Lucene search
K

4 matches found

RedHat Linux
RedHat Linux
added 2018/05/03 5:6 a.m.6 views

php: wddx_deserialize() heap out-of-bound read via php_parse_date()

In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, an error in the date extension's timelibmeridian parsing code could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parsedate.c out-of-bounds reads affecting the...

7.5CVSS7.2AI score0.04812EPSS
Exploits0References4
OSV
OSV
added 2017/11/07 9:29 p.m.48 views

CVE-2017-16642

In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelibmeridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parsedate.c...

7.5CVSS6.2AI score
Exploits0References13
NVD
NVD
added 2017/07/10 2:29 p.m.39 views

CVE-2017-11145

In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, an error in the date extension's timelibmeridian parsing code could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parsedate.c out-of-bounds reads affecting the...

7.5CVSS8.2AI score0.04812EPSS
Exploits0References12
Prion
Prion
added 2017/07/10 2:29 p.m.37 views

Out-of-bounds

In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, an error in the date extension's timelibmeridian parsing code could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parsedate.c out-of-bounds reads affecting the...

5CVSS7.4AI score0.04812EPSS
Exploits0References12Affected Software1
Rows per page
Query Builder