguang Chen discovered that PHP incorrectly...

openSUSE Security Update : php5 (openSUSE-2016-1095)

This update for php5 fixes the following security issues : - CVE-2016-7124: Create an Unexpected Object and Don't Invoke wakeup in Deserialization - CVE-2016-7125: PHP Session Data Injection Vulnerability - CVE-2016-7126: selectcolors write out-of-bounds - CVE-2016-7127: imagegammacorrect allowed...

CVE-2016-7134

ext/curl/interface.c in PHP 7.x before 7.0.10 does not work around a libcurl integer overflow, which allows remote attackers to cause a denial of service allocation error and heap-based buffer overflow or possibly have unspecified other impact via a long string that is mishandled in a curlescape...

PHP 'curl_escape()' function integer overflow vulnerability

PHP is an open source general-purpose computer scripting language. PHP 'curlescape' function integer overflow vulnerability can be exploited by an attacker to cause a denial of service via the 'curlescape' function...

Internet Bug Bounty: Heap overflow in curl_escape

I have founded a code block that leads to heap overflow. As you can see at : PHPFUNCTIONcurlescape char str = NULL, res = NULL; sizet strlen = 0; zval zid; phpcurl ch; SNIP if res = curleasyescapech-cp, str, strlen RETVALSTRINGres; curlfreeres; else RETURNFALSE; SNIP I do some analysis with...