PT-2020-5322 · Php +7 · Php +7

Name of the Vulnerable Software and Affected Versions: PHP versions 7.2.x through 7.2.27 PHP versions 7.3.x through 7.3.14 PHP versions 7.4.x through 7.4.2 Description: The issue is related to a null pointer dereference when using file upload functionality in PHP. If upload progress tracking is...

DEBIAN-CVE-2020-7059

When using fgetss function to read data with stripping tags, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause this function to read past the allocated buffer. This may lead to information disclosure or crash...

CVE-2020-7059

When using fgetss function to read data with stripping tags, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause this function to read past the allocated buffer. This may lead to information disclosure or crash...

Fedora 30 : php (2020-f9d2203f3b)

PHP version 7.3.14 23 Jan 2020 Core - Fixed bug php78999 Cycle leak when using function result as temporary. Dmitry CURL: - Fixed bug php79033 Curl timeout error with specific url and post. cmb Date: - Fixed bug php79015 undefined-behavior in phpdate.c. cmb DBA: - Fixed bug php78808 LMDB...

PHP 7.3.x < 7.3.14 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is prior to 7.2.27, 7.3.x prior to 7.3.14, or 7.4.x prior to 7.4.2. It is, therefore, affected by multiple vulnerabilities: - A buffer overflow exists in mbflfiltconvbig5wchar due to an input validation error...

PHP 7.2.x < 7.2.27 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is prior to 7.2.27, 7.3.x prior to 7.3.14, or 7.4.x prior to 7.4.2. It is, therefore, affected by multiple vulnerabilities: - A buffer overflow exists in mbflfiltconvbig5wchar due to an input validation error...

PHP 7.2.x < 7.2.26 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is prior to 7.2.26, 7.3.x prior to 7.3.13, or 7.4.x prior to 7.4.1. It is, therefore, affected by multiple vulnerabilities: - An arbitrary file read vulnerability exists in link and DirectoryIterator class due to imprope...

PHP 7.2.x < 7.2.26 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.2.x prior to 7.2.26. It is, therefore, affected by multiple vulnerabilities: - An arbitrary file read vulnerability exists in link and DirectoryIterator class due to improper handling of embedded \0 byte character a...

Fedora 30 : php (2019-437d94e271)

PHP version 7.3.13 18 Dec 2019 Bcmath: - Fixed bug php78878 Buffer underflow in bcshiftaddsub. CVE-2019-11046. cmb Core: - Fixed bug php78862 link silently truncates after a null byte on Windows. CVE-2019-11044. cmb - Fixed bug php78863 DirectoryIterator class silently truncates after a null byte...

CVE-2019-11050

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata function, in PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure o...

CVE-2018-5712

An issue was discovered in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. There is Reflected XSS on the PHAR 404 error page via the URI of a request for a .phar file...

Fedora 30 : php (2019-7bb07c3b02)

PHP version 7.3.11 24 Oct 2019 Core: - Fixed bug php78535 autodetectlineendings value not parsed as bool. bugreportuser - Fixed bug php78620 Out of memory error. cmb, Nikita Exif : - Fixed bug php78442 'Illegal component' on exifreaddata since PHP7 Kalle FPM: - Fixed bug php78599 envpathinfo...

Fedora 29 : php (2019-187ae3128d)

PHP version 7.2.24 24 Oct 2019 Core: - Fixed bug php78535 autodetectlineendings value not parsed as bool. bugreportuser - Fixed bug php78620 Out of memory error. cmb, Nikita Exif: - Fixed bug php78442 'Illegal component' on exifreaddata since PHP7 Kalle FPM: - Fixed bug php78599 envpathinfo...

Fedora 31 : php (2019-4adc49a476)

PHP version 7.3.11 24 Oct 2019 Core: - Fixed bug php78535 autodetectlineendings value not parsed as bool. bugreportuser - Fixed bug php78620 Out of memory error. cmb, Nikita Exif : - Fixed bug php78442 'Illegal component' on exifreaddata since PHP7 Kalle FPM: - Fixed bug php78599 envpathinfo...

PHP 7.3.x < 7.3.11 Remote Code Execution Vulnerability

According to its banner, the version of PHP running on the remote web server is prior to 7.1.33, 7.2.x prior to 7.2.24, or 7.3.x prior to 7.3.11. It is, therefore, affected by a remote code execution vulnerability due to insufficient validation of user input. An unauthenticated, remote attacker c...

PT-2019-4298

Name of the Vulnerable Software and Affected Versions PHP versions prior to 7.1.33 PHP versions prior to 7.2.24 PHP versions prior to 7.3.11 Description The issue is related to a buffer overflow vulnerability in the PHP-FPM component, which can be exploited to execute arbitrary commands on a...

PHP 7.2.x < 7.2.21 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.1.x prior to 7.1.31, 7.2.x prior to 7.2.21 or 7.3.x prior to 7.3.8. It is, therefore, affected by the following vulnerabilities: - A heap-based buffer overflow condition exists on exifscanthumbnail. An attacker can...

Fedora 29 : php (2019-f07db8f031)

PHP version 7.2.21 01 Aug 2019 Date: - Fixed bug php69044 discrepency between time and microtime. krakjoe EXIF: - Fixed bug php78256 heap-buffer-overflow on exifprocessusercomment. CVE-2019-11042 Stas - Fixed bug php78222 heap-buffer-overflow on exifscanthumbnail. CVE-2019-11041 Stas Fileinfo: -...

Fedora 30 : php (2019-ec40d89812)

PHP version 7.2.21 01 Aug 2019 Date: - Fixed bug php69044 discrepency between time and microtime. krakjoe EXIF: - Fixed bug php78256 heap-buffer-overflow on exifprocessusercomment. CVE-2019-11042 Stas - Fixed bug php78222 heap-buffer-overflow on exifscanthumbnail. CVE-2019-11041 Stas Fileinfo: -...

Internet Bug Bounty: Uninitialized read in gdImageCreateFromXbm

This bug is present in gdImageCreateFromXbm method of ext/gd/libgd/gdxbm.c file. This method contains below mentioned lines. c ... unsigned int b; ... sscanfh, "%x", &b; for bit = 1; bit = maxbit; bit = bit 1 gdImageSetPixelim, x++, y, b & bit ? 1 : 0; ... So when sscanf method is not able to rea...