SUSE-SU-2015:1425-1 Security update for php5

PHP was updated to fix two security issues. The following vulnerabilities were fixed: CVE-2015-5589: PHP could be crashed when processing an invalid file with the 'phar' extension with a segfault in Phar::convertToData, leading to Denial of Service DOS bsc938721 CVE-2015-5590: PHP could be crashe...

Scientific Linux Security Update : php on SL6.x i386/x86_64 (20150709)

A flaw was found in the way PHP parsed multipart HTTP POST requests. A specially crafted request could cause PHP to use an excessive amount of CPU time. CVE-2015-4024 An uninitialized pointer use flaw was found in PHP's Exif extension. A specially crafted JPEG or TIFF file could cause a PHP...

SUSE-SU-2015:1253-2 Security update for php5

This security update of PHP fixes the following issues: Security issues fixed: CVE-2015-4024 bnc931421: Fixed multipart/form-data remote DOS Vulnerability. CVE-2015-4026 bnc931776: pcntlexec did not check path validity. CVE-2015-4022 bnc931772: Fixed and overflow in ftpgenlist that resulted in a...

SUSE-SU-2015:1253-1 Security update for php5

This security update of PHP fixes the following issues: Security issues fixed: CVE-2015-4024 bnc931421: Fixed multipart/form-data remote DOS Vulnerability. CVE-2015-4026 bnc931776: pcntlexec did not check path validity. CVE-2015-4022 bnc931772: Fixed and overflow in ftpgenlist that resulted in a...

php security and bug fix update

5.4.16-36 - fix more functions accept paths with NUL character 1213407 5.4.16-35 - core: fix multipart/form-data request can use excessive amount of CPU usage CVE-2015-4024 - fix various functions accept paths with NUL character CVE-2015-4025, CVE-2015-4026, 1213407 - fileinfo: fix denial of...

PHP 5.4.x < 5.4.41 / 5.5.x < 5.5.25 Multiple Vulnerabilities

Binary data 8785.prm...

Milw0rm Clone Script 1.0 - &#039;/admin/login.php&#039; Authentication Bypass

| Exploit Title: Milw0rm Clone Script v1.0 Auth Bypass SQL Injection Vulnerability | | Date: 06.13.2015 | | Exploit Daddy: Walid Naceri | | Vendor Homepage: http://milw0rm.sourceforge.net/ | | Software Link: http://sourceforge.net/projects/milw0rm/files/milw0rm.rar/download | | Version: v1.0 | |...

Moderate: Red Hat Security Advisory: php55 security and bug fix update

Updated php55 collection packages that fix multiple security issues and several bugs are now available as part of Red Hat Software Collections 2. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

MGASA-2015-0231 Updated php packages fix security vulnerabilities

Updated php packages fix security vulnerabilities: Memory Corruption in pharparsetarfile when entry filename starts with null CVE-2015-4021. Integer overflow in ftpgenlist resulting in heap overflow, potentially exploitable by a hostile FTP server CVE-2015-4022. PHP Multipart/form-data parsing...

Amazon Linux AMI : php (ALAS-2015-524)

Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via a large regular expression that leads to a...

[ MDVSA-2015:209 ] php

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:209 http://www.mandriva.com/en/support/security/ Package : php Date : April 27, 2015 Affected: Business Server 1.0, Business Server 2.0 Problem Description: Updated php packages fix security vulnerabilities:...

SUSE-SU-2015:0868-1 Security update for php5

PHP was updated to fix ten security issues. The following vulnerabilities were fixed: CVE-2014-9709: A specially crafted GIF file could cause a buffer read overflow in php-gd bnc923946 CVE-2015-2301: Memory was use after it was freed in PHAR bnc922022 CVE-2015-2305: heap overflow vulnerability in...

PHPCMS V9 /phpsso_server/phpcms/modules/phpsso/index.php SQL注入漏洞

/api/getmenu.phpfunction ajaxgetlist $cachefile = $GET'cachefile'; $cachefile = strreplacearray'/', '//', '', $cachefile; //$cachefile = pregreplace'/\x00-\x08\x0B\x0C\x0E-\x1F\x7F+/S', '', $cachefile; $path = $GET'path'; $path = strreplacearray'/', '//', '', $path; //$path =...

MGASA-2015-0134 Updated php and libzip packages fix security vulnerabilities

Heap overflow vulnerability in regcomp.c in the ereg extension in PHP before 5.5.23 on 32-bit systems CVE-2015-2305. Integer overflow in zip extension in PHP before 5.5.23 leads to writing past heap boundary CVE-2015-2331. Use after free vulnerability in unserialize in PHP before 5.5.23...

CVE-2015-2331

Integer overflow in the zipcdirnew function in zipdirent.c in libzip 0.11.2 and earlier, as used in the ZIP extension in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 and other products, allows remote attackers to cause a denial of service application crash or possibly execute...

EUVD-2015-2398

Use-after-free vulnerability in the pharrenamearchive function in pharobject.c in PHP before 5.5.22 and 5.6.x before 5.6.6 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted renaming of a Phar archive to the name of...

Amazon Linux AMI : php55 (ALAS-2015-474)

sapi/cgi/cgimain.c in the CGI component in PHP through 5.4.36, 5.5.x through 5.5.20, and 5.6.x through 5.6.4, when mmap is used to read a .php file, does not properly consider the mapping's length during processing of an invalid file that begins with a character and lacks a newline character, whi...

[ MDVSA-2015:032 ] php

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:032 http://www.mandriva.com/en/support/security/ Package : php Date : February 5, 2015 Affected: Business Server 1.0 Problem Description: Multiple vulnerabilities has been discovered and corrected in php:...

Medium: php55

Issue Overview: sapi/cgi/cgimain.c in the CGI component in PHP through 5.4.36, 5.5.x through 5.5.20, and 5.6.x through 5.6.4, when mmap is used to read a .php file, does not properly consider the mapping's length during processing of an invalid file that begins with a character and lacks a newlin...

EUVD-2014-9246

Double free vulnerability in the zendtshashgracefuldestroy function in zendtshash.c in the Zend Engine in PHP through 5.5.20 and 5.6.x through 5.6.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...