14 matches found
SUSE: Security Advisory (SUSE-SU-2016:2460-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:2408-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:2460-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12 Security Update : php5 (SUSE-SU-2016:2408-1)
This update for php5 fixes the following security issues : - CVE-2016-6128: Invalid color index not properly handled bsc987580 - CVE-2016-6161: global out of bounds read when encoding gif from malformed input withgd2togif bsc988032 - CVE-2016-6292: NULL pointer dereference in exifprocessusercomme...
Ubuntu 14.04 LTS / 16.04 LTS : PHP vulnerabilities (USN-3095-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3095-1 advisory. Taoguang Chen discovered that PHP incorrectly handled certain invalid objects when unserializing data. A remote attacker could use this issue...
Security update for php5 (important)
This update for php5 fixes the following security issues: CVE-2016-6128: Invalid color index not properly handled bsc987580 CVE-2016-6161: global out of bounds read when encoding gif from malformed input withgd2togif bsc988032 CVE-2016-6292: Null pointer dereference in exifprocessusercomment...
openSUSE Security Update : php5 (openSUSE-2016-1095)
This update for php5 fixes the following security issues : - CVE-2016-7124: Create an Unexpected Object and Don't Invoke wakeup in Deserialization - CVE-2016-7125: PHP Session Data Injection Vulnerability - CVE-2016-7126: selectcolors write out-of-bounds - CVE-2016-7127: imagegammacorrect allowed...
openSUSE: Security Advisory for php5 (openSUSE-SU-2016:2337-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for php5 (important)
This update for php5 fixes the following security issues: CVE-2016-7124: Create an Unexpected Object and Don't Invoke wakeup in Deserialization CVE-2016-7125: PHP Session Data Injection Vulnerability CVE-2016-7126: selectcolors write out-of-bounds CVE-2016-7127: imagegammacorrect allowed arbitrar...
CVE-2016-7134
ext/curl/interface.c in PHP 7.x before 7.0.10 does not work around a libcurl integer overflow, which allows remote attackers to cause a denial of service allocation error and heap-based buffer overflow or possibly have unspecified other impact via a long string that is mishandled in a curlescape...
CVE-2016-7134
CVE-2016-7134 affects PHP 7.x prior to 7.0.10. The vuln is in ext/curl/interface.c where libcurl integer overflow is not properly mitigated, allowing a remote attacker to trigger a denial of service (allocation error and heap-based buffer overflow) or potentially other impact via a long string mi...
CVE-2016-7134
Removed by vendor...
CVE-2016-7134
ext/curl/interface.c in PHP 7.x before 7.0.10 does not work around a libcurl integer overflow, which allows remote attackers to cause a denial of service allocation error and heap-based buffer overflow or possibly have unspecified other impact via a long string that is mishandled in a curlescape...
CVE-2016-7134
ext/curl/interface.c in PHP 7.x before 7.0.10 does not work around a libcurl integer overflow, which allows remote attackers to cause a denial of service allocation error and heap-based buffer overflow or possibly have unspecified other impact via a long string that is mishandled in a curlescape...