SUSE: Security Advisory (SUSE-SU-2016:2975-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PhpSpreadsheet 1.5.0 XXE vulnerability reproduction and analysis-vulnerability warning-the black bar safety net

0x01 introduction PhpSpreadsheet is a very popular pure PHP class library that allows you to easily read and write Excel, LibreOffic Calc and other spreadsheet file formats, is PHPExcel alternative. 2018 11 October 13, PhpSpreadsheet was broke presence of the XXE vulnerability, CVE-2018-19277, in...

CVE-2016-3078

CVE-2016-3078 affects the PHP zip extension (php_zip.c). A crafted ZIP file can trigger an integer overflow in getFromIndex/getFromName within ZipArchive, leading to a heap-based overflow and plausible denial of service or other impact. Affects PHP versions prior to 7.0.6; patched in 7.0.6+ (and ...

Fedora 24 : php-pecl-zip (2016-79ac80a0d5)

Version 1.13.3 - Fixed bug php71923 integer overflow in ZipArchive::getFrom. CVE-2016-3078 Stas - Fixed bug php72258 ZipArchive converts filenames to unrecoverable form. Anatol - Fixed bug php72434 ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize. Dmitry Note th...

PHP memory misreference vulnerability (CNVD-2016-04368)

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A memory misreference vulnerability exists in PHP's GC algorithm and unserialize function, which can be exploited by remote attackers to execute...

Internet Bug Bounty: ZipArchive class Use After Free Vulnerability in PHP's GC algorithm and unserialize

https://bugs.php.net/bug.php?id=72434 This vulnerability was discovered during the auditing of a vendor on Hackerone. Similar to our other submission on bugs.php.net and here, this vulnerability is remotely exploitable. Please feel free to ask for more technical details if necessary. Thank you fo...

CVE-2016-3078

Multiple integer overflows in phpzip.c in the zip extension in PHP before 7.0.6 allow remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact via a crafted call to 1 getFromIndex or 2 getFromName in the ZipArchive...

[SECURITY] [DSA 2195-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2195-1 [email protected] http://www.debian.org/security/ Raphael Geissert March 19, 2011 http://www.debian.org/security/faq -...