Fedora 21 : php-5.6.2-1.fc21 (2014-12983)

16 Oct 2014, PHP 5.6.2 Core : - Fixed bug 68044 Integer overflow in unserialize 32-bits only. CVE-2014-3669 Stas cURL : - Fixed bug 68089 NULL byte injection - cURL lib. Stas EXIF : - Fixed bug 68113 Heap corruption in exifthumbnail. CVE-2014-3670 Stas XMLRPC : - Fixed bug 68027 Global buffer...

PHP 5.6.2 - Shellshock Safe Mode Disable Functions Bypass Command Injection

PHP 5.6.2 - Shellshock Safe Mode Disable Functions Bypass Command Injection Exploit Title: PHP 5.x Shellshock Exploit bypass disablefunctions Google Dork: none Date: 10/31/2014 Exploit Author: Ryan King Starfall Vendor Homepage: http://php.net Software Link:...

CVE-2014-3668

Buffer overflow in the datefromISO8601 function in the mkgmtime implementation in libxmlrpc/xmlrpc.c in the XMLRPC extension in PHP before 5.4.34, 5.5.x before 5.5.18, and 5.6.x before 5.6.2 allows remote attackers to cause a denial of service application crash via 1 a crafted first argument to t...