3 matches found
SUSE CVE-2016-6297
Integer overflow in the phpstreamzipopener function in ext/zip/zipstream.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service stack-based buffer overflow or possibly have unspecified other impact via a crafted zip:// URL...
PHP php_stream_zip_opener function integer overflow vulnerability
PHP is a widely used general-purpose scripting language that is particularly well suited for web development and can be embedded in HTML. An integer overflow vulnerability exists in the ext/zip/zipstream.c/phpstreamzipopener function in versions of PHP prior to 5.5.38, 5.6.x prior to 5.6.24, and...
UBUNTU-CVE-2016-6297
Integer overflow in the phpstreamzipopener function in ext/zip/zipstream.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service stack-based buffer overflow or possibly have unspecified other impact via a crafted zip:// URL...