Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.20 views

Linux Distros Unpatched Vulnerability : CVE-2015-4116

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in the splptrheapinsert function in ext/spl/splheap.c in PHP before 5.5.27 and 5.6.x before 5.6.11 allows remote attackers to execu...

9.8CVSS8.6AI score0.05466EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.56 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-1865)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.15484EPSS
Exploits16References2
Cloud Foundry
Cloud Foundry
added 2016/09/09 12:0 a.m.93 views

USN-3045-1 PHP vulnerabilities | Cloud Foundry

USN-3045-1 PHP vulnerabilities Medium Vendor PHP Versions Affected Cloud Foundry PHP buildpack versions prior to 4.3.18 Note: The PHP buildpack is patched from upstream PHP source Description It was discovered that PHP incorrectly handled certain SplMinHeap::compare operations. A remote attacker...

9.8CVSS9.1AI score0.50427EPSS
Exploits26
OpenVAS
OpenVAS
added 2016/08/31 12:0 a.m.44 views

PHP < 5.5.27, 5.6.x < 5.6.11 Arbitrary Code Execution Vulnerability (Aug 2016) - Linux

PHP is prone to an arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if descripti...

9.8CVSS9.1AI score0.05466EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2016/08/29 12:0 a.m.71 views

SUSE SLES11 Security Update : php53 (SUSE-SU-2016:1638-1) (BACKRONYM)

This update for php53 to version 5.3.17 fixes the following issues : These security issues were fixed : - CVE-2016-5093: geticuvalueinternal out-of-bounds read bnc982010. - CVE-2016-5094: Don't create strings with lengths outside int range bnc982011. - CVE-2016-5095: Don't create strings with...

10CVSS7.6AI score0.53166EPSS
Exploits81References245
OpenVAS
OpenVAS
added 2016/08/08 12:0 a.m.64 views

Ubuntu: Security Advisory (USN-3045-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.50427EPSS
Exploits26References2
Tenable Nessus
Tenable Nessus
added 2016/08/03 12:0 a.m.78 views

Ubuntu 14.04 LTS / 16.04 LTS : PHP vulnerabilities (USN-3045-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3045-1 advisory. It was discovered that PHP incorrectly handled certain SplMinHeap::compare operations. A remote attacker could use this issue to cause PHP to...

9.8CVSS8AI score0.50427EPSS
Exploits26References26
Ubuntu
Ubuntu
added 2016/08/02 3:44 p.m.128 views

USN-3045-1: PHP vulnerabilities

It was discovered that PHP incorrectly handled certain SplMinHeap::compare operations. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. CVE-2015-4116 ...

9.8CVSS8AI score0.50427EPSS
Exploits26
F5 Networks
F5 Networks
added 2016/08/02 12:0 a.m.49 views

SOL76719230 - PHP vulnerability CVE-2015-4116

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

9.8CVSS2.5AI score0.05466EPSS
Exploits1References4
OSV
OSV
added 2016/06/21 7:55 a.m.30 views

SUSE-SU-2016:1638-1 Security update for php53

This update for php53 to version 5.3.17 fixes the following issues: These security issues were fixed: - CVE-2016-5093: geticuvalueinternal out-of-bounds read bnc982010. - CVE-2016-5094: Don't create strings with lengths outside int range bnc982011. - CVE-2016-5095: Don't create strings with lengt...

10CVSS10AI score0.53166EPSS
Exploits81References160
Tenable Nessus
Tenable Nessus
added 2016/06/17 12:0 a.m.71 views

SUSE SLES11 Security Update : php53 (SUSE-SU-2016:1581-1)

This update for php53 fixes the following issues : - CVE-2016-5093: A geticuvalueinternal out-of-bounds read could crash the php interpreter bsc982010 - CVE-2016-5094,CVE-2016-5095: Don't allow creating strings with lengths outside int range, avoids overflows bsc982011,bsc982012 - CVE-2016-5096: ...

10CVSS8.4AI score0.35438EPSS
Exploits24References90
Tenable Nessus
Tenable Nessus
added 2016/06/14 12:0 a.m.53 views

openSUSE Security Update : php5 (openSUSE-2016-703)

This update for php5 fixes the following issues : - CVE-2013-7456: imagescale out-of-bounds read bnc982009. - CVE-2016-5093: geticuvalueinternal out-of-bounds read bnc982010. - CVE-2016-5094: Don't create strings with lengths outside int range bnc982011. - CVE-2016-5095: Don't create strings with...

9.8CVSS8.9AI score0.36974EPSS
Exploits18References26
Tenable Nessus
Tenable Nessus
added 2016/06/09 12:0 a.m.65 views

openSUSE Security Update : php5 (openSUSE-2016-696)

This update for php5 fixes the following issues : Security issues fixed : - CVE-2016-4346: heap overflow in ext/standard/string.c bsc977994 - CVE-2016-4342: heap corruption in tar/zip/phar parser bsc977991 - CVE-2016-4537, CVE-2016-4538: bcpowmod accepts negative scale causing heap buffer overflo...

9.8CVSS8.1AI score0.12179EPSS
Exploits14References22
NVD
NVD
added 2016/05/16 10:59 a.m.35 views

CVE-2015-4116

Use-after-free vulnerability in the splptrheapinsert function in ext/spl/splheap.c in PHP before 5.5.27 and 5.6.x before 5.6.11 allows remote attackers to execute arbitrary code by triggering a failed SplMinHeap::compare operation...

9.8CVSS9.7AI score0.05466EPSS
Exploits1References5
OSV
OSV
added 2016/05/16 10:59 a.m.3 views

BELL-CVE-2015-4116 CVE-2015-4116 does not affect BellSoft software

Bulletin has no description...

9.8CVSS5.8AI score0.05466EPSS
Exploits1References1
CVE
CVE
added 2016/05/16 10:0 a.m.251 views

CVE-2015-4116

The CVE-2015-4116 use-after-free in PHP’s ext/spl/spl_heap.c (spl_ptr_heap_insert) affects PHP versions before 5.5.27 and 5.6.x before 5.6.11. Triggering a failed SplMinHeap::compare can lead to remote code execution. Affected component: PHP SPL heap implementation. Root cause: use-after-free in ...

9.8CVSS9.6AI score0.05466EPSS
Exploits1References5Affected Software1
UbuntuCve
UbuntuCve
added 2016/05/16 12:0 a.m.81 views

CVE-2015-4116

Use-after-free vulnerability in the splptrheapinsert function in ext/spl/splheap.c in PHP before 5.5.27 and 5.6.x before 5.6.11 allows remote attackers to execute arbitrary code by triggering a failed SplMinHeap::compare operation...

9.8CVSS7.5AI score0.05466EPSS
Exploits1References4
Rows per page
Query Builder