Apache 2.4.7 + PHP 7.0.2 - openssl_seal() Uninitialized Memory Code Execution

Apache 2.4.7 + PHP 7.0.2 - opensslseal Uninitialized Memory Code Execution ?php // Source: http://akat1.pl/?id=1 function getmaps $fh = fopen"/proc/self/maps", "r"; $maps = fread$fh, 331337; fclose$fh; return explode"\n", $maps; function findmap$sym $addr = 0; foreachgetmaps as $record if...

Internet Bug Bounty: PHP-FPM fpm_log.c memory leak and buffer overflow

The FastCGI Process Manager FPM SAPI of PHP was vulnerable to memory leak and buffer overflow in the access logging feature. PHP-FPM offers customization of the access log lines based on format string variables which can be specified with the access.format option of the FPM configuration file. Th...

Internet Bug Bounty: Arbitary Memory Read via gdImageRotateInterpolated Array Index Out of Bounds

1Bug report at: https://bugs.php.net/bug.php?id=70976&edit=2 2 Patch submitted: https://www.dropbox.com/s/rr5xti66cpt17mn/gdinterpolation.patch?dl=0 3 Issue has been fixed in PHP 5.5.31, 5.6.17, 7.0.2 ---Vuln Description-- This is the function prototype for ImageRotate: resource imagerotate...